Server :: BIND 9.5 On Fedora Core 9 Not Resolving Dns Queries
Apr 21, 2010
I have this ISP grade Nameserver running on BIND 9.5 on Fedora Core 9 64 Bit.
Its been pretty working well for sometime until a last week when we noticed it stopped resolving for our clients using on our service.
It gives correct authouritative answers for our own ISP domain with the A, PTR and MX intact but does not return resolving queries back to clients.
Below are my files
This is the message from /var/log/messages
The 41.223.x.x and 41.215.x.x ip address are from our ISP subnet and so are our own clients being denied.
The box is also hosting our traffic graph server which is on a LAMP but listens on another IP/ethernet card.
So far the load on the server is minimal as is a Dell R200 rack server.
View 11 Replies
ADVERTISEMENT
Feb 15, 2010
I am currently running the latest version of Bind, and for some completely unknown reason I can NOT get queries to work for PTR records. All queries to the servers for reverse name lookup get query denied:
Using domain server:
Name: 66.150.173.1
Address: 66.150.173.1#53
Aliases:
Host 27.173.150.66.in-addr.arpa not found: 5(REFUSED)
And it shows in my logs:
I am at my wits ends with the piece of crap. Can anyone shine some light on why this damn Bind install won't respond to these queries?
For reference here is my named.conf:
Code:
View 15 Replies
View Related
Feb 14, 2011
I can configure a caching-only name server fine, but how do I make it forward DNS queries too?
I'm thinking I could add the below to the options stanza in the /etc/named.conf file:
View 1 Replies
View Related
Mar 4, 2011
I am bit new to Linux and have setup caching-only name server with Centos 5.5. when i do dig server, it provide resolutions. but when i use the server IP as DNS on my windows client, it says, "connection refused" on the NSlookup output. (IP table didn't enable) My server Ip is 192.168.1.253 and bellow is the configuration of "/var/named/chroot/etc/named.conf"
options {
listen-on port 53 { 127.0.0.1; 192.168.1.253; };
listen-on-v6 port 53 { ::1; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt"; .....
View 9 Replies
View Related
Mar 8, 2010
I have installed BIND 9.6.1-P3-RedHat-9.6.1-16.P3.fc12 on Fedora Core 12.
I found out that when i perform i DNS lookup to a some record that is not in the DNS cache or zones(means...recursive) it takes about 4 sec to give the IP results.
I dig a little bit on the internet and found out that it is a known issue but all places says that it is fixed on newer version of BIND (after version 9.3)
I tried:
1. start BIND with -4 argument ( named -4) - the server started but no changes on the delay.
2. disable IPV6 on the server - i tried the articles on the web but still i get IPV6 address.
View 7 Replies
View Related
Jan 21, 2010
After adding a new name to bind, and it just can't resolve it.
Trying to restart, this happens:
And the server it self still cannot resolve it.
View 9 Replies
View Related
Feb 13, 2011
However I just built a 10.10 server, installed webmin, vmware, and the server is working perfectly. I configured my bind 9 server using the latest webmin and on the server everything resolves perfectly to both the internet and lan. I have it set to 127.0.0.1, the server ip address is 10.1.50.25. However, it will not accept dns client queries in which they cannot resolve to the lan or internet. I have the dhcp giving out the dns server 10.1.50.25. NSLOOKUPS from the client show query refused. I know there has to be some setting or config that will allow clients to query but I am not able to locate it, and I am not totally knowledgeable of named.conf and been all through the webmin module and configuration settings.
View 6 Replies
View Related
Jan 18, 2011
During the development of a java application appearantly found that cannot bind more than 500 UDP sockets at the same time.
The developed java application is running on Fedora Core (x64)
Is there some procedure to check how many sockets I can bind at the same time on that linux distribution?
In case the limit exists, can it be increased easily?
$ uname -a result is :
View 2 Replies
View Related
Jan 15, 2011
I have a Windows 7 professional x64 pc that intermittently fails to resolve host aliases. The nameserver is a Fedora 11 system running bind 9.6.2-p2. Its cannonical name is trixter.intranet.org, and it serves several web sites, each with a different host alias: hg.intranet.org, svn.intranet.org, bugzilla.intranet.org, etc.
Occasionally, the Windows pc will be unable to find any of the aliased hosts, even when it can find the canonical name. The aliases will be un-resolvable for a period of several minutes, and then, with no intervention, they can be found again. Trixter can always resolve the aliases to itself.
Even stranger, when I use Cygwin from the problematic Windows 7 PC, it CAN resolve the hosts. I can ping hg.intranet.org from a Cygwin shell, but not from a cmd.exe window. Administrator privileges make no difference.
View 1 Replies
View Related
Aug 28, 2011
How often are dns queries sent? Assume I want to connect to a ssh server, will I send one dns-query in order to do that or do I send multiple during my connection? What if I request web-pages, do I send a query only when I enter a site or will I send queries every time I visit a new page on that site?
I'm asking since I'm considering getting an account at dyn.com (the standard account for $30/yr) and it comes with 600 000 queries per month (which is way more than I expect to get but knowing exactly what it means is always good).
View 3 Replies
View Related
Jul 8, 2011
what is bind vs bind-chroot vs caching-nameserver ?what is the different between eatch others ?
View 7 Replies
View Related
Apr 4, 2011
I recently setup an email server on Fedora Core (14). Sendmail is running and I am trying to authenticate from a client pc using imaps. I installed Cyrus-imap and it is running and listening on 993. When I try to login, it doesn't accept authentication even though I verified the user's password is correct. (tested with ssh)Is there something I have to do with Cyrus or on the server to allow connections to email? I have not used Cyrus before. I am attempting to access my mail folders via Sendmail and did not make mailboxes in Cyrus. I did allow imaps through the firewall.
View 1 Replies
View Related
Jan 20, 2010
We're running a sendmail server on a fedora core 9 which we've configured recently. The problem is, the server is working fine but there are some e-mails that enter our server but doesn't get forwarded to the user.
Quote:
Quote:
Here it says "stat=Sent" but nothing from the above mail address has been received on the client's inbox. We've experienced this with Microsoft Outlook, Outlook Express and Thunderbird alike so far with Two(2) of our user accounts.
View 1 Replies
View Related
Jan 8, 2010
I want to make a dns server using bind 9.5.1 in fedora 10 but i 've got this following error when nslookup.
Quote:
nslookup admindevice1.fmipa
Server: 127.0.0.1
Address: 127.0.0.1#53
** server can't find admindevice1.fmipa.dns.fmipa: SERVFAIL
this is my named.conf
Quote:
//
// named.conf
//
// Provided by Red Hat bind package to configure the ISC BIND named(8) DNS
[code].....
but when i start bind and try my dns i got a wrong ip for both ns and admindevice1.
View 2 Replies
View Related
Jul 5, 2011
I would like configure a DNS server on Debian, only to forward through my ISP DNS servers.
View 4 Replies
View Related
Feb 23, 2010
My DNS server used to work flawlessly but for some reason it no longer responds to queries. It seems that named always queries internet root serves!!
View 3 Replies
View Related
Nov 7, 2010
I have internal-only email server that has internal BIND9 running. Thought it only has its IP address defined in /etc/resolv.conf, it is still resolving outside addresses.
View 2 Replies
View Related
Mar 14, 2010
i download the rpm package of gcc .
View 10 Replies
View Related
Mar 24, 2010
I have change my mail server previous when i open my domain [url] it goes to [url].Now i have change my Mail server from openwebmail to Zimbra Server .so when i again open to it mail.mydomain.com ,proxy server takes to [url].
If i bypass proxy server then it open mail.mydomain.com(My zimbra Page).i have also updated internal DNS addresss But Squid not updating it
How to update Squid DNS Entry ? how to Update Squid Cache records?
View 4 Replies
View Related
Sep 22, 2009
i am working on fedora 10 and configured dns on my college lan which already has it's dns at 192.168.5.20 .So i configured my private dns server at 192.168.101.91 which is my ip too.And the domain name is the host name of my system for example server.onkie.com.MY dns port 53 is shown when i do nmap localhost but but doesnt show when i do nmap 192.168.101.91 .Also when tested my server on other computers on my lan with there primary dns as 192.168.5.20 and secondary as 192.168.101.91 they cant access my site at my system with the name server.onkie.com . nmap localhost
[Code]...
View 1 Replies
View Related
Sep 22, 2009
I am working on fedora 10 and configured dns on my college lan which already has it's dns at 192.168.5.20 .So i configured my private dns server at 192.168.101.91 which is my ip too.And the domain name is the host name of my system for example server.onkie.com.MY dns port 53 is shown when i do nmap localhost but but doesnt show when i do nmap 192.168.101.91 .Also when tested my server on other computers on my lan with there primary dns as 192.168.5.20 and secondary as 192.168.101.91 they cant access my site at my system with the name [URL].. . nmap localhost
Starting Nmap 5.00 ( http://nmap.org ) at 2009-09-22 21:24 IST
Interesting ports on onkar (127.0.0.1):
Not shown: 993 closed ports
PORT STATE SERVICE
22/tcp open ssh
53/tcp open domain ----the dns is running
[Code]...
I already disabled my selinux and iptables ..but then also it's not accessible in Lan .
View 1 Replies
View Related
Nov 3, 2010
I just loaded F14 on an old Dell Dimension 3000 with a dual core processor but only one is showing. Here's the output from top:
processor: 0
vendor_id: GenuineIntel
cpu family: 15
model: 4
[Code]....
View 2 Replies
View Related
Jan 9, 2009
Is there a way to run queries against a Microsoft sql server from linux? Here is what I would like to do. When I create apps that us db back end I would like to quickly check results of my queries. so if I could do something like "select * form Orders" from the terminal or another app that would be great.
View 6 Replies
View Related
Feb 24, 2011
I have my bind9 DNS server running on Ubuntu with logging on. What's bothering me is that I have log full of localhost queries instead of from IP of the computer which actually asked.DNS queries log:/var/log/named.queries.log
Code:
24-Feb-2011 16:01:19.413 client 127.0.0.1#38022: query: clients4.google.com IN A + (127.0.0.1)
[code]....
View 6 Replies
View Related
Jun 9, 2010
I'm thinking about installing a DNS server on Fedora 13 running bind. I looked around for available bind packages and found only these:
Now the first one contains bind utils the second one is for running DNS in a chroot env and the last one is a bind with some DB backend.
Does this mean that fedora 13 doesn't support/.provide "standard" bind server (I mean the one to run without chroot/without db backend) ? Or am I missing anything in my repolist which is :
View 5 Replies
View Related
Jun 4, 2010
I chose -Server-, if this is more appropriate in -Networking-, just let me know. Basically, I need to be able to merge responses stored in a zone file with responses from an "upstream" authoritative server. I'm in the sad position of needing to "intercept" requests to *part* of a domain (but not restricted to a sub-domain!) and return results for *some* hosts that use an internally routed address, and results for the rest using the public internet addresses. Unfortunately, it's not my domain, so I can't just use views (although I suspect they could end up having some part to play in this, at least potentially)... but instead I have to actually send requests recursing to the other site's external DNS for any hosts my server doesn't have records for in the zone file.
Some background on the situation:
I work at a local government, which has a private link / VPN connection to a state government entity, and needs to use internal addresses for some of the state servers, which then get routed over an "internal" network link. But the state uses the same domain name internally and externally, just presenting views to internal clients vs. external clients. -- However, we are only being allowed access to certain of their servers through the internal link, which means that for any other servers that we don't have internal/private access for, we have to visit the public addresses just like anyone else on the internet... So, I can't just send all requests to their internal DNS and get responses, because we'd get IPs for some servers (e.g. their main web site) that we wouldn't then be able to reach using the internal network link.
For Example: Say I have a client machine, "client1", on my network ("my.net"), which uses "mydns1.my.net" for name resolution ... and which needs to access 2 servers on the state network, "private.st.us" and "public.st.us" -- so named based on how "my.net" needs to access them.
The external state DNS server/view ("ext-dns.st.us") responds to requests with something like:
private.st.us -- 1.2.3.456
public.st.us -- 1.2.3.457
(Those are just crap addresses, obviously.
The internal state DNS server/view ("int-dns.st.us") responds to requests with something like:
private.st.us -- 10.0.0.8
public.st.us -- 10.0.0.10
This works on their network because their own clients have access to all such IPs.
But for us, they only allow traffic flowing between "my.net" and their internal network to reach the 10.0.0.8 address, blocking all other address destinations. So, when "client1.my.net" asks "mydns1.my.net" for the address of "public.st.us", I need "mydns1" to recurse out to "ext-dns.st.us" to get an answer (1.2.3.457) and then return that IP to "client1" -- because "my.net" is blocked from accessing the server's 10.0.0.10 address. But, when client1 asks mydns1 for "private.st.us" I need to pull the IP (10.0.0.8) from a local zone file instead of asking either of the state DNS servers -- or optionally forward the request to "int-dns.st.us" I suppose -- because the state blocks access to certain services (which we need and are the whole cause of this problem!) via the public (1.2.3.456) address.
View 1 Replies
View Related
Mar 8, 2010
i have a own internet cafe that use a Fedora Core 8 as a dhcp and proxy server, and i had two normal users that created in my server to monitoring the billing of client who use the internet. But was delete those users and create a new one and restarted the server. and the problem is when booting process running suddenly hang and cannot continue but the server doesn't showing any errors and cannot continue the booting process.....
View 14 Replies
View Related
Sep 5, 2010
trying to configure a Centos 5.5 server (simple file server with DHCP and DNS relay). I configured and tested the config (by 'service dnsmasq configtest') of dnsmasq and I got the message 'dnsdomain:host unknown (translation of the real message : hte inconnu) and I didn't find where I could define this host ! The hostname of the server is well defined and I can see it from all Windows PC's on the LAN. dnsmasq starts (with hte same message as in configtest) but when querying DNS from PC's te.g. trying to surf the Internet), I don't get replies (3 DNS servers are also well defined and operational).
View 2 Replies
View Related
Jun 8, 2011
I have this in my resolv.conf file:
Code:
I have also used external DNS servers just to eliminate there being a problem with 192.168.1.67 (which many other computers are using successfully).
When I attempt to ping Google just to see if it works I receive this:
Code:
If I issue a host command against google.com I receive this:
Code:
I had thought that host and the name lookup routine would use the same DNS server and it should fail on the host command as well as the ping, but evidently not.
View 8 Replies
View Related
May 20, 2009
I have created a virtual machine of a system running Fedora Core 4 and I need to upgrade it to Fedora Core 10. Based on what I have read, it iis possible so I started theupgrade process. I get an error message saying that /dev/hda6 (my root paritition does not exist) even though it does.
Does the installer need to read a label from /etc/fstab? I executed tune2fs -L / /dev/hda6 amd ,and added LABEL=/ for the corresponding entry for fstab. but the FEDORA CORE 10 is still giving the same problems for the installation process. Should I upgrade to an intermediate verson like Fedora Core 7 first?
View 14 Replies
View Related
