NS hosed! Please Advise
Jeffrey Reasoner
jeff.reasoner at mail.hccanet.org
Fri Oct 27 02:30:10 UTC 2006
The issue is probably related to your views (referenced in the path of
the named-checkzone statements you included).
Actually, from outside it appers that there is a problem with the public
view on ns1. It returns the address of only one of the servers, while
ns2 hands back both:
dig ns +nostats +nocmd +noqr +noquestion wananchi.com @ns1.wananchi.com
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 11918
;; flags: qr aa rd; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
;; ANSWER SECTION:
wananchi.com. 86400 IN NS ns2.wananchi.com.
wananchi.com. 86400 IN NS ns1.wananchi.com.
;; ADDITIONAL SECTION:
ns1.wananchi.com. 86400 IN A 62.8.64.3
dig ns +nostats +nocmd +noqr +noquestion wananchi.com @ns2.wananchi.com
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 1274
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 2
;; ANSWER SECTION:
wananchi.com. 86400 IN NS ns1.wananchi.com.
wananchi.com. 86400 IN NS ns2.wananchi.com.
;; ADDITIONAL SECTION:
ns1.wananchi.com. 86400 IN A 62.8.64.3
ns2.wananchi.com. 86400 IN A 62.8.64.4
The .com servers also list an additional server for your domain which is
not resolvable by your servers:
dig ns +nostats +nocmd +noqr +noquestion wananchi.com
@a.gtld-servers.net
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 62169
;; flags: qr rd; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 3
;; ANSWER SECTION:
wananchi.com. 172800 IN NS ns1.wananchi.com.
wananchi.com. 172800 IN NS ns2.wananchi.com.
wananchi.com. 172800 IN NS ns3.wananchi.com.
;; ADDITIONAL SECTION:
ns1.wananchi.com. 172800 IN A 62.8.64.3
ns2.wananchi.com. 172800 IN A 62.8.64.4
ns3.wananchi.com. 172800 IN A 62.8.64.2
This issue almost certainly did not come "Out of nowhere" - it has to be
related to changes in the server config, zonefiles, views acl matching,
etc.
More help from this list will at least require you post named.conf
On Thu, 2006-10-26 at 12:28, Odhiambo Washington wrote:
> Hello there,
>
> Out of nowhere, my name server cannot resolve its own name:
> This is a query while I am logged into the same box:
>
>
> 5$ nslookup ns2.wananchi.com
> Server: ns2.wananchi.com
> Address: 62.8.64.4
>
> *** ns2.wananchi.com can't find ns2.wananchi.com: Non-existent host/domain
>
>
> I have looked and looked and now I believe a "third eye" is perfectly in
> order. I have also used some web-based tools (out of desperation) -
>
> http://demo.dnsdoctor.org/
> http://atrey.karlin.mff.cuni.cz/~mj/sleuth/
>
> They also still confirm my fears...
>
> I am probably just missing some logging option to reveal this. I have
> added
>
> !named
> *.* /var/log/named.log
>
> to syslog.conf. However that log file does not reveal much in terms of
> why there is NO A record for ns2.wananchi.com, even though I can see one
> in the zone file! named-checkzone says we are fine... while we are
> not:-(
>
>
> [root at ns2]#named-checkzone wananchi.com /etc/namedb/views/internal/wananchi.com
> zone wananchi.com/IN: loaded serial 2006102602
> OK
> [root at ns2]#named-checkzone wananchi.com /etc/namedb/views/external/wananchi.com
> zone wananchi.com/IN: loaded serial 2006102602
> OK
>
>
> Now I remain simply stumped.
> Any advise to identify the problem would be most helpful.
>
>
>
> -Wash
>
> http://www.netmeister.org/news/learn2quote.html
>
> DISCLAIMER: See http://www.wananchi.com/bms/terms.php
>
> --
> +======================================================================+
> |\ _,,,---,,_ | Odhiambo Washington <wash at wananchi.com>
> Zzz /,`.-'`' -. ;-;;,_ | Wananchi Online Ltd. www.wananchi.com
> |,4- ) )-,_. ,\ ( `'-'| Tel: +254 20 313985-9 +254 20 313922
> '---''(_/--' `-'\_) | GSM: +254 722 743223 +254 733 744121
> +======================================================================+
>
> On the road, ZIPPY is a pinhead without a purpose, but never without a
> POINT ...
>
>
#####################################################################################
This email has been scanned by MailMarshal, an email content filter.
#####################################################################################
More information about the bind-users
mailing list