Bind9 - connection timed out; no servers could be reached

Mark Andrews Mark_Andrews at isc.org
Fri Jul 15 22:42:52 UTC 2005 

> 
> Hello,
> 
> I have the following problem: I running Bind9.2.3 as slave on Solaris 8. The 
> masters are windows-DNS, zonetransfer already works fine. This slave DNS is i
> ntendet to be a localhost DNS for a machine, that starts a lot of dns-queries
>  (HP OpenView). Remote-queries would debit the internal networkload. 
> 
> Finaly, it should be an autarkic slave DNS, which is not allowed to contain f
> orwarders and just for intern (private) ip-addresses and olny for internal us
> e (not rechable from outside).

	Supply a root (".") zone.
 
> Problem: When I ask for unknown ipaddresses, the answer times out und ist is 
> no server could 
> be reached.
> 
> example:
> 
> 	root at dnsserver # nslookup -sil 10.10.10.10
> 	;; connection timed out; no servers could be reached
> 
> When I create a zonefile with just one entry, it works..
> 
> example:
> 
> 	root at dnsserver # nslookup -sil 10.10.10.10
> 	Server:         127.0.0.1
> 	Address:        127.0.0.1#53
> 
> 	10.10.10.10.in-addr.arpa        name = bla.myComp.intern.
> 
> It is also possible to ask for other ips in that net:
> 
> 	root at dnsserver # nslookup -sil 10.10.10.11
> 	Server:         127.0.0.1
> 	Address:        127.0.0.1#53
> 
> 	** server can't find 11.10.10.10.in-addr.arpa: NXDOMAIN
> 
> 
> It ist not practicable to create all zonefiles from ipaddresses or networks, 
> which aren't important. I am helpless what's wrong.. can anyone geive me a hi
> nt?
> 
> Thanx,
> Tanja
> 
> P.s.: An abstract from the named.conf:
> 
> logging {
> 	channel "query_logging" {
> 		file "/var/log/bind9_debug.log"
> 		versions 3 size 100M;
> 		print-time yes;    // timestamp log entries
> 	};
> 
> 	category queries  { query_logging; };
> 	category lame-servers { "query_logging"; };
> };
> 
> options {
> 	directory "/var/named/slave";
> 	pid-file "/var/run/named-9-slave.pid";
> 	
> 	recursion yes;
> };
> 
> zone "myComp-lab.org"{	
> 	type slave;
> 	file "myComp-lab.org";
> 	masters { 172.21.31.106; };	
> };
> 
> zone "nok.myComp-lab.org"{	
> 	type slave;
> 	file "nok.myComp-lab.org";
> 	masters { 172.21.31.106; };
> };
> 
> zone "22.172.in-addr.arpa"{
> 	type slave;
> 	file "22.172.in-addr.arpa";
> 	masters { 172.31.100.6; };	
> };
> ..until...
> zone "31.172.in-addr.arpa"{
> 	type slave;
> 	file "31.172.in-addr.arpa";
> 	masters { 172.31.100.6; };	
> };
> 
> zone "0.0.127.in-addr.arpa" in {
> 	type master;
> 	notify no;
> 	file "127.0.0";
> };
> 
> key "rndc-key" {       
> 	algorithm hmac-md5;       
> 	secret "XYZ==XXX"; 
> };
> __________________________________________________________
> Mit WEB.DE FreePhone mit hoechster Qualitaet ab 0 Ct./Min.
> weltweit telefonieren! http://freephone.web.de/?mc=021201
> 
> 
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: Mark_Andrews at isc.org

More information about the bind-users mailing list