hey guys. newbie here so sorry if this is a stupid question. searched through forums and couldnt find anything that helped.

I am running 3 linux boxes in a local lan. All 3 connected to a switch which is connected to a router out to the internet via dsl, with one static ip.

Now i set up a DNS server with BIND 9.1, that seems to work on the DNS box itself. On the DNS box i have the DNS server set to 127.0.0.1 and it can find all internet sites and ping hosts and ips. So all seems well. I can also ping the other boxes on my lan by their ips and also by their hostnames from this box only.

now on another machine in my lan, in this case my database server, i cannot ping hostnames either on the internet or on my local lan. i can ping IP addressess on both my local lan and on the internet.

My clients resolv.conf file has
nameserver 192.168.0.203 (local ip of my DNS linux Box). If i change this ip to my ISPs DNS all works well including netscape.

On my client box when i try to ping www.yahoo.com i get an unknown host error. Im guessing that it cannot find the DNS server although i dont know why.

Here are my conf and zone files from my DNS box.

------------------------------------------
named.conf
------------------------------------------

// generated by named-bootconf.pl

options {
directory "/var/named";
/*
* If there is a firewall between you and nameservers you want
* to talk to, you might need to uncomment the query-source
* directive below. Previous versions of BIND always asked
* questions using port 53, but BIND 8.1 uses an unprivileged
* port by default.
*/
//query-source address * port 53;
};

//
// a caching only nameserver config
//
controls {
inet 127.0.0.1 allow { any; } keys { gabe; };
};
zone "." IN {
type hint;
file "named.ca";
};

zone "localhost" IN {
type master;
file "localhost.zone";
allow-update { none; };
};

zone "0.0.127.in-addr.arpa" IN {
type master;
file "named.local";
allow-update { none; };
};

zone "gabadoo.com" {
type master;
notify no;
file "zone/gabadoo.com";
};

zone "0.168.192.in-addr.arpa" {
type master;
notify no;
file "zone/0.168.192";
};

include "/etc/rndc.key";

-------------------------------------
resolve.conf
-------------------------------------

domain gabadoo.com
nameserver 127.0.0.1

-------------------------------------
zone/gabadoo.com
-------------------------------------

$TTL 1D
@ IN SOA dns.gabadoo.com. hostmaster.gabadoo.com. (
2001122001 ; serial, todays date + today's serial num
3600 ; refresh, seconds
900 ; retry, seconds
1209600 ; expire, seconds
43200 ; minimum, seconds
)

IN NS ns.gabadoo.com.
IN A 192.168.0.203
localhost IN A 127.0.0.1

dns IN A 192.168.0.203
ns IN A 192.168.0.203
data IN A 192.168.0.200

---------------------------------------
zone/0.168.192
---------------------------------------

$TTL 1D
@ IN SOA dns.gabadoo.com. hostmaster.gabadoo.com. (
2001122001 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
43200 ; default_ttl
)

IN NS ns.gabadoo.com.

203 IN PTR ns.gabadoo.com.
200 IN PTR data.gabadoo.com.
203 IN PTR dns.gabadoo.com.

-----------------------------------------
var/log/messages (when named is started)
-----------------------------------------

Dec 20 18:30:33 root named[2223]: starting BIND 9.1.3
Dec 20 18:30:33 root named[2223]: using 1 CPU
Dec 20 18:30:33 root named[2225]: loading configuration from '/etc/named.conf'
Dec 20 18:30:33 root named[2225]: the default for the 'auth-nxdomain' option is now 'no'
Dec 20 18:30:34 root named[2225]: no IPv6 interfaces found
Dec 20 18:30:34 root named[2225]: listening on IPv4 interface lo, 127.0.0.1#53
Dec 20 18:30:34 root named[2225]: listening on IPv4 interface eth0, 192.168.0.203#53
Dec 20 18:30:34 root named[2225]: command channel listening on 127.0.0.1#953
Dec 20 18:30:34 root named[2225]: running

--------------------------------------------
--------------------------------------------

Thanks in advance for the help, i will try to be around this board as much as i can to help clear up any info u may need to help with the problem.

Did you have a look at your firewall? Make sure you opened up udp port 53 on your local interface/ip. Maybe do some kind of nslookup from your clients and then having a look at /var/log/messages will get you somewhat further..

To make sure BIND is listening on your local interface also do an

netstat -anlup

Steave.

when i ran netstat -anlup this is what i got:

--------------------------------------------


Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
udp 0 0 0.0.0.0:32768 0.0.0.0:* 744/rpc.statd
udp 0 0 0.0.0.0:32770 0.0.0.0:* 1775/named
udp 0 0 0.0.0.0:920 0.0.0.0:* 744/rpc.statd
udp 0 0 192.168.0.203:53 0.0.0.0:* 1775/named
udp 0 0 127.0.0.1:53 0.0.0.0:* 1775/named
udp 0 0 0.0.0.0:111 0.0.0.0:* 716/portmap


Checked my firewall and it doesnt seem to be blocking any ports.
Again my DNS server works for the server machine only. i think i may have a problem with my reverse master zone. I dunno what to do though.

Hi ,

First thing 127.0.0.1 is loopback interface and so make ur DNS service avilable on ur LAN network interface .

And YES you do need a reverse lookup table.


Regards,
Xanthium.

what about the controls part in your named.conf?
it says
I would add a line saying
I guess this will grant access for any machine from the 192.168.0.0 subnet to your nameserver

Sorry for replying so late, but I haven't been home lately.

HTH Steave.