LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 11-04-2008, 11:41 PM   #16
edgambite
LQ Newbie
 
Registered: Nov 2008
Posts: 18

Original Poster
Rep: Reputation: 0

And yes I can ping it. Also SElinux is permissive.
 
Old 11-04-2008, 11:54 PM   #17
centos82
Member
 
Registered: Sep 2008
Distribution: CentOS
Posts: 75

Rep: Reputation: 16
I'm in support of billy on the potential firewall issue. I'm a little confused on the

Quote:
Originally Posted by edgambite View Post
/var/log/messages tells me that my host is trying to find /etc/named.conf when booting named. From what I understand, my hosts should not need named.conf or any of the other zone files to query ns1. 1) Is this correct?
By host I think you may mean client? When I think of host I would think of ns1. And you are right, no client should be looking for a named.conf unless named is running on it. So is named running on your client CentOS?



Are all of your machines in the same subnet? 192.168.2.0/24 I'm assuming?
 
Old 11-05-2008, 07:12 AM   #18
edgambite
LQ Newbie
 
Registered: Nov 2008
Posts: 18

Original Poster
Rep: Reputation: 0
By host I mean client. Yes all of my machines are on the same subnett. I thought named needed to be running on my client, but I'm assuming by your statement that it should not be running. I don't have to boot named, I just thought I needed to.

As far as the firewall goes. I have turned off all firewalls, including switching SElinux to permissive, and still same outcome. ns1 is unreachable.

Last edited by edgambite; 11-05-2008 at 07:13 AM. Reason: Made mistake
 
Old 11-05-2008, 08:44 AM   #19
muha
Member
 
Registered: Nov 2005
Distribution: xubuntu, grml
Posts: 451

Rep: Reputation: 38
Can you post the command and outcome of your ping results? It sounds like you canīt resolv *hostname* ns1
but can reach the machine by ip with ping.
Also: does the win client know to query ns1 for dns information? Post the result of ipconfig /all
Edit the tcp/ip config tab in win to point to your dns server: ip of ns1
 
Old 11-05-2008, 10:09 AM   #20
edgambite
LQ Newbie
 
Registered: Nov 2008
Posts: 18

Original Poster
Rep: Reputation: 0
I think you may be right. I will post those results in a few hours at lunch.
 
Old 11-05-2008, 01:20 PM   #21
billymayday
LQ Guru
 
Registered: Mar 2006
Location: Sydney, Australia
Distribution: Fedora, CentOS, OpenSuse, Slack, Gentoo, Debian, Arch, PCBSD
Posts: 6,678

Rep: Reputation: 122Reputation: 122
Can you also post the contents of /etc/hosts a,d /etc/resolv.conf for one of your client machines, named.conf from the nameserver, and the output of

# netstat -nalp | grep :53

Last edited by billymayday; 11-05-2008 at 01:23 PM.
 
Old 11-05-2008, 02:19 PM   #22
edgambite
LQ Newbie
 
Registered: Nov 2008
Posts: 18

Original Poster
Rep: Reputation: 0
ping from slave (a client) to ns1

[root@slave ~]# ping 192.168.2.172
PING 192.168.2.172 (192.168.2.172) 56(84) bytes of data.
64 bytes from 192.168.2.173: icmp_seq=1 ttl=64 time=3.57 ms
64 bytes from 192.168.2.173: icmp_seq=2 ttl=64 time=1.96 ms
64 bytes from 192.168.2.173: icmp_seq=3 ttl=64 time=2.86 ms
64 bytes from 192.168.2.173: icmp_seq=4 ttl=64 time=1.39 ms

--- 192.168.2.173 ping statistics ---
4 packets transmitted, 4 received, 0% packet loss, time 3003ms
rtt min/avg/max/mdev = 1.395/2.448/3.571/0.835 ms



named.conf from ns1

[root@ns1 ~]# cat /etc/named.conf
// Bind configuration file
options {
directory"/var/named";
// Place additional options here.
};

zone "makmar.org" in {
type master;
file "db.makmar.org";
};

zone "2.168.192.in-addr.arpa" in {
type master;
file "db.192.168.2";
};

zone "0.0.127.in-addr.arpa" in {
type master;
file "db.127.0.0";
};

zone "." in {
type hint;
file "db.cache";
};
 
Old 11-05-2008, 02:21 PM   #23
edgambite
LQ Newbie
 
Registered: Nov 2008
Posts: 18

Original Poster
Rep: Reputation: 0
ipconfig/all for windows machine:

Microsoft Windows XP [Version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.

C:\Documents and Settings\Owner>ipconfig/all

Windows IP Configuration

Host Name . . . . . . . . . . . . : homepc
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : makmar.org

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : makmar.org
Description . . . . . . . . . . . : Intel(R) PRO/100 VE Network Connection
Physical Address. . . . . . . . . : 00-07-E9-DC-CF-53
Dhcp Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 192.168.2.150
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
DHCP Server . . . . . . . . . . . : 192.168.2.1
DNS Servers . . . . . . . . . . . : 192.168.2.172
Lease Obtained. . . . . . . . . . : Wednesday, November 05, 2008 12:18:49 PM
Lease Expires . . . . . . . . . . : Wednesday, November 12, 2008 12:18:49 PM

C:\Documents and Settings\Owner>
 
Old 11-05-2008, 02:26 PM   #24
edgambite
LQ Newbie
 
Registered: Nov 2008
Posts: 18

Original Poster
Rep: Reputation: 0
[root@ns1 ~]# netstat -nalp | grep :53
tcp 0 0 192.168.2.172:53 0.0.0.0:* LISTEN 3340/named
tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN 3340/named
udp 0 0 192.168.2.172:53 0.0.0.0:* 3340/named
udp 0 0 127.0.0.1:53 0.0.0.0:* 3340/named
udp 0 0 0.0.0.0:5353 0.0.0.0:* 2809/avahi-daemon:
udp 0 0 :::5353 :::* 2809/avahi-daemon:
[root@ns1 ~]#
 
Old 11-05-2008, 02:29 PM   #25
edgambite
LQ Newbie
 
Registered: Nov 2008
Posts: 18

Original Poster
Rep: Reputation: 0
/etc/resolv.conf from client

search makmar.org
nameserver 192.168.2.172

/etc/hosts

::1 localhost6.localdomain6 localhost6
127.0.0.1 localhost.localdomain localhost slave
 
Old 11-05-2008, 04:43 PM   #26
billymayday
LQ Guru
 
Registered: Mar 2006
Location: Sydney, Australia
Distribution: Fedora, CentOS, OpenSuse, Slack, Gentoo, Debian, Arch, PCBSD
Posts: 6,678

Rep: Reputation: 122Reputation: 122
Looks OK, although it may pay to add

Code:
acl mynet { 127.0.0.1; 192.168.2.0/24; };

options {
        allow-query { mynet; };
        };
to the start of named.conf.

Try

# dig @192.168.2.172 www.google.com

Are you getting any messages in your logs?

Last edited by billymayday; 11-05-2008 at 04:48 PM.
 
Old 11-05-2008, 06:11 PM   #27
edgambite
LQ Newbie
 
Registered: Nov 2008
Posts: 18

Original Poster
Rep: Reputation: 0
When I perform your dig command on ns1 I receive a response with what has questions section, answer section and authority section all filled with google servers. When I perform the same command on my client I get "(1 server found) connection timed out; no servers could be reached."

What other logs are there besides /var/log/messages?
 
Old 11-05-2008, 06:36 PM   #28
billymayday
LQ Guru
 
Registered: Mar 2006
Location: Sydney, Australia
Distribution: Fedora, CentOS, OpenSuse, Slack, Gentoo, Debian, Arch, PCBSD
Posts: 6,678

Rep: Reputation: 122Reputation: 122
I would guess it's in messages.

Are you sure your firewall isn't the issue? What does "iptables -L" show?

Last edited by billymayday; 11-05-2008 at 06:42 PM.
 
Old 11-05-2008, 07:45 PM   #29
edgambite
LQ Newbie
 
Registered: Nov 2008
Posts: 18

Original Poster
Rep: Reputation: 0
Here is the output from iptables -L

[root@ns1 ~]# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
RH-Firewall-1-INPUT all -- anywhere anywhere

Chain FORWARD (policy ACCEPT)
target prot opt source destination
RH-Firewall-1-INPUT all -- anywhere anywhere

Chain OUTPUT (policy ACCEPT)
target prot opt source destination

Chain RH-Firewall-1-INPUT (2 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere
ACCEPT icmp -- anywhere anywhere icmp any
ACCEPT esp -- anywhere anywhere
ACCEPT ah -- anywhere anywhere
ACCEPT udp -- anywhere 224.0.0.251 udp dpt:mdns
ACCEPT udp -- anywhere anywhere udp dpt:ipp
ACCEPT tcp -- anywhere anywhere tcp dpt:ipp
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ssh
REJECT all -- anywhere anywhere reject-with icmp-host-prohibited
 
Old 11-05-2008, 08:30 PM   #30
edgambite
LQ Newbie
 
Registered: Nov 2008
Posts: 18

Original Poster
Rep: Reputation: 0
I found the GUI firewall on ns1..turned it off, and I now have a working DNS network on all workstations.

Thank you for all of your help!!

Last edited by edgambite; 11-05-2008 at 08:31 PM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
"no servers could be reached" - on my dns setup (fedora) redhatuser41104 Linux - Newbie 4 07-30-2008 10:12 AM
nslookup: connection timed out; no servers could be reached kbighorse Linux - Networking 41 07-11-2008 02:46 PM
Connection time out;no servers could be reached sonvu Linux - Networking 1 12-16-2006 09:43 PM
DNS: connection timed out; no servers could be reached ubu_roi Linux - Networking 1 04-13-2005 11:45 AM
connection timed out;no servers could be reached nitin34847 Linux - Networking 0 05-23-2004 12:47 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 03:01 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration