Re: Dns bind9 not forward

Sat, 06 Sep 2008 10:41:35 -0700 

I tried to replace, but my bind server on Lenny doesn't work.  :-(

Thanks

Joris Dobbelsteen wrote:

I would kick out the hint zone and replace it with what is below.
You can remove your other forward operation. I would especially remove "forward first". 

zone "." {
    type forward;
    forward only;
forwarders { 192.168.10.11; 195.241.77.55; 195.241.77.58; }; }; 

This worked for me (Bind 9.5 on Win2k3).

- Joris

Enrico Farabollini wrote, On 2-Sep-2008 0:20:

I'm trying to install a Dns with bind9, whenever you do:
dig www.microsoft.com returns:

deb-dns:~# dig www.microsoft.com

; <<>> DiG 9.5.0-P2 <<>> www.microsoft.com
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 7936
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;www.microsoft.com.             IN      A

;; Query time: 284 msec
;; SERVER: 192.168.1.4#53(192.168.1.4)
;; WHEN: Tue Sep  2 00:13:31 2008
;; MSG SIZE  rcvd: 35


instead doing

deb-dns:~# dig microsoft.com

; <<>> DiG 9.5.0-P2 <<>> microsoft.com
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 44813
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 5, ADDITIONAL: 5

;; QUESTION SECTION:
;microsoft.com.                 IN      A

;; ANSWER SECTION:
microsoft.com.          2600    IN      A       207.46.197.32
microsoft.com.          2600    IN      A       207.46.232.182

;; AUTHORITY SECTION:
microsoft.com.          163137  IN      NS      ns3.msft.net.
microsoft.com.          163137  IN      NS      ns1.msft.net.
microsoft.com.          163137  IN      NS      ns5.msft.net.
microsoft.com.          163137  IN      NS      ns4.msft.net.
microsoft.com.          163137  IN      NS      ns2.msft.net.

;; ADDITIONAL SECTION:
ns1.msft.net.           146875  IN      A       207.68.160.190
ns2.msft.net.           146875  IN      A       65.54.240.126
ns3.msft.net.           146875  IN      A       213.199.161.77
ns4.msft.net.           146875  IN      A       207.46.66.126
ns5.msft.net.           146875  IN      A       65.55.238.126

;; Query time: 0 msec
;; SERVER: 192.168.1.4#53(192.168.1.4)
;; WHEN: Tue Sep  2 00:18:14 2008
;; MSG SIZE  rcvd: 241


the only thing set when the server for the foward to external dns

options {
   directory "/var/cache/bind";

   // If there is a firewall between you and nameservers you want
   // to talk to, you may need to fix the firewall to allow multiple
   // ports to talk.  See http://www.kb.cert.org/vuls/id/800113

   // If your ISP provided one or more IP addresses for stable
// nameservers, you probably want to use them as forwarders. // Uncomment the following block, and insert the addresses replacing 
   // the all-0's placeholder.

   forward first;
       forwarders {
           208.67.222.222;
           208.67.220.220;
};


   auth-nxdomain no;    # conform to RFC1035
   listen-on-v6 { any; };
};


Best regards

ps
I attach the configuration files








--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Reply via email to