bugs for cname can not be working properly with bind 9.11.4
Petr Menšík
pemensik at redhat.com
Wed May 25 18:07:34 UTC 2022
Use command "rndc zonestatus kaixinduole.com" to check status and SOA of
zone on your server.
If you don't see correct SOA loaded in named, use "journalctl -xeu
named" to check logs. Very likely there would be some kind of error. I
would guess permission error.
Ensure named user or named group has that file readable. Check also
selinux context with ls -Z, it should have named_zone_t type. Use
restorecon to reset context ofr the file.
Share "ls -lZ /var/named/kaixinduole.com" if you cannot figure that out.
I would suggest running:
sudo -u named named-checkconf -z
It should discover some issues, but checking logs of named would provide
best details.
On 25. 05. 22 17:39, 边明凯 wrote:
> Hi Jan-Piet & All
>
> Thank you for the feedback, I just modified the serial number and
> strictly follow the steps that you suggested.but it seem still not
> working.
>
> image.png
> then I run the below command to check and reload
>
> image.png
>
> then run dig -t soa kaixinduole.com <http://kaixinduole.com> @localhost
>
> image.png
> run dig www.kaixinduole.com <http://www.kaixinduole.com> @localhost
> image.png
> Actually nothing changed ,
> thanks in advance for the help.
>
>
>
> On Wed, May 25, 2022 at 4:56 PM Jan-Piet Mens via bind-users
> <bind-users at lists.isc.org> wrote:
>
> >the domain name is kaixinduole.com <http://kaixinduole.com>
>
> Querying the SOA record for kaixinduole.com
> <http://kaixinduole.com> shows the SOA serial number
> is less than what you showed in the screenshot:
>
> ;; ANSWER SECTION:
> kaixinduole.com <http://kaixinduole.com>. 21600 IN SOA
> ns1.kaixinduole.com <http://ns1.kaixinduole.com>.
> shawn.kaixinduole.com <http://shawn.kaixinduole.com>. (
> 2022041566 ; serial
> 3600 ; refresh (1 hour)
> 900 ; retry (15 minutes)
> 604800 ; expire (1 week)
> 86400 ; minimum (1 day)
> )
> >I just create a cname record for testing, which is www cname to
> >www.baidu.com <http://www.baidu.com>. please see the below :
>
> When you update the zone file and add the CNAME, you must increase
> the SOA serial number to anything higher than what it currently
> is. The zone seems to use YYYYMMDDnn format, but you can also just
> increment the current number.
>
> After storing the zone file, I recommend you use
>
> named-checkconf -z
>
> to make sure you see no error messages, and then you should be
> able to load the zone with an
>
> rndc reload kaixinduole.com <http://kaixinduole.com>
>
> Good luck,
>
> -JP
>
> --
> Visit https://lists.isc.org/mailman/listinfo/bind-users to
> unsubscribe from this list
>
> ISC funds the development of this software with paid support
> subscriptions. Contact us at https://www.isc.org/contact/ for more
> information.
>
>
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
>
>
>
> --
> Best Regards
>
> Bian Mingkai (边明凯)
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20220525/1ca6dacd/attachment-0001.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image.png
Type: image/png
Size: 36527 bytes
Desc: not available
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20220525/1ca6dacd/attachment-0004.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image.png
Type: image/png
Size: 18844 bytes
Desc: not available
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20220525/1ca6dacd/attachment-0005.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image.png
Type: image/png
Size: 38781 bytes
Desc: not available
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20220525/1ca6dacd/attachment-0006.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image.png
Type: image/png
Size: 34917 bytes
Desc: not available
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20220525/1ca6dacd/attachment-0007.png>
More information about the bind-users
mailing list