Not - Re: New DNS server up and running
Robert Moskowitz
rgm at htt-consult.com
Thu Feb 21 01:28:08 UTC 2013
It looks like no system, internal or external could access the DNS on my
new server. IPTABLES was set for 53 both UDP and TCP. Firewall was OK.
In fact a local system on the same subnet, thus NOT going through my
firewall was denied access to the internal domain. Localhost of course
works.
So it is either the Linux firewall and bind port randomization, or it is
SELINUX. How do I test to find out which?
Since the new server is on the same IP address as the old, it is
unplugged from the switch. I can switch back and forth between to two
boxes, only taking the time for ARP table updates.
So I hope someone can point me to what I have missed.
On 02/20/2013 02:07 PM, Robert Moskowitz wrote:
> Phase I is hopefully complete. A new onlo.htt-consult.com is up in
> place of the old one.
>
> This is a faster box with current software. I will 'leave it alone'
> for a week, unless someone tells me something is wrong with it.
>
> Next I unlock my domain from NetSol and choose my new registrar and
> move. Thank you on all the recommendations. Now to choose.
>
> I study up on DNSSEC, maybe read a book or two.
>
> Then after Passover, start the signing!
>
> So I will be, ahem, quite here for awhile. Yeah sure. Well I DO have
> other systems and services to migrate.
>
>
> _______________________________________________
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to
> unsubscribe from this list
>
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
>
More information about the bind-users
mailing list