Linux - General This Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
12-10-2003, 06:58 PM
|
#1
|
Member
Registered: Jun 2003
Location: Central Coast, NSW, Australia
Distribution: Gentoo
Posts: 438
Rep:
|
Named & RNDC
Hi all,
I'm hoping someone can spot the error I have in config here. I've got a RH EL3 server running as a DNS server.
When I run service named start, it seems to start OK.
When I run service named stop, or restart, I get the following error.....
Stopping named: rndc: connect failed: connection refused [FAILED]
I have attached my /etc/rndc.key and .conf files, and also my named.conf file below. I don't know what I have got wrong.
------------------------/etc/rndc.key---------------------------------
key "DHCP_UPDATER" {
algorithm hmac-md5;
secret "HqNEJNJlrx4UHqaMH1AY1Ec0zIdmSatKzBzxyXdHDb202NEN9T8tjLsxLmmS";
};
----------------------------------------------------------------------------
-----------------------/etc/rndc.conf-----------------------------------
options {
default-server localhost;
default-key "DHCP_UPDATER";
};
server localhost {
key "DHCP_UPDATER";
};
include "/etc/rndc.key";
-----------------------------------------------------------------------------
-------------------------/etc/named.conf--------------------------------
options {
directory "/var/named";
};
key DHCP_UPDATER {
algorithm hmac-md5;
secret "HqNEJNJlrx4UHqaMH1AY1Ec0zIdmSatKzBzxyXdHDb202NEN9T8tjLsxLmmS";
};
controls {
inet 127.0.0.1 allow { localhost; } keys { DHCP_UPDATER; };
};
zone "." {
allow-update { DHCP_UPDATER; };
type hint;
file "named.ca";
};
zone "localhost" {
allow-update { DHCP_UPDATER; };
type master;
file "localhost.zone";
};
zone "0.0.127.in-addr.arpa" {
allow-update { DHCP_UPDATER; };
type master;
file "named.local";
};
zone "TSD" {
allow-update { DHCP_UPDATER; };
type master;
file "TSD.zone";
};
zone "192.168.0.in-addr.arpa" {
allow-update { DHCP_UPDATER; };
type master;
file "192.168.0.in-addr.arpa.zone";
};
include "/etc/rndc.key";
---------------------------------------------------------------------------------
If anyone can help me that would be great!!
Thanks alot,
Regards
Craig
|
|
|
12-11-2003, 07:22 AM
|
#2
|
Member
Registered: Apr 2003
Location: Russia, Khotkovo
Distribution: Debian
Posts: 146
Rep:
|
-------------------------/etc/named.conf--------------------------------
options {
directory "/var/named";
};
key DHCP_UPDATER {
must be in "DHCP_UPDATER"
and
inet 127.0.0.1 allow { localhost; } keys { DHCP_UPDATER; };
"" forgot ... and below too
in rndc.conf
include "/etc/rndc.key";
move in begin of file
After start named check log and named must listen 953 port
netstat -an|grep 953
|
|
|
12-11-2003, 04:27 PM
|
#3
|
Member
Registered: Jun 2003
Location: Central Coast, NSW, Australia
Distribution: Gentoo
Posts: 438
Original Poster
Rep:
|
Hello yuray,
Thanks for your reply. I have fixed up the " " in the files, thank you for that. I have also moved "/etc/rndc.conf" to the beginning of the file.
I am still getting the problem though. netstat -an|grep 953 doesn't show anything running on that port.
I am sure named is trying to start on port 953 because of the 'controls' section in my named.conf.
If I do a service named start, it looks like it works, it gives me the green [OK]
But when I do a service named stop, or restart, it fails giving the error I stated in my first post here.
Thanks for your help so far.
Regards
Craig
Last edited by TheRealDeal; 12-11-2003 at 04:30 PM.
|
|
|
12-12-2003, 05:54 AM
|
#4
|
Member
Registered: Apr 2003
Location: Russia, Khotkovo
Distribution: Debian
Posts: 146
Rep:
|
"I am still getting the problem though. netstat -an|grep 953 doesn't show anything running on that port."
Check log files. Usually, named write good log if is something wrong.
While you not see netstat -an|grep 953 green -- rndc is not to be work.
Goodluck.
|
|
|
12-14-2003, 04:19 PM
|
#5
|
Member
Registered: Jun 2003
Location: Central Coast, NSW, Australia
Distribution: Gentoo
Posts: 438
Original Poster
Rep:
|
I think I'm REALLY close now : ) I've done some googling but can't nail it.
In /var/log/messages when I try and start named, I get about 15 lines of what looks good, but then get this.
Dec 15 07:59:28 TSD-Support named[2370]: /etc/named.conf:28: undefined ACL 'DHCP_UPDATER'
Dec 15 07:59:28 TSD-Support named[2370]: loading configuration: not found
Dec 15 07:59:28 TSD-Support named[2370]: exiting (due to fatal error)
This is line 28 of named.conf....
allow-update { "DHCP_UPDATER"; };
If I comment out line 28, I then get the same error on line 34 which is exactly the same line.
I guess I am supposed to define the ACL for allow-update, or DHCP_UPDATER??
The owner and group owner of /etc/named.conf is named
Thanks for all of your help so far : )
Regards
Craig
Last edited by TheRealDeal; 12-14-2003 at 05:41 PM.
|
|
|
12-14-2003, 06:43 PM
|
#6
|
Member
Registered: Jun 2003
Location: Central Coast, NSW, Australia
Distribution: Gentoo
Posts: 438
Original Poster
Rep:
|
Hi again,
I got it. named is now starting and stopping with no errors Thanks SO much for your help yuray!!!
I don't know whether to make a new topic or add it on to this. I just tried to test it with a machine by adding it to the new network.
When I do (from an XP machine) nslookup TSD-Support, or any machine name. I get the following.....
DNS request timed out...
timeout was 2 seconds.
*** Can't find server name for address 192.168.0.1: Timed out
*** Default servers are not available
Server: UnKnown
Address: 192.168.0.1
I have my firewall turned off.
I can ping the DNS server (192.168.0.1) with no problems.
A strange thing is, even when I do an nslookup from the server, I get
;; connection timed out; no servers could be reached
Strange??
Thanks heaps.
Craig
|
|
|
12-16-2003, 03:31 AM
|
#7
|
Member
Registered: Apr 2003
Location: Russia, Khotkovo
Distribution: Debian
Posts: 146
Rep:
|
Sometimes good ping is not good as looks like.
Check what packets from XP receive on dns server and dns answer XP
Tcpdump on dns server is you friend.
|
|
|
12-23-2003, 05:25 AM
|
#8
|
LQ Newbie
Registered: Dec 2003
Location: Sydney AUS
Posts: 2
Rep:
|
Hey Craig WHAT DID you do ;-0
Craig,
I'm in a N.Sydney Datacenter right now and I am literally banging my head against the wall from RHEL 3 AS giving me $h1t about rndc connection refused. Your thread is the ONLY one on the whole WWW that seems to make sense. I am getting the exact smae errors as you. PLEASE advise as to what you did to fix the error.
THanks,
Nick
|
|
|
12-23-2003, 06:14 PM
|
#9
|
Member
Registered: Jun 2003
Location: Central Coast, NSW, Australia
Distribution: Gentoo
Posts: 438
Original Poster
Rep:
|
Hi.
I got it going mate
If you want me to contact you PM me your details. I'll let you know exactly what I did. It all makes sense why I couldn't get it going.
>Craig
|
|
|
06-15-2004, 07:38 PM
|
#10
|
LQ Newbie
Registered: Jun 2004
Distribution: RHEL 3.x
Posts: 1
Rep:
|
This is exactly the information I need.. can anyone post here or PM me the details on how to fix this issue? I would deeply appreciate it. Thanks!
|
|
|
06-20-2004, 02:20 PM
|
#11
|
Member
Registered: Mar 2004
Distribution: Ubuntu
Posts: 52
Rep:
|
Please post the answer to this, I also am having the exact same problem.
Just curious why you would pm the answer, isnt that the point of the forum, so anyone can find the answer?
|
|
|
06-20-2004, 02:49 PM
|
#12
|
Member
Registered: Mar 2004
Distribution: Ubuntu
Posts: 52
Rep:
|
solved my problem....
my rndc.key file was empty in my /var/named/chroot/etc/ directory
copied the rndc.key file that was in my /etc directory to /var/named/chroot/etc directory and all is well....
make sure all your files there are correct and atleast have something in them
|
|
|
All times are GMT -5. The time now is 06:22 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|