[CentOS] DNS problem
Banyan He
banyan at rootong.com
Mon Mar 18 17:25:09 UTC 2013
what do they access to? How to access? How's the verification being
handled here?
Maybe a capture on port 53 explains everything.
------------
Banyan He
Blog: http://www.rootong.com
Email: banyan at rootong.com
On 3/19/2013 1:15 AM, Weplica wrote:
> Hi,
>
> Actually, the website is found, but when I create new virtual servers
> withs virutalmin, noone can be access.
>
> I have already try
> ns.maca.li. IN A 91.121.137.55
> NS IN NS maca.li.
>
> But it do nothing,
>
> Thanks,
>
> Ernesto
>
>
> Quoting Banyan He <banyan at rootong.com>:
>
>> Hi there,
>>
>> You can put two NS records for ns.maca.li and ns.kimsufi.com in your
>> domain conf file. It then will be good. That page is trying find the
>> matched record from the parent nameserver only.
>>
>> Actually, you don't really have to do this. It's like a double confirmation.
>>
>> Best regards,
>>
>> ------------
>> Banyan He
>> Blog: http://www.rootong.com
>> Email: banyan at rootong.com
>>
>> On 3/19/2013 12:56 AM, Weplica wrote:
>>> Hello Banyan He,
>>>
>>> Thanks you, but I am beginner, what's kind of record do I need to add?
>>>
>>> I have try:
>>>
>>> @ IN NS ns.maca.li.
>>> ns.maca.li. IN A 91.121.137.55
>>>
>>> But I have the same error...
>>>
>>> Thanks,
>>>
>>> Ernesto
>>>
>>>
>>>
>>> Quoting Banyan He <banyan at rootong.com>:
>>>
>>>> It's just saying the records don't match from your parent nameserver.
>>>>
>>>> [root at janus ~]# dig ns maca.li +trace
>>>>
>>>> ; <<>> DiG 9.3.6-P1-RedHat-9.3.6-20.P1.el5 <<>> ns maca.li +trace
>>>> ;; global options: printcmd
>>>> . 3600 IN NS i.root-servers.net.
>>>> . 3600 IN NS h.root-servers.net.
>>>> . 3600 IN NS g.root-servers.net.
>>>> . 3600 IN NS f.root-servers.net.
>>>> . 3600 IN NS e.root-servers.net.
>>>> . 3600 IN NS d.root-servers.net.
>>>> . 3600 IN NS c.root-servers.net.
>>>> . 3600 IN NS b.root-servers.net.
>>>> . 3600 IN NS a.root-servers.net.
>>>> . 3600 IN NS m.root-servers.net.
>>>> . 3600 IN NS l.root-servers.net.
>>>> . 3600 IN NS k.root-servers.net.
>>>> . 3600 IN NS j.root-servers.net.
>>>> ;; Received 477 bytes from 172.28.64.17#53(172.28.64.17) in 0 ms
>>>>
>>>> li. 172800 IN NS c.nic.li.
>>>> li. 172800 IN NS e.nic.li.
>>>> li. 172800 IN NS d.nic.li.
>>>> li. 172800 IN NS a.nic.li.
>>>> li. 172800 IN NS h.nic.li.
>>>> li. 172800 IN NS b.nic.li.
>>>> li. 172800 IN NS f.nic.li.
>>>> ;; Received 421 bytes from 192.36.148.17#53(i.root-servers.net) in 7 ms
>>>>
>>>> maca.li. 3600 IN NS ns.kimsufi.com.
>>>> maca.li. 3600 IN NS ns.maca.li.
>>>> ;; Received 86 bytes from 147.28.0.39#53(c.nic.li) in 204 ms
>>>>
>>>> maca.li. 38400 IN NS maca.li.
>>>> ;; Received 39 bytes from 213.186.33.199#53(ns.kimsufi.com) in 255 ms
>>>>
>>>> As you can see, the parent server returns two NS records. But here
>>>> is the NS records from your server.
>>>>
>>>> [root at janus ~]# dig ns maca.li
>>>>
>>>> ; <<>> DiG 9.3.6-P1-RedHat-9.3.6-20.P1.el5 <<>> ns maca.li
>>>> ;; global options: printcmd
>>>> ;; Got answer:
>>>> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 15214
>>>> ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
>>>>
>>>> ;; QUESTION SECTION:
>>>> ;maca.li. IN NS
>>>>
>>>> ;; ANSWER SECTION:
>>>> maca.li. 29242 IN NS maca.li.
>>>>
>>>> ;; ADDITIONAL SECTION:
>>>> maca.li. 29242 IN A 91.121.137.55
>>>>
>>>> ;; Query time: 0 msec
>>>> ;; SERVER: 172.28.64.17#53(172.28.64.17)
>>>> ;; WHEN: Mon Mar 18 18:34:32 2013
>>>> ;; MSG SIZE rcvd: 55
>>>>
>>>> You don't specify these two NS records from your parent. Just need
>>>> to add these two, you will be fine then.
>>>>
>>>> Cheers,
>>>>
>>>> ------------
>>>> Banyan He
>>>> Blog: http://www.rootong.com
>>>> Email: banyan at rootong.com
>>>>
>>>> On 3/18/2013 4:04 PM, Weplica wrote:
>>>>> Hello,
>>>>>
>>>>> I just get a server with CentOS 6.4, I have install Webmin and
>>>>> Vitualmin running OK, but I can't run correctly DNS server.
>>>>>
>>>>> I set hostname: dns.maca.li
>>>>> Resolution order: Host file, DNS
>>>>> DNS servers: 127.0.0.1 and 91.121.137.55
>>>>> Search Domain: maca.li
>>>>>
>>>>>
>>>>> When I creta virtual server with virtualmin, all DNS records are
>>>>> generated automaticaly by virtualmin. But I hace errors withs all
>>>>> virtual server, and in http://www.intodns.com/maca.li this errorS:
>>>>>
>>>>> " Missing nameservers reported by parent FAIL: The following
>>>>> nameservers are listed at your nameservers as nameservers for your
>>>>> domain, but are not listed at the parent nameservers (see RFC2181
>>>>> 5.4.1). You need to make sure that these nameservers are working.If
>>>>> they are not working ok, you may have problems!
>>>>> maca.li
>>>>> Error Missing nameservers reported by your nameservers ERROR: One or
>>>>> more of the nameservers listed at the parent servers are not listed as
>>>>> NS records at your nameservers. The problem NS records are:
>>>>> ns.kimsufi.com
>>>>> This is listed as an ERROR because there are some cases where nasty
>>>>> problems can occur (if the TTLs vary from the NS records at the root
>>>>> servers and the NS records point to your own domain, for example). "
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> //
>>>>> // named.conf (generated by webmin)
>>>>> //
>>>>> // Provided by Red Hat bind package to configure the ISC BIND named(8) DNS
>>>>> // server as a caching only nameserver (as a localhost DNS resolver only).
>>>>> //
>>>>> // See /usr/share/doc/bind*/sample/ for example named configuration files.
>>>>> //
>>>>>
>>>>> options {
>>>>> listen-on port 53 {
>>>>> any;
>>>>> };
>>>>> listen-on-v6 port 53 {
>>>>> any;
>>>>> };
>>>>> directory "/var/named";
>>>>> dump-file "/var/named/data/cache_dump.db";
>>>>> statistics-file "/var/named/data/named_stats.txt";
>>>>> memstatistics-file "/var/named/data/named_mem_stats.txt";
>>>>> recursion yes;
>>>>>
>>>>> dnssec-enable yes;
>>>>> dnssec-validation yes;
>>>>> dnssec-lookaside auto;
>>>>>
>>>>> /* Path to ISC DLV key */
>>>>> bindkeys-file "/etc/named.iscdlv.key";
>>>>>
>>>>> managed-keys-directory "/var/named/dynamic";
>>>>> };
>>>>>
>>>>> logging {
>>>>> channel default_debug {
>>>>> file "data/named.run";
>>>>> severity dynamic;
>>>>> };
>>>>> };
>>>>>
>>>>> zone "." IN {
>>>>> type hint;
>>>>> file "named.ca";
>>>>> };
>>>>>
>>>>> include "/etc/named.rfc1912.zones";
>>>>> include "/etc/named.root.key";
>>>>>
>>>>> zone "maca.li" {
>>>>> type master;
>>>>> file "/var/named/maca.li.hosts";
>>>>> allow-transfer {
>>>>> 127.0.0.1;
>>>>> localnets;
>>>>> };
>>>>> };
>>>>>
>>>>>
>>>>>
>>>>> //
>>>>> // maca.li (generated by virtualmin)
>>>>> //
>>>>> $ttl 38400
>>>>> @ IN SOA maca.li. root.maca.li. (
>>>>> 1363593549
>>>>> 10800
>>>>> 3600
>>>>> 604800
>>>>> 38400 )
>>>>> @ IN NS maca.li.
>>>>> maca.li. IN A 91.121.137.55
>>>>> www.maca.li. IN A 91.121.137.55
>>>>> ftp.maca.li. IN A 91.121.137.55
>>>>> m.maca.li. IN A 91.121.137.55
>>>>> localhost.maca.li. IN A 127.0.0.1
>>>>> webmail.maca.li. IN A 91.121.137.55
>>>>> admin.maca.li. IN A 91.121.137.55
>>>>> mail.maca.li. IN A 91.121.137.55
>>>>> maca.li. IN MX 5 mail.maca.li.
>>>>> maca.li. IN TXT "v=spf1 a mx a:maca.li ip4:91.121.137.55 ?all"
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> Where is my error?
>>>>>
>>>>> Thanks you
>>>>>
>>>>> Ernesto
>>>>>
>>>>>
>>>>> _______________________________________________
>>>>> CentOS mailing list
>>>>> CentOS at centos.org
>>>>> http://lists.centos.org/mailman/listinfo/centos
>>>>> .
>>>>>
>>>
>>
>
>
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos
> .
>
More information about the CentOS
mailing list