| Posted by themedia, 01-07-2008, 10:58 AM | | this issue has been bugging me for a while, it has no issues whatsoever upon the production, but i would just love to have those messages go away.
[root@viper ~]# dig opyum.us @localhost
; <<>> DiG 9.3.3rc2 <<>> opyum.us @localhost
; (1 server found)
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 28364
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;opyum.us. IN A
;; Query time: 5 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Mon Jan 7 15:53:02 2008
;; MSG SIZE rcvd: 26
BUT
[root@viper ~]# netstat -an |grep -w 53 |grep LISTEN
tcp 0 0 208.98.31.254:53 0.0.0.0:* LISTEN
tcp 0 0 208.98.31.253:53 0.0.0.0:* LISTEN
tcp 0 0 208.98.31.252:53 0.0.0.0:* LISTEN
tcp 0 0 208.98.31.251:53 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN
i have my named.conf, an acl called "trusted" so my zones look like this:
I really don't get what's wrong here.
The issue, summarizing it, is that none of the local domains are being resolved via the local nameservers. i get servfail. i can resolve other domains with no issues whatsoever. again it has no production impact, the dns works fine, dnsreport goes fine as well.
|
| Posted by themedia, 01-08-2008, 07:22 AM | | bump .... nobody has any ideas?
|
| Posted by david510, 01-08-2008, 07:33 AM | | Paste the opyum.us zone file here.
|
| Posted by themedia, 01-08-2008, 08:19 AM | | Modified by Web Host Manager
; Zone File for opyum.us
$TTL 14400
@ 86400 IN SOA thing3.opyum.us. katmai.keptprivate.com. (
2006100414
86400
7200
3600000
86400
)
opyum.us. 86400 IN NS thing1.opyum.us.
opyum.us. 86400 IN NS thing2.opyum.us.
opyum.us. 86400 IN NS thing3.opyum.us.
opyum.us. 86400 IN NS thing4.opyum.us.
THING4.opyum.us. 14400 IN A 208.98.31.254
THING3.opyum.us. 14400 IN A 208.98.31.253
THING2.opyum.us. 14400 IN A 208.98.31.252
THING1.opyum.us. 14400 IN A 208.98.31.251
opyum.us. 14400 IN A 86.107.130.2
localhost.opyum.us. 14400 IN A 127.0.0.1
opyum.us. 14400 IN MX 0 opyum.us.
mail 14400 IN CNAME opyum.us.
www 14400 IN CNAME opyum.us.
|
| Posted by bitserve, 01-09-2008, 12:28 AM | | My guess is that you're doing your query from 208.98.31.251 which isn't in the acl.
Why do you have four nameservers for this domain, that are all actually the same BIND?
Unrelated, for your reference:
http://cr.yp.to/djbdns/separation.html
|
| Posted by themedia, 01-09-2008, 07:18 AM | | acl "trusted" {
127.0.0.1;
208.98.1.85;
208.98.31.250;
208.98.31.251;
208.98.31.252;
208.98.31.253;
208.98.31.254;
};
the full acl is this. the 4 nameservers on the same bind, is because i plan on extending sometime soon, and i want all domains hosted to get no issues, while i do the dns network extension.
|
| Posted by themedia, 01-09-2008, 07:22 AM | | all the problem seems to be with the ACL / local resolver i think. the external queries work fine. what strikes me, is that when i set 'any' in the local_resolver views , doesn't work either.
Last edited by themedia; 01-09-2008 at 07:32 AM.
|
| Posted by bitserve, 01-09-2008, 01:58 PM | | I don't see why you have the internal or external views, when it seems like they won't ever be used.
What view is your opyum.us zone in?
|
|
 Add to Favourites
 Print this Article
|
