LinuxQuestions.org
Register a domain and help support LQ
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 09-10-2013, 12:13 PM   #1
DarkLogix
LQ Newbie
 
Registered: Jul 2013
Posts: 16

Rep: Reputation: Disabled
Bind slave serer setup help


Ok I've setup a bind dns server as a secondary DNS server (to replicate the AD DNS from my DC)

the forward zone is working but the reverse zones aren't
This is on centOS 6.4, with VMware tools installed and "yum -y update" run (so should be fully up to date)

hopefully someone can tell me whats wrong.
here is my named.conf file

-----------------------------------------
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};

zone "." IN {
type hint;
file "named.ca";
};

zone "domain-logix.local" IN {
type slave;
masters { 10.0.2.6; 2001:470:b801::2; };
file "domain-logix.local.zone";
};
zone "254.254.10.in-addr.arpa" IN {
type slave;
file "254.254.10.in-addr.arpa";
masters { 10.0.2.6; 2001:470:b801::2; };
};

zone "4.0.10.in-addr.arpa" IN {
type slave;
file "4.0.10.in-addr.arpa";
masters { 10.0.2.6; 2001:470:b801::2; };
};

zone "3.0.10.in-addr.arpa" IN {
masters { 10.0.2.6; 2001:470:b801::2; };
};

zone "4.0.10.in-addr.arpa" IN {
type slave;
file "4.0.10.in-addr.arpa";
masters { 10.0.2.6; 2001:470:b801::2; };
};

zone "3.0.10.in-addr.arpa" IN {
type slave;
file "3.0.10.in-addr.arpa";
masters { 10.0.2.6; 2001:470:b801::2; };
};

zone "2.0.10.in-addr.arpa" IN {
type slave;
file "2.0.10.in-addr.arpa";
masters { 10.0.2.6; 2001:470:b801::2; };
};

zone "1.0.10.in-addr.arpa" IN {
type slave;
file "1.0.10.in-addr.arpa";
masters { 10.0.2.6; 2001:470:b801::2; };
};

zone "0.0.10.in-addr.arpa" IN {
type slave;
file "0.0.10.in-addr.arpa";
masters { 10.0.2.6; 2001:470:b801::2; };
};

zone "0.0.0.0.1.0.8.b.0.7.4.0.1.0.0.2.ip6.arpa" IN {
type slave;
file "0.0.0.0.1.0.8.b.0.7.4.0.1.0.0.2.ip6.arpa";
masters { 10.0.2.6; 2001:470:b801::2; };
};

zone "0.0.2.0.1.0.8.b.0.7.4.0.1.0.0.2.ip6.arpa" IN {
type slave;
file "0.0.2.0.1.0.8.b.0.7.4.0.1.0.0.2.ip6.arpa";
masters { 10.0.2.6; 2001:470:b801::2; };
};

zone "1.0.0.0.1.0.8.b.0.7.4.0.1.0.0.2.ip6.arpa" IN {
type slave;
file "1.0.0.0.1.0.8.b.0.7.4.0.1.0.0.2.ip6.arpa";
masters { 10.0.2.6; 2001:470:b801::2; };
};

zone "1.0.2.0.1.0.8.b.0.7.4.0.1.0.0.2.ip6.arpa" IN {
type slave;
file "1.0.2.0.1.0.8.b.0.7.4.0.1.0.0.2.ip6.arpa";
masters { 10.0.2.6; 2001:470:b801::2; };
};

zone "2.0.0.0.1.0.8.b.0.7.4.0.1.0.0.2.ip6.arpa" IN {
type slave;
file "2.0.0.0.1.0.8.b.0.7.4.0.1.0.0.2.ip6.arpa";
masters { 10.0.2.6; 2001:470:b801::2; };
};

include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";
 
Old 09-10-2013, 12:15 PM   #2
DarkLogix
LQ Newbie
 
Registered: Jul 2013
Posts: 16

Original Poster
Rep: Reputation: Disabled
Arrg looks like I didn't get a full copy of it when I copied from putty

so another question whats an easy way to copy the named.conf file to a windows box?
 
Old 09-11-2013, 03:10 PM   #3
DarkLogix
LQ Newbie
 
Registered: Jul 2013
Posts: 16

Original Poster
Rep: Reputation: Disabled
Any help would be nice
 
Old 09-11-2013, 06:09 PM   #4
jpollard
Senior Member
 
Registered: Dec 2012
Location: Washington DC area
Distribution: Fedora, CentOS, Slackware
Posts: 4,604

Rep: Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241
Active directory doesn't use the same format... and has a couple of extra entries required for AD to work. All the files can be used for is reference.
 
Old 09-12-2013, 12:10 PM   #5
DarkLogix
LQ Newbie
 
Registered: Jul 2013
Posts: 16

Original Poster
Rep: Reputation: Disabled
I'm not using the windows dns files directly
and the forward DNS is working its the reverse that isn't

I exported the list and just used it for the names of the zones, can you tell me how the reverse zones should be named?
 
Old 09-12-2013, 12:22 PM   #6
jpollard
Senior Member
 
Registered: Dec 2012
Location: Washington DC area
Distribution: Fedora, CentOS, Slackware
Posts: 4,604

Rep: Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241
You already have the names.

Bind uses the reversed IP number you already have (for example:zone "1.0.10.in-addr.arpa"). Now the FILE names can be anything you want - that is why bind has the "file" reference. It is only a convention that is mirror the zone name.
 
Old 09-12-2013, 01:21 PM   #7
DarkLogix
LQ Newbie
 
Registered: Jul 2013
Posts: 16

Original Poster
Rep: Reputation: Disabled
ok so why isn't it working?
 
Old 09-12-2013, 02:37 PM   #8
jpollard
Senior Member
 
Registered: Dec 2012
Location: Washington DC area
Distribution: Fedora, CentOS, Slackware
Posts: 4,604

Rep: Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241
I have no idea why Windows does what it does.

DNS should work when you use the Linux server for name resolution.

Now, it might NOT work for other servers UNLESS the linux server is authoritative for the names and IP numbers. Both need to be delegated. I ran a small home server that could only provide forward references as that server was authoritative for the domain name. But it was not authoritative for the IP numbers, thus reverse lookups did not work.

When I ran domain and subdomain servers, the main domain server had to delegate the IP numbers to the subdomain, and until I did that, the subdomain could not provide reverse lookup services for those hosts not using the subdomain server specifically (which was a real pain for Kerberos, which validates IP numbers by reverse lookup - and if the result doesn't match the forward lookup it tended to count them as invalid, and would request the wrong service tickets).
 
Old 09-12-2013, 02:49 PM   #9
DarkLogix
LQ Newbie
 
Registered: Jul 2013
Posts: 16

Original Poster
Rep: Reputation: Disabled
I added the bind server in the Name servers list on the windows box and enabled transfer, also for every zone I set it to notify all servers in the name servers tab.
 
Old 09-12-2013, 03:33 PM   #10
jpollard
Senior Member
 
Registered: Dec 2012
Location: Washington DC area
Distribution: Fedora, CentOS, Slackware
Posts: 4,604

Rep: Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241
Did the slave server get the updates?

BTW, I noticed that you didn't specify "type slave" for the 3.0.10 zone, and there is no file specification either.

Code:
zone "3.0.10.in-addr.arpa" IN {
masters { 10.0.2.6; 2001:470:b801::2; };
};
 
Old 09-12-2013, 03:34 PM   #11
DarkLogix
LQ Newbie
 
Registered: Jul 2013
Posts: 16

Original Poster
Rep: Reputation: Disabled
Ah I must have missed that
BTW just checking so does that part of the config look right?

also any chance you could tell me how to copy the named.conf file off the linux server so I can edit in notepad? and paste the full config here?
 
Old 09-12-2013, 03:52 PM   #12
DarkLogix
LQ Newbie
 
Registered: Jul 2013
Posts: 16

Original Poster
Rep: Reputation: Disabled
Oh I just looked some more and it looks like I've got the 10.0.3 zone twice.
I'm ether not good at coping from putty/vim or messed up when I was editing before I pasted into putty/vim
 
Old 09-12-2013, 04:43 PM   #13
jpollard
Senior Member
 
Registered: Dec 2012
Location: Washington DC area
Distribution: Fedora, CentOS, Slackware
Posts: 4,604

Rep: Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241
scp/putty should be able to copy the files... but since the Linus server is supposed to be the slave the data files are a don't care. It should get them from the master server.
 
Old 09-12-2013, 04:57 PM   #14
DarkLogix
LQ Newbie
 
Registered: Jul 2013
Posts: 16

Original Poster
Rep: Reputation: Disabled
Its my understanding it needs to be told what zones its going to be a secondary DNS server for
 
Old 09-12-2013, 08:59 PM   #15
jpollard
Senior Member
 
Registered: Dec 2012
Location: Washington DC area
Distribution: Fedora, CentOS, Slackware
Posts: 4,604

Rep: Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241Reputation: 1241
You already have that - the existing configuration is for a secondary. I was assuming some AD controller was the master.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] BIND Slave Server - A few questions chrisgti Linux - Networking 7 01-19-2010 04:27 PM
Bind Master > Slave not updating ACDII Linux - Server 6 06-11-2009 05:24 PM
Bind slave notifies... jsheffie Linux - Networking 1 08-02-2005 07:37 PM
bind slave zone macadam Linux - Networking 3 03-03-2005 02:46 PM
BIND slave/secondary help Supp0rtLinux Linux - Software 1 07-29-2003 01:37 AM


All times are GMT -5. The time now is 08:56 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration