LinuxQuestions.org
Latest LQ Deal: Latest LQ Deals
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Fedora
Reload this Page Error setting up DNS
User Name
Password
Fedora This forum is for the discussion of the Fedora Project.

Notices


Reply
  Search this Thread
Old 06-17-2007, 05:37 AM   #1
dpballey
Member
 
Registered: Feb 2004
Location: India
Distribution: Mandrake 9.1, Fedora 7, FreeBSD 6.2, , Slackware 12, Debian
Posts: 69

Rep: Reputation: 16
Error setting up DNS

I am trying DNS + DHCP on Fedora 7. I am getting following error. May I request you to please have a look and point the fault where I am wrong.

I have installed DNS with the following command:
#yum install bind-chroot caching-nameserver

Next, I did,
chmod 755 /var/named/
chmod 775 /var/named/chroot/
chmod 775 /var/named/chroot/var/
chmod 775 /var/named/chroot/var/named/
chmod 775 /var/named/chroot/var/run/
chmod 777 /var/named/chroot/var/run/named/
cd /var/named/chroot/var/named/
ln -s ../../ chroot
chkconfig --levels 235 named on
/etc/init.d/named start

I have then edited the named.conf and added few more zone files viz. 155.30.10.in-addr.arpa,named.bind, etc (named.conf follows)

Code:
[root@foocat named]# /etc/init.d/named start
Starting named: 
Error in named configuration:
zone localdomain/IN: loaded serial 42
zone localhost/IN: loaded serial 42
zone 0.0.127.in-addr.arpa/IN: loaded serial 1997022700
zone foo.net.zone/IN: loaded serial 42
zone 155.30.10.in-addr.arpa/IN: loading from master file 155.30.10.in-addr.arpa failed: permission denied
standard-in/155.30.10.in-addr.arpa/IN: permission denied
zone 0.in-addr.arpa/IN: loading from master file named.network failed: permission denied
standard-in/0.in-addr.arpa/in: permission denied
zone 255.in-addr.arpa/IN: loaded serial 42
zone bind/CH: loading from master file named.bind failed: permission denied
ultimate-chaos/bind/chaos: permission denied
                                                           [FAILED]

permission's are as under :

Code:
-rw-r----- 1 root named 594 2007-06-17 14:31 155.20.10.in-addr.arpa
lrwxrwxrwx 1 root named 6 2007-05-24 18:42 chroot -> ../../
drwxrwx--- 2 named named 4096 2004-08-26 02:21 data
-rw-r----- 1 root named 198 2007-05-27 14:46 foo.net.zone
-rw-r----- 1 root named 198 2006-09-11 14:43 localdomain.zone
-rw-r----- 1 root named 195 2006-09-11 14:43 localhost.zone
-rw-r----- 1 root named 577 2007-06-17 12:25 named.bind
-rw-r----- 1 root named 427 2006-09-11 14:43 named.broadcast
-rw-r----- 1 root named 2518 2006-09-11 14:43 named.ca
-rw-r----- 1 root named 424 2006-09-11 14:43 named.ip6.local
-rw-r----- 1 root named 426 2006-09-11 14:43 named.local
-rwxr-xr-x 1 root named 480 2007-06-17 12:24 named.network
-rw-r----- 1 root named 427 2006-09-11 14:43 named.zero
drwxrwx--- 2 named named 4096 2004-07-27 20:27 slaves
My /etc/resolv.conf
Code:
#Local domain name
domain foo.net
#Domain on which a host name is search fisrt)
; generated by /sbin/dhclient-script
search foo.net
nameserver 10.30.155.1
nameserver (ISP's nameserver-1)
nameserver (ISP's nameserver-2)
/etc/hosts
Code:
# Do not remove the following line, or various programs
# that require network functionality will fail.
::1     localhost.naughtycat.dishs.net  localhost
192.168.1.13    naughtycat.dishs.net
~
My named.conf
Code:
// /var/named/chroot/etc/named.conf
//domain foo.net

//First off is the key. To modify the running server you need
//this, the same as in  the dhcpd.conf file.

key dhcpupdate {
        algorithm hmac-md5;
        secret "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx";
};


acl "home" { 10.30.155.0/24; 127.0.0.1; };



options {
        	directory       "/var/named";
	        dump-file       "/var/named/data/cache_dump.db";
	        statistics-file     "/var/named/data/named_stats.txt";
		listen-on   { "home"; };      
		allow-query { "home"; };
	        allow-recursion { "home"; };
		allow-transfer { none; };
	        notify no;
		forwarders { xxx.xxx.xxx.xxx; xxx.xxx.xxx.xxx; };
   	};


controls {
    inet 127.0.0.1 port 953
    allow { 127.0.0.1; 10.30.155.1; } 
    keys {  "catdhcpupdate"; };
};



view "standard-in" in {

zone "." {
      	type hint;
        file "named.ca";
     };

//zone for local domain
    zone "localdomain" IN {
        type master;
        file "localdomain.zone";
//      allow-update { key "dhcpupdate"; };
        notify no;
    };

 
zone "localhost" IN {
        type master;
        file "localhost.zone";
//      allow-update { key "dhcpupdate"; };
    };

zone "0.0.127.in-addr.arpa" {
        type master;
        file "named.local";
//      allow-update { key "dhcpupdate"; };

    };	

//Forward lookup for foo.net

zone "foo.net.zone" {
        type master;
        file "foo.net.zone";
	allow-update { key "dhcpupdate"; };

    };

zone "155.30.10.in-addr.arpa" IN {
         
        type master;
        file "155.30.10.in-addr.arpa";
        allow-update { key "dhcpupdate"; };
        notify no;
    
 };
	
       zone "0.in-addr.arpa" {
      
             type master;
             file "named.network";
    };

    zone "255.in-addr.arpa" {
             type master;         
             file "named.broadcast";
    };
 };

view "ultimate-chaos" chaos {

      recursion no;

    zone "." {
         type  hint;
         file "/dev/null";
     };
	
    zone "bind" {
        type master;
        file "named.bind";
    };
};

Regards
 
Old 06-18-2007, 05:12 AM   #2
Brad.Scalio@noaa.gov
Member
 
Registered: Jan 2007
Location: Washington DC
Distribution: RedHat & spins ... Fedora, CentOS, Mandriva
Posts: 82

Rep: Reputation: 15
Code:
zone bind/CH: loading from master file named.bind failed: permission denied
ultimate-chaos/bind/chaos: permission denied
the zone files should not be owned by root regardless of what the mods are

the default for zone files is 600 named:named

Check what version of bind-chroot you have installed: rpm -qa | grep bind-chroot

in version => 9.2.4-24 the permissions got funky, with the addition of a proc FS under /var/named/chroot as well, which might have changed on instance other permissions in the chroot dir structure

be careful of recursively changing permissions however, as with a proc FS in chroot now, you will mess up a lot of system files and other dirs with a recursive change ... just compare with another system to match ownerships and permissions

that is most likely the problem -- you can test maybe by trying to download a zone file or find the mail server for a particular domain

dig <domain> -t AXFR
or
dig <domain> MX

if the zone files don't transfer as they should, or you don't resolve a MX you ar e missing permissions somewhere (verify in messages, it should show something similar to the permission denied messages you posted)
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
setting up dns mnm_mc Red Hat 1 05-03-2007 02:55 PM
DNS setting superraylo Linux - Software 1 06-03-2006 06:29 AM
TEMP_FAILURE: DNS Error: Timeout while contacting DNS servers when receiving emails tonysutherland Linux - Networking 2 02-10-2006 09:04 AM
Setting up DNS - Getting Format Error collins92 Linux - Enterprise 1 01-16-2006 08:41 AM
Setting up email for vitural hosts MX od DNS error dazzleblue Linux - Newbie 9 09-30-2003 07:00 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Fedora

All times are GMT -5. The time now is 08:51 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration