Hi there, I have been troubleshooting this for the past whole week but still can't find any solution. It's a strange problem.
I'm using bind 9.2.1 for my internal network LAN, and it's a Debian box. All the query for internal zone was working fine, but on last Wednesday, in a sudden, all the request to external site like yahoo.com or google.com doesn't give back a answer to the clients (mix of WinXP and linux box)
My named.conf.options initially was like this:
Code:
options {
directory "/var/cache/bind";
query-source address * port 53;
auth-nxdomain no; # conform to RFC1035
forwarders {202.188.0.133;202.188.1.5;};
forward only;
};
which 202.188.0.133 is my ISP dns ip.
Then I suspect it's my ISP dns problem, so comment out the 'forward only' and do a bind9 restart. For a few second it able to give answer back to the client, but just a while it start to timeout to client again.
Then I commented out the forwarders as well, and again, it works fine for a few seconds, then it fail again.
Then I found out my dns server actually did get back the answer, cause when I do a 'rndc flush' and 'dig @localhost yahoo.com', and then a 'rndc dumpdb', in the /var/cache/bind/named_dump.db, I did able to see this:
Code:
; glue
yahoo.com. 47701 NS ns1.yahoo.com.
47701 NS ns2.yahoo.com.
47701 NS ns3.yahoo.com.
47701 NS ns4.yahoo.com.
47701 NS ns5.yahoo.com.
; glue
ns1.yahoo.com. 171154 A 66.218.71.63
Means, the bind9 server is not able to give answer back to anyone, including itself ! Which part is wrong ?
I really some expert out there could give me a hand, as my LAN Internet has down for a week already
( It's driving me nuts..
bind9 gone crazy!
