Re: How to Setup a Name Servers visible on Internet?

2011-06-21 Thread Metropolitan College 


  
  


  
  And you still have some IPv6 connectivity issues:
  
  
  Jun 20 19:21:58 ns1 named[3178]: error
(network unreachable) resolving

'ns1.mweb.co.za//IN': 2001:4200::a::1#53

Jun 20 19:21:58 ns1 named[3178]: error (network unreachable)
resolving

'ns2.mweb.co.za//IN': 2001:500:2e::1#53

Jun 20 19:21:58 ns1 named[3178]: error (network unreachable)
resolving

'ns.coza.net.za//IN': 2001:500:14:6055:ad::1#53

Jun 20 19:21:58 ns1 named[3178]: error (network unreachable)
resolving

'ns0.plig.net/A/IN': 2001:503:ba3e::2:30#53

Jun 20 19:21:58 ns1 named[3178]: error (network unreachable)
resolving

'ns4.iafrica.com/A/IN': 2001:dc3::35#53

Jun 20 19:21:58 ns1 named[3178]: error (network unreachable)
resolving

'coza1.dnsnode.net/A/IN': 2001:500:2f::f#53

Jun 20 19:21:58 ns1 named[3178]: error (network unreachable)
resolving

'coza1.dnsnode.net/A/IN': 2001:500:1::803f:235#53

Jun 20 19:21:58 ns1 named[3178]: error (network unreachable)
resolving

'coza1.dnsnode.net/A/IN': 2001:503:c27::2:30#53

Jun 20 19:21:58 ns1 named[3178]: error (network unreachable)
resolving

'coza1.dnsnode.net/A/IN': 2001:7fe::53#53

Jun 20 19:21:58 ns1 named[3178]: error (network unreachable)
resolving

'coza1.dnsnode.net/A/IN': 2001:500:3::42#53

Jun 20 19:21:58 ns1 named[3178]: error (network unreachable)
resolving

'ns.orange-tree.alt.za/A/IN': 2001:67c:1010:19::53#53

Jun 20 19:21:59 ns1 named[3178]: error (network unreachable)
resolving

'secdns1.posix.co.za/A/IN': 2001:42a0:1000:ff02::481#53

Jun 20 19:21:59 ns1 named[3178]: error (network unreachable)
resolving

'coza1.dnsnode.net/A/IN': 2001:503:231d::2:30#53

Jun 20 19:21:59 ns1 named[3178]: error (network unreachable)
resolving

'ns.orange-tree.alt.za//IN': 2001:4200:1010::1#53

Jun 20 19:21:59 ns1 named[3178]: error (network unreachable)
resolving

'rain.psg.com/A/IN': 2001:503:a83e::2:30#53

Jun 20 19:21:59 ns1 named[3178]: error (network unreachable)
resolving

'arizona.edu//IN': 2001:7fd::1#53

Jun 20 19:21:59 ns1 named[3178]: error (network unreachable)
resolving

'ns1.iafrica.com//IN': 2001:418:1::39#53

Jun 20 19:21:59 ns1 named[3178]: error (network unreachable)
resolving

'nlns.globnix.net//IN': 2a02:898:31::53:0#53

  

Bind was getting confused between IPv4 and IPv6, 
so after modified the file :  File: /etc/default/bind9  for
my master and slave
# run resolvconf?
RESOLVCONF=yes

# startup options for the server
OPTIONS="-4 -u bind"

It seeming like working now :-) 

grep named /var/log/syslog on my master:

Jun 21 07:53:44 ns1 named[3835]: automatic empty zone: view
internal-localhost: 2.0.192.IN-ADDR.ARPA
Jun 21 07:53:44 ns1 named[3835]: automatic empty zone: view
internal-localhost: 100.51.198.IN-ADDR.ARPA
Jun 21 07:53:44 ns1 named[3835]: automatic empty zone: view
internal-localhost: 113.0.203.IN-ADDR.ARPA
Jun 21 07:53:44 ns1 named[3835]: automatic empty zone: view
internal-localhost: 255.255.255.255.IN-ADDR.ARPA
Jun 21 07:53:44 ns1 named[3835]: automatic empty zone: view
internal-localhost:
0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Jun 21 07:53:44 ns1 named[3835]: automatic empty zone: view
internal-localhost:
1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Jun 21 07:53:44 ns1 named[3835]: automatic empty zone: view
internal-localhost: D.F.IP6.ARPA
Jun 21 07:53:44 ns1 named[3835]: automatic empty zone: view
internal-localhost: 8.E.F.IP6.ARPA
Jun 21 07:53:44 ns1 named[3835]: automatic empty zone: view
internal-localhost: 9.E.F.IP6.ARPA
Jun 21 07:53:44 ns1 named[3835]: automatic empty zone: view
internal-localhost: A.E.F.IP6.ARPA
Jun 21 07:53:44 ns1 named[3835]: automatic empty zone: view
internal-localhost: B.E.F.IP6.ARPA
Jun 21 07:53:44 ns1 named[3835]: automatic empty zone: view
internal-localhost: 8.B.D.0.1.0.0.2.IP6.ARPA

...

Jun 21 07:53:44 ns1 named[3835]: zone
0.0.10.in-addr.arpa/IN/internal: sending notifies (serial 15)
Jun 21 07:53:44 ns1 named[3835]: zone
metropolitanbuntu.co.za/IN/internal: sending notifies (serial 15)
Jun

Re: Received notify, master unreachable (cached)

2011-06-21 Thread Matus UHLAR - fantomas 

Either the slave tries to reach the master using wrong source IP address
(0.0.0.0#0 means it leaves this to system) or the master does not allow
traffic from slave (e.g. firewall).


On 17.06.11 21:44, Jarosław Świerczyński wrote:

Nope, I know for sure that the master becomes reachable from the slave
because I start it. And some time later the slave itself attempts to
contact the master again and it succeeds.


Oh, shame on me, I have missed the "(cached)" part in the logfile.


I had a look at the source code and I believe I found the problem. In
lib/dns/zone.c the is a cache where unreachable masters are stored.
Function dns_zonemgr_unreachable() is used to check if a master in
marked as unreachable, while dns_zonemgr_unrechableadd() - to add
entries to the cache. In my opinion the problem is that there is no
mechanism to remove entries from the cache except when they expire.
BIND should remove an entry for a particular master every time it
receives any communication from that master, like in
dns_zone_notifyreceive(). As you pointed out, it doesn't necesarrily
mean the master is reachable from the slave but it is worth trying to
respond to the notification, it won't hurt.


I think you may be right, but I'd better put a limit on how often this may 
happen, so the bind won't re-check too often if the master is unreachable.


--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
He who laughs last thinks slowest. 
___

Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: How to Setup a Name Servers visible on Internet?

2011-06-21 Thread Metropolitan College 

grep named /var/log/syslog on my master:

Jun 21 09:26:22 ns1 named[4205]: running
Jun 21 09:26:22 ns1 named[4205]: zone 0.0.10.in-addr.arpa/IN/internal:
sending notifies (serial 16)
Jun 21 09:26:22 ns1 named[4205]: zone
metropolitanbuntu.co.za/IN/internal: sending notifies (serial 16)
Jun 21 09:26:22 ns1 named[4205]: zone
194.134.41.in-addr.arpa/IN/external: sending notifies (serial 16)
Jun 21 09:26:22 ns1 named[4205]: zone
metropolitanbuntu.co.za/IN/external: sending notifies (serial 16)
Jun 21 09:26:29 ns1 named[4205]: received control channel command 'reload'
Jun 21 09:26:29 ns1 named[4205]: loading configuration from
'/etc/bind/named.conf'
Jun 21 09:26:29 ns1 named[4205]: reading built-in trusted keys from file
'/etc/bind/bind.keys'
Jun 21 09:26:29 ns1 named[4205]: using default UDP/IPv4 port range:
[1024, 65535]
Jun 21 09:26:29 ns1 named[4205]: using default UDP/IPv6 port range:
[1024, 65535]
Jun 21 09:26:29 ns1 named[4205]: no IPv6 interfaces found
Jun 21 09:26:29 ns1 named[4205]: reloading configuration succeeded
Jun 21 09:26:29 ns1 named[4205]: reloading zones succeeded


named-checkzone metropolitanbuntu.co.za 194.134.41.in-addr.arpa  on my
master:

zone metropolitanbuntu.co.za/IN: NS 'ns1.metropolitanbuntu.co.za' has no
address records (A or )
zone metropolitanbuntu.co.za/IN: NS 'ns2.metropolitanbuntu.co.za' has no
address records (A or )
zone metropolitanbuntu.co.za/IN: not loaded due to errors.

It still not loaded and the NSs do not have bo addresses records

For my slave:
grep named /var/log/syslog on my slave:

Jun 21 08:58:58 ns2 named[6065]: running
Jun 21 08:59:03 ns2 named[6065]: received control channel command 'reload'
Jun 21 08:59:03 ns2 named[6065]: loading configuration from
'/etc/bind/named.conf'
Jun 21 08:59:03 ns2 named[6065]: using default UDP/IPv4 port range:
[1024, 65535]
Jun 21 08:59:03 ns2 named[6065]: using default UDP/IPv6 port range:
[1024, 65535]
Jun 21 08:59:03 ns2 named[6065]: no IPv6 interfaces found
Jun 21 08:59:03 ns2 named[6065]: reloading configuration succeeded
Jun 21 08:59:03 ns2 named[6065]: reloading zones succeeded
Jun 21 09:03:00 ns2 named[6065]: client 10.0.0.80#47620: view
external-root: received notify for zone '0.0.10.in-addr.arpa': not
authoritative
Jun 21 09:03:00 ns2 named[6065]: client 10.0.0.80#4966: view
external-root: received notify for zone 'metropolitanbuntu.co.za': not
authoritative
Jun 21 09:03:29 ns2 named[6065]: zone
194.134.41.in-addr.arpa/IN/external: refresh: non-authoritative answer
from master 10.0.0.80#53 (source 0.0.0.0#0)
Jun 21 09:03:50 ns2 named[6065]: client 10.0.0.80#45596: view
external-root: received notify for zone '0.0.10.in-addr.arpa': not
authoritative
Jun 21 09:03:51 ns2 named[6065]: client 10.0.0.80#32143: view
external-root: received notify for zone 'metropolitanbuntu.co.za': not
authoritative
Jun 21 09:18:14 ns2 named[6065]: zone
194.134.41.in-addr.arpa/IN/external: refresh: non-authoritative answer
from master 10.0.0.80#53 (source 0.0.0.0#0)
Jun 21 09:25:38 ns2 named[6065]: client 10.0.0.80#7996: view
external-root: received notify for zone '0.0.10.in-addr.arpa': not
authoritative
Jun 21 09:25:38 ns2 named[6065]: client 10.0.0.80#49766: view
external-root: received notify for zone 'metropolitanbuntu.co.za': not
authoritative
Jun 21 09:30:09 ns2 named[6065]: zone
194.134.41.in-addr.arpa/IN/external: refresh: non-authoritative answer
from master 10.0.0.80#53 (source 0.0.0.0#0)

and

ns2:/var/cache/bind# named-checkzone metropolitanbuntu.co.za
back.194.134.41.in-addr.arpa
zone metropolitanbuntu.co.za/IN: NS 'ns1.metropolitanbuntu.co.za' has no
address records (A or )
zone metropolitanbuntu.co.za/IN: NS 'ns2.metropolitanbuntu.co.za' has no
address records (A or )
zone metropolitanbuntu.co.za/IN: loaded serial 16
OK


Since i also introduce the Views, the slave doesn't want to update
automatically, I changed it manually!

-- 
--
You Truly

Eric Kom

System Administrator - Metropolitan College

2 Hennie Van Till, White River, 1240
Tel: 013 750 2255 | Fax: 013 750 0105 | Cell: 078 879 1334
eric...@kom.za.net | eric...@namekom.co.za | eric...@erickom.co.za
www.kom.za.net | www.kom.za.org | www.erickom.co.za

Key fingerprint: 513E E91A C243 3020 8735 09BB 2DBC 5AD7 A9DA 1EF5

___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: I can't resolve one domain: nhs.uk

2011-06-21 Thread Phil Mayers 

On 06/21/2011 12:59 AM, Kevin Darcy wrote:

On 6/17/2011 8:01 AM, Phil Mayers wrote:

On 17/06/11 12:10, Andrew Benton wrote:


And it works well for every domain on the internet. Except for
www.nhs.uk - I can't resolve nhs.uk


www.nhs.uk is, currently, a CNAME to www.prod.nhs.uk.akadns.net

You might be suffering from the bind 9.8 CNAME issue. See the
recent, repeated discussions in the archives, including a link to a
quick one-line patch you can apply to see if it fixes it.



I know this is a moot point now (since Andrew eventually discovered
that upgrading his Netgear router's firmware fixed the problem), but
it was obvious from the first post of the thread that it was *not* a
CNAME issue, since Andrew was having problems resolving an A record
for even the name "nhs.uk":


Doh! Quite right. My apologies for confusing matters. I seem to be 
CNAME-bug trigger-happy ;o)

___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: How to Setup a Name Servers visible on Internet?

2011-06-21 Thread Stephane Bortzmeyer 
On Tue, Jun 21, 2011 at 09:34:19AM +0200,
 Metropolitan College   wrote 
 a message of 115 lines which said:

> grep named /var/log/syslog on my master:

Great, a message in a normal format (I stopped reading your HTML
emails).

> zone metropolitanbuntu.co.za/IN: NS 'ns1.metropolitanbuntu.co.za' has no
> address records (A or )

It's up to you to add these address records since it is your
zone. Edit the zone file of metropolitanbuntu.co.za and add the
addresses. For instance:

ns1      2001:db8:cafe::1:53

> Since i also introduce the Views, the slave doesn't want to update
> automatically, I changed it manually!

Views complicate everything and I don't think there is anymore a real
use for them. I strongly suggest you don't use them.
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: How to Setup a Name Servers visible on Internet?

2011-06-21 Thread Metropolitan College 
On 21/06/2011 11:59, Stephane Bortzmeyer wrote:
> On Tue, Jun 21, 2011 at 09:34:19AM +0200,
>  Metropolitan College   wrote 
>  a message of 115 lines which said:
> 
>> grep named /var/log/syslog on my master:
> 
> Great, a message in a normal format (I stopped reading your HTML
> emails).
I'm sorry, I forgot that a terminal mail clients don't support HTMl,

> 
>> zone metropolitanbuntu.co.za/IN: NS 'ns1.metropolitanbuntu.co.za' has no
>> address records (A or )
> 
> It's up to you to add these address records since it is your
> zone. Edit the zone file of metropolitanbuntu.co.za and add the
> addresses. For instance:
> 
> ns1      2001:db8:cafe::1:53
> 
This seeming to be IPv6 and I don't have a IPv6 connection!

This below is my zone file metropolitanbuntu.co.za.external:

$TTL 3H
metropolitanbuntu.co.za.IN  SOA
ns1.metropolitanbuntu.co.za.postmaster.metropolitanbuntu.co.za. (
16  ; serial
8H  ; refresh
2H  ; retry
4W  ; expire
1D) ; default_TTL
;
metropolitanbuntu.co.za.IN  NS
ns1.metropolitanbuntu.co.za.
metropolitanbuntu.co.za.IN  NS
ns2.metropolitanbuntu.co.za.
;
metropolitanbuntu.co.za.IN  MX  10
mail.metropolitanbuntu.co.za.
;
metropolitanbuntu.co.za.IN  TXT "Metropolitan College
DNS Server."
;
ns1.metropolitanbuntu.co.za.IN  A   41.134.194.90
ns2.metropolitanbuntu.co.za.IN  A   41.134.194.91
www.metropolitanbuntu.co.za.IN  A   41.134.194.90
mail.metropolitanbuntu.co.za.   IN  A   41.134.194.90

;
ftp IN  CNAME   www.metropolitanbuntu.co.za.
img IN  CNAME   www.metropolitanbuntu.co.za.
*   IN  CNAME   www.metropolitanbuntu.co.za.
imapIN  CNAME   mail.metropolitanbuntu.co.za.
pop IN  CNAME   mail.metropolitanbuntu.co.za.
pop3IN  CNAME   mail.metropolitanbuntu.co.za.
smtpIN  CNAME   mail.metropolitanbuntu.co.za.




>> Since i also introduce the Views, the slave doesn't want to update
>> automatically, I changed it manually!
> 
> Views complicate everything and I don't think there is anymore a real
> use for them. I strongly suggest you don't use them.

alright!

But since I got the internal services to resolve, if I remove the
internal resolution, I won't solve request in the case if my internet is
down?
-- 
--
You Truly

Eric Kom

System Administrator - Metropolitan College

2 Hennie Van Till, White River, 1240
Tel: 013 750 2255 | Fax: 013 750 0105 | Cell: 078 879 1334
eric...@kom.za.net | eric...@namekom.co.za | eric...@erickom.co.za
www.kom.za.net | www.kom.za.org | www.erickom.co.za

Key fingerprint: 513E E91A C243 3020 8735 09BB 2DBC 5AD7 A9DA 1EF5

___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: How to Setup a Name Servers visible on Internet?

2011-06-21 Thread Niall O'Reilly 

On 21 Jun 2011, at 08:34, Metropolitan College wrote:

> named-checkzone metropolitanbuntu.co.za 194.134.41.in-addr.arpa  on my
> master:
> 
> zone metropolitanbuntu.co.za/IN: NS 'ns1.metropolitanbuntu.co.za' has no
> address records (A or )
> zone metropolitanbuntu.co.za/IN: NS 'ns2.metropolitanbuntu.co.za' has no
> address records (A or )
> zone metropolitanbuntu.co.za/IN: not loaded due to errors.
> 
> It still not loaded and the NSs do not have bo addresses records

Those error messages are telling you need to add some address records
to the zone file for each of those name servers.  If you think you've
already done this, you should look for a spelling error or an omitted
dot.

Kind regards,
Niall O'Reilly

___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: How to Setup a Name Servers visible on Internet?

2011-06-21 Thread Matus UHLAR - fantomas 

zone metropolitanbuntu.co.za/IN: NS 'ns1.metropolitanbuntu.co.za' has no
address records (A or )


It's up to you to add these address records since it is your
zone. Edit the zone file of metropolitanbuntu.co.za and add the
addresses. For instance:

ns1      2001:db8:cafe::1:53



Since i also introduce the Views, the slave doesn't want to update
automatically, I changed it manually!


On 21.06.11 11:59, Stephane Bortzmeyer wrote:

Views complicate everything and I don't think there is anymore a real
use for them. I strongly suggest you don't use them.


to be more precise, views are a single-server replacement for multiple 
servers. When using views, many things get complicated, including zone 
transfers.


--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I drive way too fast to worry about cholesterol. 
___

Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: How to Setup a Name Servers visible on Internet?

2011-06-21 Thread Eivind Olsen 
Metropolitan College  wrote:

(...using normal text now, and not the HTML thingie which was messed up in
Squirrelmail here - so I'll bother reading your postings now :-)

I'll admit I am a bit confused about what your current setup actually is.
Having taken a couple of quick looks at your previous postings it looks
like you have had a bit of a mix with filenames, views etc.

I wonder, perhaps it would be easier to make sense of your setup if you
could put your named.conf + any other relevant files (included files,
zonefiles etc..) available for download on some website or FTP or
something?

Regards
Eivind Olsen


___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: How to Setup a Name Servers visible on Internet?

2011-06-21 Thread Metropolitan College 
On 21/06/2011 13:07, Eivind Olsen wrote:
> Metropolitan College  wrote:
> 
> (...using normal text now, and not the HTML thingie which was messed up in
> Squirrelmail here - so I'll bother reading your postings now :-)
So sorry for that!
> 
> I'll admit I am a bit confused about what your current setup actually is.
> Having taken a couple of quick looks at your previous postings it looks
> like you have had a bit of a mix with filenames, views etc.
> 
> I wonder, perhaps it would be easier to make sense of your setup if you
> could put your named.conf + any other relevant files (included files,
> zonefiles etc..) available for download on some website or FTP or
> something?

Still have Errors:

root@ns1:/var/cache/bind# named-checkzone metropolitanbuntu.co.za
194.134.41.in-addr.arpa
zone metropolitanbuntu.co.za/IN: NS 'ns1.metropolitanbuntu.co.za' has no
address records (A or )
zone metropolitanbuntu.co.za/IN: NS 'ns2.metropolitanbuntu.co.za' has no
address records (A or )
zone metropolitanbuntu.co.za/IN: not loaded due to errors.

Please below my bind files data and zone in this link:

http://www.metropolitancollege.co.za/erickom/bind/

 [   ]  0.0.10.in-addr.arpa 21-Jun-2011 15:07  541
 [   ]  194.134.41.in-addr.arpa 21-Jun-2011 15:07  475
 [   ]  bind.keys   21-Jun-2011 15:07  2.5K
 [   ]  db.021-Jun-2011 15:07  237
 [   ]  db.127  21-Jun-2011 15:07  271
 [   ]  db.255  21-Jun-2011 15:07  237
 [   ]  db.empty21-Jun-2011 15:07  353
 [   ]  db.local21-Jun-2011 15:07  270
 [   ]  db.root 21-Jun-2011 15:07  2.9K
 [   ]  metropolitanbuntu.co..> 21-Jun-2011 15:07  1.0K
 [   ]  metropolitanbuntu.co..> 21-Jun-2011 15:07  1.0K
 [TXT]  named.conf  21-Jun-2011 15:07  463
 [TXT]  named.conf.default-z..> 21-Jun-2011 15:07  572
 [TXT]  named.conf.local21-Jun-2011 15:07  793
 [TXT]  named.conf.options  21-Jun-2011 15:07  777
 [   ]  rndc.key21-Jun-2011 15:07   77
 [   ]  zones.rfc1918   21-Jun-2011 15:07  1.3K

> 
> Regards
> Eivind Olsen
> 
> 
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
> from this list
> 
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users


-- 
--
You Truly

Eric Kom

System Administrator - Metropolitan College

2 Hennie Van Till, White River, 1240
Tel: 013 750 2255 | Fax: 013 750 0105 | Cell: 078 879 1334
eric...@kom.za.net | eric...@namekom.co.za | eric...@erickom.co.za
www.kom.za.net | www.kom.za.org | www.erickom.co.za

Key fingerprint: 513E E91A C243 3020 8735 09BB 2DBC 5AD7 A9DA 1EF5

___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: How to Setup a Name Servers visible on Internet?

2011-06-21 Thread Stephane Bortzmeyer 
On Tue, Jun 21, 2011 at 03:13:44PM +0200,
 Metropolitan College   wrote 
 a message of 82 lines which said:

> root@ns1:/var/cache/bind# named-checkzone metropolitanbuntu.co.za 
> 194.134.41.in-addr.arpa

This command line makes no sense. The manual says: 'named-checkzone
{zonename} {filename}'. I seriously doubt that the file
194.134.41.in-addr.arpa contains the zone metropolitanbuntu.co.za!

___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: How to Setup a Name Servers visible on Internet?

2011-06-21 Thread Metropolitan College 
On 21/06/2011 16:00, Stephane Bortzmeyer wrote:
> On Tue, Jun 21, 2011 at 03:13:44PM +0200,
>  Metropolitan College   wrote 
>  a message of 82 lines which said:
> 
>> root@ns1:/var/cache/bind# named-checkzone metropolitanbuntu.co.za 
>> 194.134.41.in-addr.arpa
> 
Thanks for this explains!

> This command line makes no sense. The manual says: 'named-checkzone
> {zonename} {filename}'. I seriously doubt that the file
> 194.134.41.in-addr.arpa contains the zone metropolitanbuntu.co.za!
> 
I was confusing perhaps!

so there's is not way to check the reverse?

Please can you try to ping ns[1-2].metropolitanbuntu.co.za from your
side to see if the DNS responding?


-- 
--
You Truly

Eric Kom

System Administrator - Metropolitan College

2 Hennie Van Till, White River, 1240
Tel: 013 750 2255 | Fax: 013 750 0105 | Cell: 078 879 1334
eric...@kom.za.net | eric...@namekom.co.za | eric...@erickom.co.za
www.kom.za.net | www.kom.za.org | www.erickom.co.za

Key fingerprint: 513E E91A C243 3020 8735 09BB 2DBC 5AD7 A9DA 1EF5

___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: How to Setup a Name Servers visible on Internet?

2011-06-21 Thread Stephane Bortzmeyer 
On Tue, Jun 21, 2011 at 12:26:30PM +0200,
 Metropolitan College   wrote 
 a message of 87 lines which said:

> I'm sorry, I forgot that a terminal mail clients don't support HTMl,

No, it's simply that it is much more complicated to read (for
instance, there is no easy way to separate the reply from the original
text). 

> >> zone metropolitanbuntu.co.za/IN: NS 'ns1.metropolitanbuntu.co.za' has no
> >> address records (A or )
...
> ns1.metropolitanbuntu.co.za.IN  A   41.134.194.90
> ns2.metropolitanbuntu.co.za.IN  A   41.134.194.91

So, the error message you showed us was NOT triggered by this file
(which does have the address records). Restart from the beginning
carefully. 

___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: How to Setup a Name Servers visible on Internet?

2011-06-21 Thread Stephane Bortzmeyer 
On Tue, Jun 21, 2011 at 12:26:30PM +0200,
 Metropolitan College   wrote 
 a message of 87 lines which said:

> But since I got the internal services to resolve, if I remove the
> internal resolution, I won't solve request in the case if my
> internet is down?

This sentence is not clear. So I prefer restating the good practices:

1) Authoritative and recursive services are two very different things
and should be handled separately. Set up an authoritative name server,
set up a recursive name server and don't mix them.

2) Views are brittle and complicated and should be avoided.
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: How to Setup a Name Servers visible on Internet?

2011-06-21 Thread Lyle Giese 

On 06/21/11 08:13, Metropolitan College  wrote:

On 21/06/2011 13:07, Eivind Olsen wrote:

Metropolitan College  wrote:

(...using normal text now, and not the HTML thingie which was messed up in
Squirrelmail here - so I'll bother reading your postings now :-)

So sorry for that!


I'll admit I am a bit confused about what your current setup actually is.
Having taken a couple of quick looks at your previous postings it looks
like you have had a bit of a mix with filenames, views etc.

I wonder, perhaps it would be easier to make sense of your setup if you
could put your named.conf + any other relevant files (included files,
zonefiles etc..) available for download on some website or FTP or
something?


Still have Errors:

root@ns1:/var/cache/bind# named-checkzone metropolitanbuntu.co.za
194.134.41.in-addr.arpa
zone metropolitanbuntu.co.za/IN: NS 'ns1.metropolitanbuntu.co.za' has no
address records (A or )
zone metropolitanbuntu.co.za/IN: NS 'ns2.metropolitanbuntu.co.za' has no
address records (A or )
zone metropolitanbuntu.co.za/IN: not loaded due to errors.

Please below my bind files data and zone in this link:

http://www.metropolitancollege.co.za/erickom/bind/

  [   ]  0.0.10.in-addr.arpa 21-Jun-2011 15:07  541
  [   ]  194.134.41.in-addr.arpa 21-Jun-2011 15:07  475
  [   ]  bind.keys   21-Jun-2011 15:07  2.5K
  [   ]  db.021-Jun-2011 15:07  237
  [   ]  db.127  21-Jun-2011 15:07  271
  [   ]  db.255  21-Jun-2011 15:07  237
  [   ]  db.empty21-Jun-2011 15:07  353
  [   ]  db.local21-Jun-2011 15:07  270
  [   ]  db.root 21-Jun-2011 15:07  2.9K
  [   ]  metropolitanbuntu.co..>  21-Jun-2011 15:07  1.0K
  [   ]  metropolitanbuntu.co..>  21-Jun-2011 15:07  1.0K
  [TXT]  named.conf  21-Jun-2011 15:07  463
  [TXT]  named.conf.default-z..>  21-Jun-2011 15:07  572
  [TXT]  named.conf.local21-Jun-2011 15:07  793
  [TXT]  named.conf.options  21-Jun-2011 15:07  777
  [   ]  rndc.key21-Jun-2011 15:07   77
  [   ]  zones.rfc1918   21-Jun-2011 15:07  1.3K



Regards
Eivind Olsen


___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users



Try removing the wild card entry in the metropolitanbuntu.co.za and see 
if that clears this error.


Lyle Giese
LCR Computer Services, Inc.

___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: How to Setup a Name Servers visible on Internet?

2011-06-21 Thread Metropolitan College 
On 21/06/2011 15:22, Stephane Bortzmeyer wrote:
> On Tue, Jun 21, 2011 at 12:26:30PM +0200,
>  Metropolitan College   wrote 
>  a message of 87 lines which said:
> 
>> But since I got the internal services to resolve, if I remove the
>> internal resolution, I won't solve request in the case if my
>> internet is down?
> 
> This sentence is not clear. So I prefer restating the good practices:
> 
Since Views are complicated to implement,
I wanna  know if after removed the view and only have DNS for my public
IPs addresses,  clients are going to solve also the internal request in
the case if my internet connection I down?

> 1) Authoritative and recursive services are two very different things
> and should be handled separately. Set up an authoritative name server,
> set up a recursive name server and don't mix them.
> 
alright!
> 2) Views are brittle and complicated and should be avoided.


-- 
--
You Truly

Eric Kom

System Administrator - Metropolitan College

2 Hennie Van Till, White River, 1240
Tel: 013 750 2255 | Fax: 013 750 0105 | Cell: 078 879 1334
eric...@kom.za.net | eric...@namekom.co.za | eric...@erickom.co.za
www.kom.za.net | www.kom.za.org | www.erickom.co.za

Key fingerprint: 513E E91A C243 3020 8735 09BB 2DBC 5AD7 A9DA 1EF5

___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: How to Setup a Name Servers visible on Internet?

2011-06-21 Thread Eivind Olsen 
Metropolitan College  wrote:
> Please can you try to ping ns[1-2].metropolitanbuntu.co.za from your
> side to see if the DNS responding?

Judging from
http://www.metropolitancollege.co.za/erickom/bind/metropolitanbuntu.co.za.external
your nameservers external addresses are 41.134.194.90 and 41.134.194.91.
I can ping both IP-addresses, but they won't respond to DNS queries:

Eivind-mac:~ eivind$ dig any metropolitanbuntu.co.za @41.134.194.90

; <<>> DiG 9.6.0-APPLE-P2 <<>> any metropolitanbuntu.co.za @41.134.194.90
;; global options: +cmd
;; connection timed out; no servers could be reached
Eivind-mac:~ eivind$ dig any metropolitanbuntu.co.za @41.134.194.91

; <<>> DiG 9.6.0-APPLE-P2 <<>> any metropolitanbuntu.co.za @41.134.194.91
;; global options: +cmd
;; connection timed out; no servers could be reached
Eivind-mac:~ eivind$

Regards
Eivind Olsen


___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: How to Setup a Name Servers visible on Internet?

2011-06-21 Thread Eivind Olsen 
Metropolitan College  wrote:

> I was confusing perhaps!
> so there's is not way to check the reverse?

Sure there is. But the reverse zone is called 194.134.41.in-addr.arpa, and
it's using a file of the same name:

named-checkzone 194.134.41.in-addr.arpa 194.134.41.in-addr.arpa

> Please can you try to ping ns[1-2].metropolitanbuntu.co.za from your
> side to see if the DNS responding?

I can't look up that name. It looks like it might not be properly
delegated to your nameservers... When I check towards coza1.dnsnode.net
for example, I'm told that metropolitanbuntu.co.za is handled by
ns1.serve-hosting.net and ns1.serve-hosting.net - according to those two
servers, the hostnames ns1 or ns2.metropolitanbuntu.co.ca don't exist:

Eivind-mac:~ eivind$ dig any ns1.metropolitanbuntu.co.za.
@ns2.serve-hosting.net

; <<>> DiG 9.6.0-APPLE-P2 <<>> any ns1.metropolitanbuntu.co.za.
@ns2.serve-hosting.net
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64015
;; flags: qr aa rd; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; WARNING: recursion requested but not available

;; QUESTION SECTION:
;ns1.metropolitanbuntu.co.za.   IN  ANY

;; AUTHORITY SECTION:
metropolitanbuntu.co.za. 86400  IN  SOA ns1.serve-hosting.net.
root.serve-hosting.net. 2010112701 86400 7200 360 86400

;; Query time: 139 msec
;; SERVER: 207.210.84.235#53(207.210.84.235)
;; WHEN: Tue Jun 21 19:15:21 2011
;; MSG SIZE  rcvd: 107

Eivind-mac:~ eivind$



Regards
Eivind Olsen


___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Slaves do not more update

2011-06-21 Thread Chris Buxton 
This sounds like a failure of the DNS Notify system. Have you checked the logs? 
If nothing interesting is logged, have you checked the logging statement?

Regards,
Chris Buxton
BlueCat Networks

On Jun 17, 2011, at 2:20 PM, Michelle Konzack wrote:

> Good Evening,
> 
> my three NS where working properly all the time.  For some  time  I  was
> switching to DNSSEC and now it refuse to update the Slaves...
> 
> If I delete the cache from the Slaves it  sucks   automaticaly  the  new
> Zones from the Master.
> 
> Why do the Slaves not more update?
> 
> Note:   Last year it was already working and I have goten
>some problems and used in the meantime NO DNSSEC.
> 
> Thanks, Greetings and nice Day/Evening
>Michelle Konzack
> 
> -- 
> # Debian GNU/Linux Consultant ##
>   Development of Intranet and Embedded Systems with Debian GNU/Linux
> 
> itsystems@tdnet Franceitsystems@tdnet
> Owner Michelle KonzackOwner Michelle Konzack
> 
> Apt. 917 (homeoffice) Gewerbe Strasse 3
> 50, rue de Soultz 77694 Kehl/Germany
> 67100 Strasbourg/France   Tel office: +49-176-86004575
> Tel mobil: +33-6-61925193 Tel mobil:  +49-177-9351947
> 
>   
>  
> 
> Jabber linux4miche...@jabber.ccc.de
> 
> Linux-User #280138 with the Linux Counter, http://counter.li.org/
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
> from this list
> 
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users

___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: How to Setup a Name Servers visible on Internet?

2011-06-21 Thread Metropolitan College 
On 21/06/2011 19:15, Eivind Olsen wrote:
> Metropolitan College  wrote:
> 
>> I was confusing perhaps!
>> so there's is not way to check the reverse?
> 
> Sure there is. But the reverse zone is called 194.134.41.in-addr.arpa, and
> it's using a file of the same name:
> 
Okay! Thanks
> named-checkzone 194.134.41.in-addr.arpa 194.134.41.in-addr.arpa
> 
root@ns1:/var/cache/bind# named-checkzone 194.134.41.in-addr.arpa
194.134.41.in-addr.arpa
zone 194.134.41.in-addr.arpa/IN: loaded serial 16
OK

>> Please can you try to ping ns[1-2].metropolitanbuntu.co.za from your
>> side to see if the DNS responding?
> 
> I can't look up that name. It looks like it might not be properly
> delegated to your nameservers... When I check towards coza1.dnsnode.net
> for example, I'm told that metropolitanbuntu.co.za is handled by
> ns1.serve-hosting.net and ns1.serve-hosting.net - according to those two
> servers, the hostnames ns1 or ns2.metropolitanbuntu.co.ca don't exist:
> 
That is true!
I registered the domain metropolitanbuntu.co.za using the nameservers
ns1.serve-hosting.net and ns1.serve-hosting.net

After set up my nameservers, I tried to update the current nameservers
to ns[1-2].metropolitanbuntu.co.za without success!


This below Is the Warning message from the domain administrator co.za:

COZA: FAIL: No Nameservers found for "metropolitanbuntu.co.za"
.
.
Provided Nameserver information
Primary Server  : ns1.metropolitanbuntu.co.za @ 41.134.194.90
Secondary 1 : ns2.metropolitanbuntu.co.za @ 41.134.194.91

Domain "metropolitanbuntu.co.za", SOA Ref (2010112701), Orig
"ns1.serve-hosting.net."
Pre-existing Nameservers for "metropolitanbuntu.co.za":-
ns1.serve-hosting.net.
ns2.serve-hosting.net.

Syntax/Cross-Checking provided info for Nameserver at 6a:
ns1.metropolitanbuntu.co.za @ 41.134.194.90
IPv4: 41.134.194.90 ==> ns1.metropolitanbuntu.co.za.
FQDN: ns1.metropolitanbuntu.co.za ==> [WARN: No A records!]

Syntax/Cross-Checking provided info for Nameserver at 6e:
ns2.metropolitanbuntu.co.za @ 41.134.194.91
IPv4: 41.134.194.91 ==> ns2.metropolitanbuntu.co.za.
FQDN: ns2.metropolitanbuntu.co.za ==> [WARN: No A records!]


> Eivind-mac:~ eivind$ dig any ns1.metropolitanbuntu.co.za.
> @ns2.serve-hosting.net
> 
> ; <<>> DiG 9.6.0-APPLE-P2 <<>> any ns1.metropolitanbuntu.co.za.
> @ns2.serve-hosting.net
> ;; global options: +cmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64015
> ;; flags: qr aa rd; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
> ;; WARNING: recursion requested but not available
> 
> ;; QUESTION SECTION:
> ;ns1.metropolitanbuntu.co.za. IN  ANY
> 
> ;; AUTHORITY SECTION:
> metropolitanbuntu.co.za. 86400IN  SOA ns1.serve-hosting.net.
> root.serve-hosting.net. 2010112701 86400 7200 360 86400
> 
> ;; Query time: 139 msec
> ;; SERVER: 207.210.84.235#53(207.210.84.235)
> ;; WHEN: Tue Jun 21 19:15:21 2011
> ;; MSG SIZE  rcvd: 107

That is why you can found!

I gonna try again to update the nameservers for metropolitanbuntu.co.za
to ns[1-].metropolitanbuntu.co.za today!


> 
> Eivind-mac:~ eivind$
> 
> 
> 
> Regards
> Eivind Olsen
> 
> 
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
> from this list
> 
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users


-- 
--
You Truly

Eric Kom

System Administrator - Metropolitan College

2 Hennie Van Till, White River, 1240
Tel: 013 750 2255 | Fax: 013 750 0105 | Cell: 078 879 1334
eric...@kom.za.net | eric...@namekom.co.za | eric...@erickom.co.za
www.kom.za.net | www.kom.za.org | www.erickom.co.za

Key fingerprint: 513E E91A C243 3020 8735 09BB 2DBC 5AD7 A9DA 1EF5

___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: How to Setup a Name Servers visible on Internet?

2011-06-21 Thread Metropolitan College 
On 21/06/2011 19:32, Eivind Olsen wrote:
> Metropolitan College  wrote:
>> Please can you try to ping ns[1-2].metropolitanbuntu.co.za from your
>> side to see if the DNS responding?
> 
> Judging from
> http://www.metropolitancollege.co.za/erickom/bind/metropolitanbuntu.co.za.external
> your nameservers external addresses are 41.134.194.90 and 41.134.194.91.
> I can ping both IP-addresses, but they won't respond to DNS queries:
> 
> Eivind-mac:~ eivind$ dig any metropolitanbuntu.co.za @41.134.194.90
> 
> ; <<>> DiG 9.6.0-APPLE-P2 <<>> any metropolitanbuntu.co.za @41.134.194.90
> ;; global options: +cmd
> ;; connection timed out; no servers could be reached
> Eivind-mac:~ eivind$ dig any metropolitanbuntu.co.za @41.134.194.91
> 
> ; <<>> DiG 9.6.0-APPLE-P2 <<>> any metropolitanbuntu.co.za @41.134.194.91
> ;; global options: +cmd
> ;; connection timed out; no servers could be reached
> Eivind-mac:~ eivind$
> 
Normally, we can found the nameservers  for metropolitanbuntu.co.za
using 41.134.194.90[91] IPs,
because I failed to update the domain using my own my nameservers,



> Regards
> Eivind Olsen
> 
> 
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
> from this list
> 
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users


-- 
--
You Truly

Eric Kom

System Administrator - Metropolitan College

2 Hennie Van Till, White River, 1240
Tel: 013 750 2255 | Fax: 013 750 0105 | Cell: 078 879 1334
eric...@kom.za.net | eric...@namekom.co.za | eric...@erickom.co.za
www.kom.za.net | www.kom.za.org | www.erickom.co.za

Key fingerprint: 513E E91A C243 3020 8735 09BB 2DBC 5AD7 A9DA 1EF5

___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users