On 06/26/2011 05:38 PM, Rodrigo Faria Tavares wrote:
> After copy the zone files for chroot, e change the pemissions
> in /var/named, now my dns zones is ready, resolving names.
> But come the logs in messages:
>
> Jun 26 12:35:39 localhost named[4484]: error (network unreachable)
> resolving 'ns.isc.afilias-nst.info/AAAA/IN': 2001:500:a::79#53
To me this smells more like a system misconfiguration than a bind
problem.
I'm guessing: you have enabled IPv6 on the system that's running bind,
but you have no IPv6 connectivity to the outside world and no global
v6 address.
> options {
> listen-on port 53 { 127.0.0.1; };
> listen-on-v6 port 53 { ::1; };
If you only listen on the loopback interface (127.0.0.1 and ::1), the only
machine in your network that will be able to use your DNS server will be
the machine on which it's running. I's a bit of a waste going through all
this installation just to accomplish what a single line in /etc/resolv.conf
would have accomplished too.
Second, you should not define the port unless you're forced to. Under normal
circumstances the correct syntax would be listen-on { 127.0.0.1; }; without
the port.
Third, if you don't have (global or local) v6 connectivity on that box, you
should comment out the listen-on-v6 line (or, if you're on a redhattish system,
add OPTIONS=" -4" at the bottom of /etc/sysconfig/named).
> allow-query { localhost; };
Aha, so you really meant to only serve the local machine :)
Z
_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
