LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices

Reply
 
Search this Thread
Old 11-16-2011, 03:18 PM   #1
yy885
LQ Newbie
 
Registered: Nov 2011
Posts: 4

Rep: Reputation: Disabled
few question about configure bind9 on Ubuntu.


Hello I have a few question about configure bind9 on Ubuntu 11.10.

This is my config so far but seems to be not working, I dont know do I need to do more config or here already have lots of error? Ive tried to config them in the past few days but still no luck. so I wonder anyone here can give me a hand?


thanks


=======================================================
jtest.info
68.xxx.2xx.100

NS67.DOMAINCONTROL.COM
216.xx.xxx.47

NS68.DOMAINCONTROL.COM
208.xxx.255.47;

=======================================================

/etc/bind/named.conf
Code:
include "/etc/bind/named.conf.options";
zone "jtest.info" {
    type master;
    file "/etc/bind/db.jtest";
};
include "/etc/bind/named.conf.local";
include "/etc/bind/named.conf.default-zones";
=======================================================

/etc/bind/named.conf.options
Code:
options {
        directory "/var/cache/bind";
        query-source address * port 53;
	recursion yes;
	allow-recursion { 127.0.0.1; };
	forwarders { 216.xx.xxx.47; 208.xxx.255.47; };
        allow-query { any; };
        allow-transfer { none; };
        auth-nxdomain no;
        listen-on-v6 { any; };
};

=======================================================

/etc/bind/db.jtest
Code:
;
; BIND data file for jtest.info
;
$TTL 604800
@       IN      SOA      jtest.INFO. root.jtest.INFO. (
201111163        ; Serial
172800         ; Refresh
900         ; Retry
1209600         ; Expire
3600 )       ; Negative Cache TTL
;
IN      NS      NS67.DOMAINCONTROL.COM.
IN      NS      NS68.DOMAINCONTROL.COM.
*                       CNAME   jtest.INFO.

Last edited by yy885; 11-17-2011 at 11:14 AM.
 
Old 11-16-2011, 04:43 PM   #2
bathory
Guru
 
Registered: Jun 2004
Location: Piraeus
Distribution: Slackware
Posts: 10,909

Rep: Reputation: 1326Reputation: 1326Reputation: 1326Reputation: 1326Reputation: 1326Reputation: 1326Reputation: 1326Reputation: 1326Reputation: 1326Reputation: 1326
Hi,

You didn't say the exact problem you face, but there is no A record for jtest.info. You need to add it, in the zone file
Code:
$TTL 604800
@       IN      SOA      jtest.INFO. root.jtest.INFO. (
201111164        ; Serial Need to be increased
172800         ; Refresh
900         ; Retry
1209600         ; Expire
3600 )       ; Negative Cache TTL
;
                  IN      NS      NS67.DOMAINCONTROL.COM.
                  IN      NS      NS68.DOMAINCONTROL.COM.
jtest.info. IN      A         68.xxx.2xx.100
*                CNAME   jtest.INFO.
The blank space(s) in front of the NS RRs are important.
Increase the serial and reload bind
 
1 members found this post helpful.
Old 11-16-2011, 05:03 PM   #3
yy885
LQ Newbie
 
Registered: Nov 2011
Posts: 4

Original Poster
Rep: Reputation: Disabled
thank you for your reply. The problem I face is while I am doing

named-checkzone jtest.info /etc/bind/db.jtest

I got an error and so nothing loaded.
Code:
zone jtest.info/IN: has no NS records
zone jtest.info/IN: not loaded due to errors.
=============================================

so I just did what you suggest and this is the result.

Code:
root@ubuntu:~# named-checkzone jtest.info /etc/bind/db.jtest
zone jtest.info/IN: loaded serial 201111164
OK
So the dns server is running ok now?

because the next step I have to do is setting up/adding iodine server.

I cannot process until this server is actually functional.

Thank you for your help.

Last edited by yy885; 11-16-2011 at 05:04 PM.
 
Old 11-16-2011, 05:15 PM   #4
bathory
Guru
 
Registered: Jun 2004
Location: Piraeus
Distribution: Slackware
Posts: 10,909

Rep: Reputation: 1326Reputation: 1326Reputation: 1326Reputation: 1326Reputation: 1326Reputation: 1326Reputation: 1326Reputation: 1326Reputation: 1326Reputation: 1326
Quote:
Quote:
I got an error and so nothing loaded.
Code:

zone jtest.info/IN: has no NS records
zone jtest.info/IN: not loaded due to errors.
This is because you didn't have at least one blank space in front of the NS RRs.

Quote:
So the dns server is running ok now?
If it's one of NS67.DOMAINCONTROL.COM or NS68.DOMAINCONTROL.COM it should.
You can test it by running:
Code:
dig jtest.info @NS67.DOMAINCONTROL.COM
dig whatever.jtest.info @NS67.DOMAINCONTROL.COM
Also omit the @NS... and see what you get

Regards
 
1 members found this post helpful.
Old 11-16-2011, 05:34 PM   #5
yy885
LQ Newbie
 
Registered: Nov 2011
Posts: 4

Original Poster
Rep: Reputation: Disabled
Code:
root@ubuntu:~# dig jtest.info @NS67.DOMAINCONTROL.COM

; <<>> DiG 9.7.3 <<>> jtest.info @NS67.DOMAINCONTROL.COM
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 65143
;; flags: qr aa; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 0

;; QUESTION SECTION:
;jtest.info.		IN	A

;; ANSWER SECTION:
jtest.info.	3600	IN	A	68.178.xxx.100

;; AUTHORITY SECTION:
jtest.info.	3600	IN	NS	ns67.domaincontrol.com.
jtest.info.	3600	IN	NS	ns68.domaincontrol.com.

;; Query time: 35 msec
;; SERVER: 216.69.185.47#53(216.69.xxx.47)
;; WHEN: Wed Nov 16 15:21:38 2011
;; MSG SIZE  rcvd: 105
Code:
root@ubuntu:~# dig whatever.jtest.info @NS67.DOMAINCONTROL.COM

; <<>> DiG 9.7.3 <<>> whatever.jtest.info @NS67.DOMAINCONTROL.COM
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 14486
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 0
;; WARNING: recursion requested but not available

;; QUESTION SECTION:
;whatever.jtest.info.	IN	A

;; ANSWER SECTION:
whatever.jtest.info. 3600	IN	A	68.178.xxx.99

;; AUTHORITY SECTION:
jtest.info.	3600	IN	NS	ns67.domaincontrol.com.
jtest.info.	3600	IN	NS	ns68.domaincontrol.com.

;; Query time: 36 msec
;; SERVER: 216.69.185.47#53(216.69.xxx.47)
;; WHEN: Wed Nov 16 15:22:33 2011
;; MSG SIZE  rcvd: 114
Code:
root@ubuntu:~# dig root.jtest.info @NS67.DOMAINCONTROL.COM

; <<>> DiG 9.7.3 <<>> root.jtest.info @NS67.DOMAINCONTROL.COM
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 11748
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 0
;; WARNING: recursion requested but not available

;; QUESTION SECTION:
;root.jtest.info.		IN	A

;; ANSWER SECTION:
root.jtest.info.	3600	IN	A	68.178.xxx.99

;; AUTHORITY SECTION:
jtest.info.	3600	IN	NS	ns67.domaincontrol.com.
jtest.info.	3600	IN	NS	ns68.domaincontrol.com.

;; Query time: 38 msec
;; SERVER: 216.69.185.47#53(216.69.xxx.47)
;; WHEN: Wed Nov 16 15:22:45 2011
;; MSG SIZE  rcvd: 110
thank for the reply. everything looks fine now.

Do you know iodine by chance?
I want to set the iodine server on this machine.

Code:
root@ubuntu:~# iptables -t nat -A PREROUTING -i eth0 -p udp --dport 53 -j DNAT-to :5353

root@ubuntu:~# iodined -f -p 5353 10.0.0.1 jtest.info
ALERT! Other dns servers expect you to run on port 53.
You must manually forward port 53 to port 5353 for things to work.
Enter password: 
Opened dns0
Setting IP of dns0 to 10.0.0.1
Setting MTU of dns0 to 1130
Opened UDP socket
Listening to dns for domain jtest.info
I suppose to use this command on another machine right?

Code:
iodine -f -P password server_ip jtest.info
I am query about the server_ip. is 10.0.0.1 my server's ip or this inet addr:192.168.116.136?

thank you for your help
 
Old 11-17-2011, 12:25 AM   #6
bathory
Guru
 
Registered: Jun 2004
Location: Piraeus
Distribution: Slackware
Posts: 10,909

Rep: Reputation: 1326Reputation: 1326Reputation: 1326Reputation: 1326Reputation: 1326Reputation: 1326Reputation: 1326Reputation: 1326Reputation: 1326Reputation: 1326
Quote:
Do you know iodine by chance?
No, I'm sorry
You may mark this thread "Solved' and start a new one about iodine.

Cheers
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
BIND9 -> configure rndc.key cccc Debian 1 06-24-2009 05:15 AM
Dynamic IP, Bind9, Subdomain Question skorpi0wn Linux - Networking 1 06-04-2009 01:22 PM
bind9 zone file question r3gan Linux - Software 6 06-18-2008 05:49 PM
question about redhat linux 8 with bind9 jaguarr Linux - Networking 7 04-15-2003 06:30 AM
Bind9 Configure tandre Linux - Software 2 04-09-2003 03:52 AM


All times are GMT -5. The time now is 03:39 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration