Ubuntu Servers :: Setting Up BIND9 - Kerberos.xeonserver (not Configured Yet)
Dec 25, 2010
I am having trouble with setting up BIND9 for 6 virtual servers that use ubuntu x64 v10.10. I have main server running ubuntu as well. host name is xeonserver I would like to explain my setup first.
my router ip: 192.168.1.1/24 host server for VMs ip: 192.168.1.2/24 Then on qemu my virtual machines are in 10.0.0.0/24 network, gateway to my router is 10.0.0.1
1. kerberos.xeonserver (not configured yet) 10.0.0.2
2. dns.xeonserver (the one I have trouble with) 10.0.0.3
3. mysql.xeonserver (not configured yet) 10.0.0.4
4. apache.xeonserver (not configured yet) 10.0.0.5
5. ftp.xeonserver (not configured yet) 10.0.0.6
6. mail.xeonserver (not configured yet) 10.0.0.7
To configure it I followed instructions found on [URL]
[Code]...
View 1 Replies
ADVERTISEMENT
Sep 6, 2010
Im install bind9 in ubentu 10 with this turotial [url]my dns server is work in linux but my client user cannot use dns when client run nslookup in cmd Cannot find server name for address my_ip_linux :server faild Server: Unknown. im on linux valid ip
View 5 Replies
View Related
Feb 7, 2011
I've currently got Ubuntu server configured so that clients can login using LDAP user accounts that I've created using ldapadduser (from the ldapscripts package).
I've also got NFS exports working so that /home can be exported to clients. Kerberos authentication is enabled for NFS and clients require a nfs/clienthostname.domain principal to be able to mount the NFS share.
However, I now realise that for LDAP users to be able to access the mount they need their own Kerberos principal. If I run kinit dan@DANBISHOP.ORG then I can access /home/dan as user dan otherwise I get permission denied.
My question then is how best to proceed... is there a way to configure the client/server so that once a client has mounted the nfs share using Kerberos, all users can access it without their own principal?
It seems more usual to create kerberos principles for all users, but then how does one manage users? Using ldapscripts is very easy, but if the admin then has to manually create kerberos principals everytime, it could become very tedious. Furthermore how do users change their password if kerberos is used for authentication?
View 1 Replies
View Related
Apr 20, 2010
I want to make BIND9 aware of my TLD so I need to give it an A record. Then I wanted to create CNAME for ftp, mail and so on as time permits
I have webmin so I need to work from that.
my TLD is [URL]
I wanted to bolt on www, ftp for now
www is port 80, ftp port 21 etc
View 1 Replies
View Related
Oct 6, 2010
when i started bind9, it showed me this error, Can anyone help me in this, according to me i dont have a file sysklogd so i can not restart that. that is why i think iam getting error while starting bind9. How to get that file and how to get started Bind9.
View 4 Replies
View Related
Jan 3, 2011
using Ubuntu Server 10.10 x86_64 on this machine. It is used as a master DNS server for my domain. We have migrated it to Ubuntu from Gentoo. The problem is that AppArmor is spamming /var/log/syslog
Code:
Jan 3 14:38:40 hydra kernel: [2154828.893409] type=1400 audit(1294061920.141:660146): apparmor="DENIED" operation="mknod" parent=1 profile="/usr/sbin/named" name="/var/log/named_querylog" pid=15397 comm="named" requested_mask="c" denied_mask="c" fsuid=103 ouid=103
The zone files reside in /etc/bind/ and we have not changed anything in /etc/apparmor.d/usr.sbin.named .
We don't want to just uninstall apparmor, but how do we adjust its settings correctly?
View 5 Replies
View Related
Mar 2, 2011
Since I have not gotten anything on the "General Help" I am posting this here: When a Ubuntu 10.10 I have starts up apache2, MySQL and postfix start properly but bind9 doesn't. Once booted is I run 'sudo /etc/init.d/bind9 start' it starts. The only thing odd on this system is I have a "inet6 v4tunnel" interface defined in my /etc/network/interfaces. From booting in the syslog there is:
Code:
/var/log/syslog:Feb 28 19:02:42 ubuntu named[1029]: starting BIND 9.7.1-P2 -u bind -d 9
/var/log/syslog:Feb 28 19:02:42 ubuntu named[1029]: built with '--prefix=/usr' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--sysconfdir=/etc/bind'
[code]....
Even with the bind debug level at set at 90 I do not get any more in the logs that what I posted before. The lack of errors in the logs is giving me no idea where to start. I commented out the IPv6 tunnel interface and rebooted and still no help. bind still is not starting at boot. OK, it is not a permissions issue, I have changed the config and zone files to be owned by bind:bind, root:bind, root:root and bind:root and it has made no difference. Doing a fresh install on a Virtual Box VM and configure it in a similar manner bind9 starts normally. (I am almost to the point where I will rebuild the box)
View 9 Replies
View Related
Apr 11, 2011
I have googled for hours and can not find an answer to what this means.
dig @172.16.255.254 twitter.com.
; <<>> DiG 9.7.0-P1 <<>> @172.16.255.254 twitter.com.
; (1 server found)
;; global options: +cmd
;; Got answer:
[Code]...
And I have a very long debuging log file I will not post unless requested. I also have added a ufw allow from all to all rule for testing purposes only.
View 6 Replies
View Related
Apr 26, 2010
I am migrating my server from Kloxo (lxadmin) to Ubuntu (webmin/virtualmin), and I already had my Nameservers on my register (Godaddy) to go to [URL] and [URL] along with my IP. (I set the ttl to 60 cuz I thought that might be a problem) Now, I do a dig [URL], it gives me this output.
Code:
; <<>> DiG 9.6.1-P2 <<>> thedomz.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 40276
[code]...
I can go to my website only when I change my hosts file (on my windows machine).
View 9 Replies
View Related
Jun 26, 2010
I'm having trouble getting dhcpd to update DNS records in bind9. I'm not seeing any journal files created for bind9. The following appears in syslog when a client machine connects to the network:
Code:
Jun 26 04:07:22 ubuntu dhcpd: DHCPDISCOVER from 00:23:df:44:78:83 via eth0
Jun 26 04:07:23 ubuntu dhcpd: DHCPOFFER on 10.0.0.112 to 00:23:df:44:78:83 (Computer1) via
[code]....
View 3 Replies
View Related
Aug 28, 2010
I operate a home network with Ubuntu Server 10.04 with services including DHCP3, Bind9, Apache, and so on. Since I host several dozen websites from home, I have to run Bind DNS. All Ubuntu boxes on my network operate fine. However, all Windows boxes on the network seem to forget to look internally for DNS after a couple of page loads on my internal sites. The network settings still indicate that my internal domain name server is the first lookup and everything seems normal.
View 2 Replies
View Related
Sep 2, 2010
I am using samba4 and bind9 (9.7.2rc1) on an ubuntu server 10.04.
Everything works fine, but bind9 ist unable to update DNS entries sent by clients.
I followed the tutorial [URL] but it doesn't work for me.
It doesn't look like a file permission problem:
Code:
-rw-r--r-- 1 root root /usr/local/samba/private/dns.keytab
-rw-r--r-- 1 root root /usr/local/samba/private/dns_update_list
-rw-r--r-- 1 root root /usr/local/samba/private/named.conf
-rw-r--r-- 1 root root /usr/local/samba/private/named.conf.update
[Code].....
View 2 Replies
View Related
Jul 29, 2010
I have installed servers(10.04 LTS Server) with Kerberos + LDAP, now I can ssh to all those servers and login with kerberos principle. But when I want to change password, I got such error:
Code:
Current Kerberos password:
Enter new Kerberos password:
Retype new Kerberos password:
Password change rejected: Password not changed.
Kerberos database constraints violated while trying to change password.
passwd: Authentication token manipulation error
passwd: password unchanged
I have search this issue but cannot any useful information. Would someone give me a direction?
View 1 Replies
View Related
Dec 29, 2010
i have 2 machines:
first machine: Samba
second machine: LDAP + Kerberos
I found to many tutorials that samba is installed on the same machine as LDAP + Kerberos. is there like a tutorial how samba can be integrated with kerberos from different machine?
View 1 Replies
View Related
Aug 11, 2010
I am trying to get bind 9 up and running on a new installation of server 10.04 and keep getting errors when starting the daemon -
* /etc/bind/named.conf.local:19: unknown option 'zone'
* /etc/bind/named.conf.local:20: unknown option 'zone'
* /etc/bind/named.conf.default-zones:3: unknown option 'zone'
* /etc/bind/named.conf.default-zones:11: unknown option 'zone'
* /etc/bind/named.conf.default-zones:16: unknown option 'zone'
* /etc/bind/named.conf.default-zones:21: unknown option 'zone'
* /etc/bind/named.conf.default-zones:26: unknown option 'zone'
The onlything I could find after scrubbing the internet is once ina while there's a missing bracket. But I have checked and triple checked my config files and the syntax and can't find anything wrong. I have another installation of bind9 running on Fedora and the same exact syntax works just fine.
[Code]....
View 2 Replies
View Related
Sep 8, 2010
Im using bind9 as DNS server on my LAN, but it does not seem to translate its own hostname correctly for some reason. Other hosts is translated correctly, the problem only seems to apply to the DNS host itself. if i "ping <server_hostname>" from the server, it translates correctly. But if i "ping <server_hostname>" from the client it only says "unknown host" The client has the correct DNS-server assigned. How can i start troubleshooting this?
[Code]...
View 3 Replies
View Related
Oct 29, 2010
After upgrading from 9.10 to 10.04, a hundred or so of (for example)
Code:
error (network unreachable) resolving '14.42.117.203.in-addr.arpa/PTR/IN': 2001:500:13::c7d4:35#53: 1 Time(s)
messages appear in syslog each day. Each URL has from 2 - 6 attempts at various ipv6 addresses. My question is why is bind9 trying to resolve ipv6 addresses? I have done nothing to enable or disable ipv6 and thought that if not explicitly enabled I would not have to be concerned with it.
View 1 Replies
View Related
Jun 11, 2011
I have installed bind9 for DNS. I have also installed Apache2, PHP5, MySQL, and correctly configured these together. When I view domain1.co.uk it currently works fine as required. I would like to change it to:
* /var/www/domain1.co.uk/prod/ - becomes the root dir of domain1.co.uk
* /var/www/domain2.co.uk/prod/ - becomes the root dir of domain2.co.uk
Nevertheless, I have created a the following files; these are copies of the "default" file and correctly amended. the required destination directories are in place!
* /etc/apache2/sites-available/domain1.co.uk
* /etc/apache2/sites-available/domain2.co.uk
I then executed:
Code:
sudo ln -s domain1.co.uk ../sites-enabled/domain1.co.uk
Code:
sudo ln -s domain2.co.uk ../sites-enabled/domain2.co.uk
It is important to understand domain1.co.uk and domain2.co.uk represent 2 Existing domain names I own, and both point to my server.
domain1.co.uk currently works in /var/www
Why I would like multiple domain names on the server.
View 1 Replies
View Related
Apr 6, 2010
I can't open 754/tcp por for kerberos propagation, the service is krb_prop.The file /etc/xinetd.conf:
Code:
defaults
{
[code]....
View 3 Replies
View Related
Dec 3, 2009
I have set up a 389 DS server and a kdc. However there is not a howto or any document concerning setting up the DS as a Kerberos database back-end. Nor is there a 389 DS forum, so I am asking here and hopefully some of you could possibly help or throw in some light as to this kind of setup.I have read the 389 DS features page and the Redhat documents but there is no reference to this feature.
View 3 Replies
View Related
Apr 1, 2011
I'm at a loss to why my reverse lookup zone doesn't work for me.I've got two views. One internal and one external. My domain is isp2.datornatverk.se. Public IP: 130.240.133.81.
dig -x @8.8.8.8 130.240.133.81
gives me:
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2917
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
I've set it up so that the internal subnets gets the domains resolved to the internal IP-addresses. When querying from external addresses I will get public IP.My named.conf.local file:
Code:
acl internals {
127.0.0.0/8;[code]..........
I don't know whether the views has messed something up. It worked before I added the views.
View 3 Replies
View Related
Sep 6, 2010
i am having dell inspiron 1540 laptop installed with ubuntu 10.04 (updated). i wanted to install LAMP(Linux,Apache,MySQL,PHP) for software development purpose.
but after restarting the system, following things occured:-Message box appears saying "Ubuntu is running in low-graphics mode" Your screen, graphics card and input device setting could not be detected... OK
Then i get prompt saying what would you like to do ?Run ubuntu in low-graphics mode for just one session.
i get a message starting display in one minute.....nothing happens ... i switch to text mode by pressing
escape. There is a brown color star before: Speech dispacher configured for user sessions.on battery state there is a infinte loop i.e. no response and system just hangs there...startx at text mode makes the screen blank...
Please tell which part of '/var/log/Xorg.0.log' sholud be scanned to find required information.
i am a new to ubuntu How to solve this problem i donot have internet connection and its important that i get it repaired as soon as possible....essential to get it running else i will be forced to goto Windows...
View 3 Replies
View Related
Aug 12, 2011
I am trying to configure windbind and kerberos on my Fedora 15 to connet to my Windows 2003 server environment. But I keep getting this message:
Code:
libads/kerberos.c:333(ads_kinit_password)
kerberos_kinit_password ECP01BCA$@MSA.MDSA.NET failed: Client not found in Kerberos database
Heres my krb5.conf:
Code:
[logging]
default = FILE10000:/var/log/krb5lib.log
[Code]...
View 1 Replies
View Related
Jul 19, 2011
I just install a new server and I would like to now what are the basics that I should install. It currently has LAMP stuff. Any one know how are the VPS server configured at hostgator.com and similar web hosting platforms.
View 6 Replies
View Related
May 11, 2011
Basically im trying to setup a dynamic vlan setup with my Cisco 2950 switch. I understand that freeradius has support for vmps and i'm wanting to use this. (as i'd also use the radius server for authentication for my squid proxy server)
But i have no idea where to start to get this configured. Right now i've got the freeradius package installed and i've done a bit of google'ing and i cant seem to find much about vmps and freeradius.
View 3 Replies
View Related
Jun 3, 2010
My problem is configure and start FTP server on own computer. I edited configure files, and i try to run ProFTP. Then i see that communication: Launch proftpd: - warning: unable to determine IP address of 'dhcppc1'
- error: no valid servers configured
- Fatal: error processing configuration file '/etc/proftpd.conf'[FAILED]
View 3 Replies
View Related
Aug 16, 2011
I have a RedHat box that I have configured, security, audit rules, latest updates, etc. I want to be able to "image" that configuration so I can kick other boxes with that "image", that way no other configuration/updating needs to be done on the newly kicked boxes. What is the best way to accomplish this? To make things more difficult, it would be near to impossible for me to pull any software off the internet for this.
View 5 Replies
View Related
Jan 25, 2010
how to set up dns/bind but the issue I am hitting is that I want to just create a non internet domain setup ie t60.mysuperlan. desktop.mysuperlan. etc . Using a hosts file isn't the best as its pretty much about learning all the stuff to make it work.
View 2 Replies
View Related
Feb 23, 2010
I managed to install a networked printer to my box by
apt-get install system-config-printer-common system-config-printer-gnome
And using the system-config-printer, I can send print test page and it works.
Now, I noticed that I don't have lpr installed on this box.
So even if I install lpr or lprng I cannot seem to make it work.
Ohh and by the way, the only thing I use to print from that box is Acrobat Reader 9.. it is proprelly installed. I can see the networked printer entry from the program.. but for some reason Acrobat Reader 9 needs to use lpr to send the print job.
I wish to know what I am missing here.
I can do lpstat -v and I see my printer entry from there.
Now: the question: how can I setup lpr to work with my networked printer?
Should I install lpr or lprng?
What is the proper way to install a networked printer under Ubuntu-server?
View 2 Replies
View Related
Apr 4, 2010
Looking for any help I can get here.. We have a 9.10 server with both (ifenslave & VLAN) installed and configured. When we are running in bond mode (bond0) it sets the MTU to 9000 just fine.
iface bond0 inet static
hwaddress ether 00:04:7B:30:4A:AC
address 172.21.2.250
netmask 255.255.255.0
mtu 9000
[Code]...
View 5 Replies
View Related
