BIND error

czezz · 11-08-2005, 04:05 AM

I have configured BIND and after that I started it.
Then in syslog I found erroes:

Code:

Nov  7 23:30:07 my_server named[21245]: dns_master_load: test.com:12: test.com.test.com: not at top of zone 
Nov  7 23:30:07 my_server named[21245]: zone test.com/IN: loading master file test.com: not at top of zone

Im attaching here my config files.
Let say that my domain is test.com and my IP is 144.67.67.1

named.conf

Code:

options { 
directory "/var/named"; 
                query-source address * port 53; 
}; 

logging{ 
category lame-servers{ 
null; 
}; 
}; 

zone "." IN { 
type hint; 
file "named.cache"; 
}; 

zone "test.com" { 
type master; 
file "test.com"; 
allow-update { none; }; 
allow-transfer { 144.67.67.2; }; 
notify yes; 
};

test.com

Code:

$TTL 86400 
$ORIGIN test.com 
@ IN SOA  test.com. postmaster.test.com. ( 
2005110704 ; serial (d. adams) 
8640 ; refresh 
3600 ; retry 
3600000 ; expiry 
1209600 ) ; min 
IN NS ns1.test.com 
IN NS ns2.test.com 
IN MX 10 test.com 
@ IN A 144.67.67.1 
www IN A 144.67.67.1 
ns1 IN A 144.67.67.1 
ns2 IN A 144.67.67.1 
ftp IN A 144.67.67.1 
komp1 IN A 10.3.11.21

Is this true that any space between words and numbers in test.com file should be separated by TABS ?

Cant even ping local machine by name:
komp1 IN A 10.3.11.21

Please help me with that problem - it is 1st time i configure BIND.

bathory · 11-08-2005, 04:29 AM

Quote:

test.com.test.com: not at top of zone

You must put a "." at the end of NS and MX records like this:

Code:

IN NS ns1.test.com. 
IN NS ns2.test.com. 
IN MX 10 test.com.

czezz · 11-08-2005, 04:52 AM

same thing... didnt help

Code:

Nov  8 11:34:01 proxy-2 named[23705]: dns_master_load: test.com:12: test.com.test.com: not at top of zone
Nov  8 11:34:01 proxy-2 named[23705]: zone test.com/IN: loading master file test.com: not at top of zone

What about test.com file ? Should any word should be separated by TAB ? (any ?)
Is file test.com i correct ( presented above ) ?

bathory · 11-08-2005, 05:10 AM

Quote:

$ORIGIN test.com

Put a dot also at the end of this:

Code:

$ORIGIN test.com.

As for the TABs, it doesn't really matters. Using TABs is just for reading easily the zone files.

czezz · 11-08-2005, 05:37 AM

current test.com file looks like this:

Code:

$TTL 86400 
$ORIGIN test.com. 
@ IN SOA  test.com. postmaster.test.com. ( 
2005110704 ; serial (d. adams) 
8640 ; refresh 
3600 ; retry 
3600000 ; expiry 
1209600 ) ; min 
IN NS ns1.test.com 
IN NS ns2.test.com 
IN MX 10 test.com 
@ IN A 144.67.67.1 
www IN A 144.67.67.1 
ns1 IN A 144.67.67.1 
ns2 IN A 144.67.67.1 
ftp IN A 144.67.67.1 
komp1 IN A 10.3.11.21

...and still no success in syslog

... same error.

I wonder what is wrong. Maybe test.com file ?
Is there any chance to get yourdomain.com file to compare ?

bathory · 11-08-2005, 05:56 AM

You still forgot the dots "." at the end of the 2 NS and 1 MX records. Here is the correct zone file:

Code:

$TTL 86400 
$ORIGIN test.com. 
@ IN SOA  test.com. postmaster.test.com. ( 
2005110704 ; serial (d. adams) 
8640 ; refresh 
3600 ; retry 
3600000 ; expiry 
1209600 ) ; min 
IN NS ns1.test.com. 
IN NS ns2.test.com. 
IN MX 10 test.com. 
@ IN A 144.67.67.1 
www IN A 144.67.67.1 
ns1 IN A 144.67.67.1 
ns2 IN A 144.67.67.1 
ftp IN A 144.67.67.1 
komp1 IN A 10.3.11.21

Also change (increase by one) the serial number (2005110704 ; serial) to (2005110705 ; serial) before restarting bind

czezz · 11-08-2005, 07:58 AM

ok i corrected that file and increased serial by 1.

This time in syslog I got this (hope its good):

Code:

Nov  8 14:53:29 my_server named[23934]: binding TCP socket: address in use

cant ping local host by name

root@my_server:/# ping komp1
ping: unknown host komp1

bathory · 11-08-2005, 08:26 AM

That means that perhaps another instance of bind war running. Run:

Code:

ps aux|grep named

and kill all running processes of bind. Then start named as you normally do.

czezz · 11-08-2005, 08:54 AM

ok, this time no error or any msg in syslog.

But still cant ping workstation by name in LAN.
From internet this domain will be accesable later - currently it is parked in my domain provider.
At 1st i want to configure BIND.

this line should be enough in test.com file:

Code:

komp1 IN A 10.3.11.21

Should i put LAN address of DNS server ??
*DNS server has 2 NIC: external (internet) and internal (LAN)

bathory · 11-08-2005, 09:05 AM

You must edit your /etc/resolv.conf and add something like that:

Code:

domain test.com
nameserver 127.0.0.1
nameserver 144.67.67.1

czezz · 11-08-2005, 11:52 AM

ok ill do like u say but 1 more question before that:
because DNS server is connected directly to internet and has set nameservers from Internet Provider. So currently /etc/resolve.conf looks like this:

Code:

nameserver 195.114.161.55
nameserver 195.114.181.130

should it looks like this below after edit ?

Code:

domain test.com
nameserver 127.0.0.1
nameserver 144.67.67.1
nameserver 195.114.161.55
nameserver 195.114.181.130

bathory · 11-08-2005, 03:37 PM

You can use that /etc/resolv.conf, or use one with just your nameserver and add a "forwarders" option in /etc/named.conf so that your nameserver can forward the queries that cannot respond to the dns of your ISP.

czezz · 11-09-2005, 06:31 AM

So right now /etc/resolve.conf looks like this:

Code:

domain test.com
nameserver 127.0.0.1
nameserver 144.67.67.1
nameserver 195.114.161.55
nameserver 195.114.181.130

on the host in LAN i set DNS like this:
primary - 10.3.1.8 ( its an internal NIC of my DNS server )
secondary - 144.67.67.1 ( its an extrenal NIC on my DNS server )

When I proceed command ping komp1.test.com I achived no success

What can be wrong ? Can I use this same domain for local workstations ?

bathory · 11-09-2005, 07:33 AM

This /etc/resolv.conf is for the dns server. For the other hosts the /etc/resolv.conf must contain only 2 lines:

Code:

domain test.com
nameserver 10.3.1.8

and perhaps your ISP's dns server

czezz · 11-09-2005, 08:08 AM

This is current /etc.resolve.conf:

Code:

domain test.com
nameserver 10.3.1.8

still no success when i try ping komp1.test.com

Im trying to ping from DNS server and from host komp1. The host has set as primary DNS 10.3.1.8 ( no secondary DNS set ).