Help Need with Bind 9.3.1

Kevin Darcy kcd at daimlerchrysler.com
Wed Mar 16 22:57:26 UTC 2005 

Carinus Carelse wrote:

>I have the bind starting up ok on Solaris 9.  I can do a lookup both
>ways on mydomain.com 
>
Hmmm. Not sure what you mean by "both ways"...

>but when i try to query the root cache it fails on
>connection timed out.  
>
I assume by "query the root cache" you mean an NS query for root, right?

What happens if you do that same query non-recursively to an actual root 
server, e.g.

dig . ns +norec @192.203.230.10

That'll tell you if you actually have connectivity to the root 
nameservers. If you don't, look at routing, NAT'ing, firewall, 
link-saturation issues, etc.

If you *do* have connectivity to the root nameservers, then look and 
make sure your hints file is formatted properly and has the proper 
contents. Look for errors in the log at startup time.

- Kevin

>I am including my config file to see if there is
>anything you guys can maybe do to help.
>
>Carinus
>
>key "rndc-key" {
>       algorithm hmac-md5;
>       secret "8wh4+I9ycy8NpKMnKnvlpQ==";
>};
>
> controls {
>        inet 127.0.0.1 port 53 allow {
>                127.0.0.1;
>                internal.ip;
>                }
>        keys {
>                rndc-key;
>                };
>};
>options {
>        directory "/usr/custom/named";
>        pid-file "/usr/custom/named/named.pid";
>        listen-on port 53 { internal.ip;};
>        edns-udp-size 512;
>        };
>
>logging {
>    channel update_debug {
>    file "/var/log/update-debug.log";
>    severity  debug 3;
>    print-category    yes;
>    print-severity    yes;
>    print-time   yes;
>};
>             channel security_info    {
>                  file "/var/log/named-th.info";
>                  severity  info;
>                  print-category yes;
>                  print-severity yes;
>                  print-time     yes;
>             };
>
>         category update { update_debug; };
>         category security { security_info; };
>};
>
>zone "." in {
>        type hint;
>        file "/usr/custom/named/named.root";
>        };
>zone "domain.com" in {
>        type master;
>        file "/usr/custom/named/domain.com.hosts";
>        allow-query { any; };
>        };
>zone "18.172.in-addr.arpa" in {
>        type master;
>        file "/usr/custom/named/172.18.rev";
>        };
>zone "0.0.127.in-addr.arpa" in {
>        type master;
>        file "/usr/custom/named/127.0.0.rev";
>        };
>
>
>
>
>
>
>
>  
>

More information about the bind-users mailing list