Linux - NewbieThis Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
It doesn't mean much of anything, becasue nslookup is a craptacular tool, that gives no information at all. All the BIND folks recomend you use dig as your lookup tool, because it lets you check many more things than nslookup does. Also, when asking questions about how your nameserver should be set up, asking about the mysterious "mydomain.com" helps neither you nor me, because I can't actually check and see what in the hell is going on with yourdomain.com.
If you had given the real domain name, I or anyone else could check your nameserver by giving the command
Code:
dig yourdomainname.com @ns1.yourdomainname.com
That asks for the info of your domain, and if something fails, you know where the failure is. If that resolves correctly, then everything is set, and you can just wait for your domain/authoritative nameserver info to propagate. Also, looking at what you wrote above, it is pointless doing what you did, becasue you aren't asking HP's nameserver for info, your are asking their webserver for info. They do happen to be running a webserver on the same IP address as their website, but chances are very good that it isn't an open nameserver. Many of the large scale DNS folks (and most knowledgeable small ones as well) do not allow hosts not on their networks to query for domains which they aren't authoritative for. HP isn't authoritative for whatever your domain is, you presumably aren't on the HP network, so they refuse your query.
If you go to the whois section of any of the big registrars, like netsol, and check your domain name, that should see if you are authoritative. If it says ns1.yoursite.com in the whois query, you are all set, assuming you set up BIND right for your domain. What are you hiding the domain for anyway? Do you think someone is going to remotely take over your nameserver, and then feed false ino about your IP address to the public at large?
Install dig, check the whois for your domain, and chances are very good that all is in line.
Yes, there is certainly some problem with your BIND config. When I try to dig your domain, I time out. I also see that you have ns1.aero-dev and ns2.aero-dev, but those IPs would be resolved by the aero-dev.com domain, which can't be reached at present. If you could post your /etc/bind/named.conf that would help, also check the basics, like does your aero-dev.com zone have a start of authority, a valid serial number, an A record for aero-dev.com as well as A records for ns1 and ns2? Can the nameserver itself resolv the zone correctly?
I'm glad you posted the domain. I am on the BIND mailing list, and 90% of the postings are people in your position, who ask for help then don't give the real domain name. Half of the email traffic for the mailing list is people saying "I'd be glad to help, if you'd tell us the zone". Now you know, if you need help, the "somerandomdomain.biz" query won't allow folks to help!
ill give you my files in order of master --> slave
Master conf. (24.39.230.33)
/*****************************************'
the short version without comments
*******************************************
Code:
options {
directory "/etc/namedb";
pid-file "/var/run/named/pid";
dump-file "/var/dump/named_dump.db";
statistics-file "/var/stats/named.stats";
};
zone "." {
type hint;
file "named.root";
};
zone "0.0.127.IN-ADDR.ARPA" {
type master;
file "master/localhost.rev";
};
// RFC 3152
zone "1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA" {
type master;
file "master/localhost-v6.rev";
};
// RFC 1886 -- deprecated
zone "1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.INT" {
type master;
file "master/localhost-v6.rev";
};
zone "aero-dev.com" {
type master;
file "master/aero-dev.com.db";
};
zone "230.39.24.in-addr.arpa" in {
type master;
file "db.24.39.230";
};
and my aero-dev.com zone file
Code:
@ IN SOA ns1.aero-dev.com. root.aero-dev.com. (
1
3h
1h
1w
1h )
aero-dev.com. IN NS ns1.aero-dev.com.
aero-dev.com. IN NS ns2.aero-dev.com.
localhost IN A 127.0.0.1
hosting IN A 24.39.230.33
script IN A 24.39.230.33
mail IN A 24.39.230.34
@ IN A 24.39.230.33
www IN A 24.39.230.33
ns1 IN A 24.39.230.33
NS2 IN A 24.39.230.34
Code:
TTL 3h
@ IN SOA ns1.aero-dev.com. root.aero-dev.com. (
1
3h
1h
1w
1h )
IN NS ns1.aero-dev.com.
IN NS ns2.aero-dev.com.
33 IN PTR ns1.aero-dev.com.
34 IN PTR ns2.aero-dev.com.
and the local one
This is my master still installing x11 on slave so i can copy and paste =)
thanks
Code:
$TTL 3600
@ IN SOA ns1.aero-dev.com. root.ns1.aero-dev.com. (
20050829 ; Serial
3600 ; Refresh
900 ; Retry
3600000 ; Expire
3600 ) ; Minimum
IN NS ns1.aero-dev.com.
1 IN PTR localhost.aero-dev.com.
OK, according to what I see above, your file should be in /etc/namedb/master/aero-dev.com.db Is that the case? When I try to dig, I get no response. The rndc is not important, unless you want it. It looks like your named.conf has nothing about rndc, but that error suggests that something is looking for rndc. Did you install this from an rpm? It seems like you may have a permissions issue. Does the file exist where your config says it should? If so, what are the read and write permissions on it, and what user/group owns the file and the directory that contains it?
The named.conf says nothing about it and the file according to the error is supposed to be located in the /etc/namedb/* . However, the reall digger is that there is not file that it is looking for there.
here is what my messages are when i start named
Code:
Aug 30 20:13:47 ns1 named[77918]: starting BIND 9.3.1
Aug 30 20:13:47 ns1 named[77918]: not listening on any interfaces
Aug 30 20:13:47 ns1 named[77918]: none:0: open: /etc/namedb/rndc.key: file not found
Aug 30 20:13:47 ns1 named[77918]: couldn't add command channel 127.0.0.1#953: file not found
Aug 30 20:13:47 ns1 named[77918]: none:0: open: /etc/namedb/rndc.key: file not found
Aug 30 20:13:47 ns1 named[77918]: couldn't add command channel ::1#953: file not found
Aug 30 20:13:47 ns1 named[77918]: running
and yes my zone files (master) are located in /etc/namedb/master/*zone file*
You need to create the rndc.key. The way to do that is to do rndc-confgen. Read the man pages on that. Then copy the rndc files that command creates to the /etc/namedb directory. Also, you have to get named listening on your interface. You shold include a listen-on statement in named.conf - should look like this -
No problem man, glad it worked out for you. I grew up just up the 90 from you, in Buffalo. I went to U of R/Eastman for undergrad. NYC is a little far for a beer! You could send me a garbage plate from Mark's, or Nick Tahoe's. The distillery had good wings and pizzas too.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.