LinuxQuestions.org
Latest LQ Deal: Complete CCNA, CCNP & Red Hat Certification Training Bundle
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 05-28-2008, 02:53 PM   #1
hocheetiong
Member
 
Registered: Jul 2007
Location: Penang , Malaysia.
Distribution: red hat linux
Posts: 133

Rep: Reputation: 15
Smile Create DNS server problem: client 192.68.1.20#32772:query'super1.example.org/A/IN'..


Hi, i am using RHEL5 to create a master DNS server.

1. i configure my DNS server as my client dns server /etc/resolve.conf, i try on my client pc using command # dig there have no error. But i check on my DNS server in file location /var/named/chroot/var/named/data/named.run I saw this file have a errors log like:

client 192.168.1.20#32772: query 'super1.example.org/A/IN' denied
client 192.168.1.20#32772: query (cache) './NS/IN' denied
shutting down: flushing changes
stopping command channel on 127.0.0.1#953
no longer listening on 127.0.0.1#53
no longer listening on 192.168.1.10#53
exiting

so i use comand ping the name which i already configure at zone file, cannot resolve the name...

my /var/named/chroot/etc/named.conf file look like below:

options
{
query-source port 53;

listen-on port 53 {127.0.0.1; 192.168.1.10;};
allow-query {127.0.0.1; 192.168.0.0/24;};


zone "example.org" IN {
type master;
file "example.org.zone";
allow-update { none; };
allow-query { 192.168.0.0/24; };
};

zone "0.168.192.in-addr.arpa" IN {
type master;
file "example.org.rr.zone";
allow-update { none; };
allow-query { 192.168.0.0/24; };
};

key rndc-key {
algorithm hmac-md5;
secret "8Dm1gQkVY0tMaD7L5iua8Q==";
};
controls {
inet 127.0.0.1 allow { localhost; 192.168.0.0/24; } keys { rndc-key; };





**my /var/named/chroot/var/named/example.org.zone file look like below:**

$TTL 86400
@ IN SOA super1.example.org. root.super1.example.org. (
2008052703 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Mininum
IN NS super1
IN MX 10 super1
super1 IN A 192.168.1.10
client1 IN A 192.168.1.20
client2 IN A 192.168.1.21
client3 IN A 192.168.1.22




**my /var/named/chroot/var/named/example.org.rr.zone**

$TTL 86499
@ IN SOA super1.example.org. root.super1.example.org. (
2008052700 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS super1.example.org.
15 IN PTR client1.example.org.
17 IN PTR client2.example.org.
13 IN PTR client3.example.org.





I also have create a rndc.conf file in /var/named/chroot/etc:

options {
default-key "rndc-key";
default-server 127.0.0.1; 192.168.1.10
default-port 953;
};


I also have create a file named.ca at /var/named/chroot/var/named/


Please any one know where got problem???
Thank you very much.
 
Old 05-28-2008, 03:11 PM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974
well of course it's denied, you've blocked that client IP in your config.
 
Old 05-28-2008, 03:47 PM   #3
hocheetiong
Member
 
Registered: Jul 2007
Location: Penang , Malaysia.
Distribution: red hat linux
Posts: 133

Original Poster
Rep: Reputation: 15
thank acid kewpie reply me, sory i don't know where my config file blocked that clinet IP? i cannot find. Please help me.
 
Old 05-28-2008, 03:59 PM   #4
ddaemonunics
Member
 
Registered: May 2008
Location: Romania
Distribution: Debian
Posts: 242

Rep: Reputation: 41
Well you have the configuration options there,
allow-update and allow-query but I see that your domain members have IP's from 192.168.1 subnet but you allow query only from 192.168.0 subnet...
 
Old 05-28-2008, 05:27 PM   #5
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974
how can you not see that??
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
dns client cannot resolve on dns server jtvillegas Linux - Software 3 03-12-2016 04:30 PM
Newbie DNS problem (client can't query server) s_rasmussen Linux - Server 5 11-26-2007 10:46 AM
[root@wlxxb ~]# telnet 192.168.192.12 25 Trying 192.168.192.12... telnet problem cnhawk386 Linux - Networking 1 10-10-2007 03:50 PM
How to create a DNS Server ? G_Slackw Linux - Networking 4 06-28-2004 11:28 PM


All times are GMT -5. The time now is 09:09 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration