Hi All:
For whatever reason I can not get dns caching to work on any of my centos boxes. Running Centos 5 and 6. Any thoughts on why these will not run? The services start fine but when telling to perform a dig using itself as the resolver the queries fail (See below).
Any help would be appreciated.
Thanks, Ed
[root@qmail ~]# ps -aux | grep pdns-recursor Warning: bad syntax, perhaps a bogus '-'? See /usr/share/doc/procps-3.2.7/FAQ root 7908 0.0 0.1 61208 568 pts/2 R+ 11:07 0:00 grep pdns-recursor [root@qmail ~]# [root@qmail ~]# [root@qmail ~]# [root@qmail ~]# [root@qmail ~]# dig mx blm.gov @127.0.0.1
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-20.P1.el5_8.6 <<>> mx blm.gov @127.0.0.1 ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 4634 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION: ;blm.gov. IN MX
;; Query time: 0 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: Fri Feb 8 11:08:04 2013 ;; MSG SIZE rcvd: 25 [root@qmail ~]# service pdns-recursor stop Stopping pdns-recursor: [ OK ] [root@qmail ~]# [root@qmail ~]# [root@qmail ~]# [root@qmail ~]# [root@qmail ~]# service named start Starting named: [ OK ] [root@qmail ~]# [root@qmail ~]# [root@qmail ~]# [root@qmail ~]# dig mx teichert.com @127.0.0.1
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-20.P1.el5_8.6 <<>> mx teichert.com @127.0.0.1 ;; global options: printcmd ;; connection timed out; no servers could be reached [root@qmail ~]# * *[root@qmail ~]# dig mx teichert.com @192.168.1.6
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-20.P1.el5_8.6 <<>> mx teichert.com @192.168.1.6 ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 28537 ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 1
;; QUESTION SECTION: ;teichert.com. IN MX
;; ANSWER SECTION: teichert.com. 3600 IN MX 10 mailgw4.ppt.questsys.com. teichert.com. 3600 IN MX 10 mailgw1.ppt.questsys.com. teichert.com. 3600 IN MX 10 mailgw2.ppt.questsys.com. teichert.com. 3600 IN MX 10 mailgw3.ppt.questsys.com.
;; ADDITIONAL SECTION: mailgw4.ppt.questsys.com. 3600 IN A 208.67.178.51
;; Query time: 125 msec ;; SERVER: 192.168.1.6#53(192.168.1.6) ;; WHEN: Fri Feb 8 11:12:20 2013 ;; MSG SIZE rcvd: 155 [root@qmail ~]# [root@qmail ~]# dig mx blm.gov @192.168.1.6
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-20.P1.el5_8.6 <<>> mx blm.gov @192.168.1.6 ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 63254 ;; flags: qr aa; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 8
;; QUESTION SECTION: ;blm.gov. IN MX
;; ANSWER SECTION: blm.gov. 300 IN MX 5 mail4.blm.gov. blm.gov. 300 IN MX 5 mail5.blm.gov.
;; AUTHORITY SECTION: blm.gov. 86400 IN NS blmdns2.blm.gov. blm.gov. 86400 IN NS blmdns1.blm.gov.
;; ADDITIONAL SECTION: mail4.blm.gov. 600 IN A 204.124.92.27 mail4.blm.gov. 600 IN AAAA 2001:49c8:8004:20fc::92:27 mail5.blm.gov. 600 IN A 204.124.92.28 mail5.blm.gov. 600 IN AAAA 2001:49c8:8004:20fc::92:28 blmdns1.blm.gov. 86400 IN A 204.124.92.8 blmdns1.blm.gov. 86400 IN AAAA 2001:49c8:8004:20fc::92:8 blmdns2.blm.gov. 86400 IN A 204.124.93.8 blmdns2.blm.gov. 86400 IN AAAA 2001:49c8:8004:20fc::93:8
;; Query time: 78 msec ;; SERVER: 192.168.1.6#53(192.168.1.6) ;; WHEN: Fri Feb 8 11:13:01 2013 ;; MSG SIZE rcvd: 289*
*
Am 08.02.2013 um 20:09 schrieb Ed Morrison edward.morrison@gmail.com:
For whatever reason I can not get dns caching to work on any of my centos boxes. Running Centos 5 and 6. Any thoughts on why these will not run? The services start fine but when telling to perform a dig using itself as the resolver the queries fail (See below).
Any help would be appreciated.
...
[root@qmail ~]# dig mx teichert.com @127.0.0.1 ; <<>> DiG 9.3.6-P1-RedHat-9.3.6-20.P1.el5_8.6 <<>> mx teichert.com @127.0.0.1 ;; global options: printcmd ;; connection timed out; no servers could be reached
how does your named.conf looks like?
is there some firewall filtering outgoing dns request?
-- LF
On 02/08/2013 03:09 PM, Ed Morrison wrote:
The services start fine but when telling to perform a dig using itself as the resolver the queries fail
Check the following line in /etc/named.conf and make sure you have both ip addresses:
listen-on port 53 { 127.0.0.1; 192.168.1.6; };
Also, if you're using views, check the "match-clients" directive to see if you're filtering out traffic coming from localhost.
On 02/09/2013 07:01 PM, Jorge Fábregas wrote:
Check the following line in /etc/named.conf and make sure you have both ip addresses:
I'm sorry. I thought you were running BIND. I'm on that list too...got to pay more attention next time!
Anyway, check the bind (no pun intended!) address doing "netstat -nulp" and verify the line containing UDP/53. Check if it's only listening on 192.168.1.6. If so, there you have it.
On 02/08/2013 11:09 AM, Ed Morrison wrote:
For whatever reason I can not get dns caching to work on any of my centos boxes. Running Centos 5 and 6. Any thoughts on why these will not run? The services start fine but when telling to perform a dig using itself as the resolver the queries fail (See below).
...
[root@qmail ~]# ps -aux | grep pdns-recursor root 7908 0.0 0.1 61208 568 pts/2 R+ 11:07 0:00 grep pdns-recursor
This certainly doesn't look like the service started fine. Check the messages and audit log after starting pdns-recursor. If the process is running (it is not in the output you included above), check the same logs after issuing queries as well.
-
Ed Morrison -
Gordon Messmer -
Jorge Fábregas -
Leon Fauster