Help BIND-8.2.x

Brad Knowles brad.knowles at skynet.be
Fri Aug 10 09:27:41 UTC 2001


At 11:29 AM +0300 8/10/01, Odhiambo Washington wrote:

>  I am running bind 8.2.3 and 8.2.4 on 4 machines here. Somehow my servers
>  seem to be giving me some headache.
>  The servers are ns1.wananchi.com and ns2.wananchi.com
>  Could someone with a few minutes to spare just run some tests and point
>  any obvious errors on these 2 servers and guide me on what I maybe
>  missing.

	I checked out the zone with the latest version of "doc", and it 
doesn't detect any DNS delegation errors between the domain 
wananchi.com and the parent .com gTLD servers.  However, dnswalk is 
going absolutely friggin' nuts over the zone itself:

% dnswalk -alF wananchi.com.
Checking wananchi.com.
Getting zone transfer of wananchi.com. from ns1.wananchi.com...failed
FAIL: Zone transfer of wananchi.com. from ns1.wananchi.com failed: REFUSED
Getting zone transfer of wananchi.com. from ns2.wananchi.com...done.
SOA=ns1.wananchi.com    contact=tole.wananchi.com
BAD: smtp.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
smtp.wananchi.com?)
BAD: smtp.wananchi.com NS ns2.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
loita-pop.wananchi.com?)
BAD: tikenya.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
tikenya.wananchi.com?)
BAD: tikenya.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: scripts.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
scripts.wananchi.com?)
BAD: scripts.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: forums.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
forums.wananchi.com?)
BAD: forums.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: swyaa.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
swyaa.wananchi.com?)
BAD: swyaa.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: mail.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
mail.wananchi.com?)
BAD: mail.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: wap.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of wap.wananchi.com?)
BAD: wap.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: pop.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of pop.wananchi.com?)
BAD: pop.wananchi.com NS ns2.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
nocol.wananchi.com?)
BAD: safaris.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
safaris.wananchi.com?)
BAD: safaris.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: sportsmansarms.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
sportsmansarms.wananchi.com?)
BAD: sportsmansarms.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: prosel.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
prosel.wananchi.com?)
BAD: prosel.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: webmail.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
webmail.wananchi.com?)
BAD: webmail.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: wecandoit.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
wecandoit.wananchi.com?)
BAD: wecandoit.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: ns1.wananchi.com NS ns2.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of ns1.wananchi.com?)
BAD: allabout.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: allabout.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
allabout.wananchi.com?)
WARN: lagoon.wananchi.com A 62.8.66.13: no PTR record
BAD: www.junglecraft.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
www.junglecraft.wananchi.com?)
FAIL: Cannot get SOA record for www.junglecraft.wananchi.com from 
ns2.wananchi.com (lame?): query timed out
BAD: www.mwambarfc.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
www.mwambarfc.wananchi.com?)
BAD: www.mwambarfc.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: sunrays.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
sunrays.wananchi.com?)
BAD: sunrays.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: friendly.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
friendly.wananchi.com?)
BAD: friendly.wananchi.com NS ns2.wananchi.com: lame NS delegation
WARN: msagw.wananchi.com A 62.8.66.1: no PTR record
BAD: webcare.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
webcare.wananchi.com?)
FAIL: Cannot get SOA record for webcare.wananchi.com from 
ns2.wananchi.com (lame?): query timed out
WARN: pm-mombasa.wananchi.com A 62.8.66.19: no PTR record
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
thika-pop.wananchi.com?)
FAIL: Cannot get SOA record for www.asea.wananchi.com from 
ns1.wananchi.com (lame?): query timed out
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
www.asea.wananchi.com?)
BAD: www.asea.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: gw.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of gw.wananchi.com?)
BAD: gw.wananchi.com NS ns2.wananchi.com: lame NS delegation
WARN: msa.wananchi.com A 62.8.66.3: no PTR record
BAD: tucows.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
tucows.wananchi.com?)
BAD: tucows.wananchi.com NS ns2.wananchi.com: lame NS delegation
WARN: pwani.wananchi.com A 62.8.66.11: no PTR record
WARN: mail0.wananchi.com A 212.49.74.3: no PTR record
BAD: www.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of www.wananchi.com?)
BAD: www.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: sportsmonthly.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
sportsmonthly.wananchi.com?)
BAD: sportsmonthly.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: mtkenya.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
mtkenya.wananchi.com?)
BAD: mtkenya.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: longonot.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
longonot.wananchi.com?)
BAD: longonot.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: proxy.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
proxy.wananchi.com?)
BAD: proxy.wananchi.com NS ns2.wananchi.com: lame NS delegation
BAD: acr.wananchi.com NS ns1.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of acr.wananchi.com?)
BAD: acr.wananchi.com NS ns2.wananchi.com: lame NS delegation
WARN: ns1.wananchi.com: possible duplicate A record (glue of 
list.wananchi.com?)
4 failures, 39 warnings, 54 errors.

	And here's what DNS Expert Professional 1.6 (see 
<http://www.menandmice.com/2000/2100_dns_expert.html>) has to say 
about this domain:

                               DNS Expert
                   Detailed Report for wananchi.com.
       8/10/01, 11:13 AM, using the analysis setting "Everything"
======================================================================

Information
----------------------------------------------------------------------
Serial number:           2001081001
Primary name server:     ns1.wananchi.com.
Primary mail server:     mail.wananchi.com.
Number of records:       140 (69 NS, 2 MX, 64 A, 5 CNAME, 0 PTR, 0
                          Other)


Errors
----------------------------------------------------------------------
o Non-authoritative data received from the server "ns1.wananchi.com."
     The server "ns1.wananchi.com." is listed as being authoritative
     for the domain, but it does not contain authoritative data for it.

o Non-authoritative data received from the server "ns2.wananchi.com."
     The server "ns2.wananchi.com." is listed as being authoritative
     for the domain, but it does not contain authoritative data for it.

o Unable to resolve the host name "mtkenya.wananchi.com." used in the
   CNAME record "aberdares.wananchi.com."
     It was not possible to resolve the host name
     "mtkenya.wananchi.com." which is used in the CNAME record for
     "aberdares.wananchi.com."  This indicates that a host with the
     name "mtkenya.wananchi.com." does not exist.

o Non-authoritative data received from the server "ns1.wananchi.com."
     The server "ns1.wananchi.com." is listed as being authoritative
     for the domain, but it does not contain authoritative data for it.

o Non-authoritative data received from the server "ns2.wananchi.com."
     The server "ns2.wananchi.com." is listed as being authoritative
     for the domain, but it does not contain authoritative data for it.

o Unable to resolve the host name "mail.wananchi.com." used in the MX
   record "wananchi.com."
     It was not possible to resolve the host name "mail.wananchi.com."
     which is used in the MX record for "wananchi.com."  This
     indicates that a host with the name "mail.wananchi.com." does not
     exist.

o Unable to verify the hostmaster address "tole at wananchi.com" because
   no mail servers answered.
     It was not possible to verify the hostmaster address
     "tole at wananchi.com" because none of the mail servers that process
     mail for the domain answered.

o The reverse record "4.64.8.62.in-addr.arpa." does not refer to the
   host "everest.wananchi.com."
     The reverse record "4.64.8.62.in-addr.arpa." refers to
     "ns2.wananchi.com.", but it should refer to
     "everest.wananchi.com.".

o The reverse record "103.64.8.62.in-addr.arpa." does not refer to
   the host "viper.wananchi.com."
     The reverse record "103.64.8.62.in-addr.arpa." refers to
     "www.mwananchi.com.", but it should refer to
     "viper.wananchi.com.".

o There is no PTR record for the host "msagw.wananchi.com."
     There is no PTR record available for the host
     "msagw.wananchi.com." which has the IP address 62.8.66.1.

o There is no PTR record for the host "msa.wananchi.com."
     There is no PTR record available for the host "msa.wananchi.com."
     which has the IP address 62.8.66.3.

o There is no PTR record for the host "pwani.wananchi.com."
     There is no PTR record available for the host
     "pwani.wananchi.com." which has the IP address 62.8.66.11.

o There is no PTR record for the host "lagoon.wananchi.com."
     There is no PTR record available for the host
     "lagoon.wananchi.com." which has the IP address 62.8.66.13.

o There is no PTR record for the host "pm-mombasa.wananchi.com."
     There is no PTR record available for the host
     "pm-mombasa.wananchi.com." which has the IP address 62.8.66.19.

o There is no PTR record for the host "mail0.wananchi.com."
     There is no PTR record available for the host
     "mail0.wananchi.com." which has the IP address 212.49.74.3.

o The reverse record "174.85.122.216.in-addr.arpa." does not refer to
   the host "kinanda.wananchi.com."
     The reverse record "174.85.122.216.in-addr.arpa." refers to
     "wananchi.com.", but it should refer to "kinanda.wananchi.com.".


Warnings
----------------------------------------------------------------------
o The name server "ns1.wananchi.com." does not permit zone transfers
     The name server "ns1.wananchi.com." has been configured to reject
     unauthorized zone transfers and the application will not be able
     to use data from this server while analyzing the zone.

o Unable to perform zone transfer from the primary server
   "ns1.wananchi.com."
     It was not possible to perform a zone transfer from
     "ns1.wananchi.com.", which is listed as being the primary server
     for the zone.  Zone data from the server "ns2.wananchi.com." will
     be used instead.

o The zone contains more than one A record with the address 62.8.64.3
     There is more than one A record in the zone with the IP address
     62.8.64.3.

o The A record "ns1.wananchi.com." is duplicated
     The zone contains more than one A record with the host name
     "ns1.wananchi.com." and IP address 62.8.64.3

o All name servers for the zone are on the same subnet.
     All name servers for the zone are on the same subnet (62.8.64.*).
      If the connection to the network breaks, your domain will become
     inaccessible.

o There is more than one PTR record for the address 62.8.64.4
     The reverse domain contains more than one PTR record for the IP
     Address 62.8.64.4

o The server "ns1.wananchi.com." claims that the host or domain
   "101.64.8.62.in-addr.arpa." does not exist
     When queried, the server "ns1.wananchi.com." responded with a
     message saying that the host or domain
     "101.64.8.62.in-addr.arpa." did not exist.

o The server "ns1.wananchi.com." claims that the host or domain
   "102.64.8.62.in-addr.arpa." does not exist
     When queried, the server "ns1.wananchi.com." responded with a
     message saying that the host or domain
     "102.64.8.62.in-addr.arpa." did not exist.

o The server "ns1.wananchi.com." claims that the host or domain
   "112.64.8.62.in-addr.arpa." does not exist
     When queried, the server "ns1.wananchi.com." responded with a
     message saying that the host or domain
     "112.64.8.62.in-addr.arpa." did not exist.

o The server "ns1.wananchi.com." claims that the host or domain
   "114.64.8.62.in-addr.arpa." does not exist
     When queried, the server "ns1.wananchi.com." responded with a
     message saying that the host or domain
     "114.64.8.62.in-addr.arpa." did not exist.

o The server "ns1.wananchi.com." claims that the host or domain
   "129.64.8.62.in-addr.arpa." does not exist
     When queried, the server "ns1.wananchi.com." responded with a
     message saying that the host or domain
     "129.64.8.62.in-addr.arpa." did not exist.


----------------------------------------------------------------------
end of report

>  Also, I am setting up some reverse zone but I get a strange error:
>
>  Aug 10 11:13:19 ns1 named[26287]: owner name "0/25.74.49.212.IN-ADDR-ARPA" =
>  IN (primary) is invalid - rejecting

	What does this zone file look like?

-- 
Brad Knowles, <brad.knowles at skynet.be>

H4sICIFgXzsCA2RtYS1zaWcAPVHLbsMwDDvXX0H0kkvbfxiwVw8FCmzAzqqj1F4dy7CdBfn7
Kc6wmyGRFEnvvxiWQoCvqI7RSWTcfGXQNqCUAnfIU+AT8OZ/GCNjRVlH0bKpguJkxiITZqes
MxwpSucyDJzXxQEUe/ihgXqJXUXwD9ajB6NHonLmNrUSK9nacHQnH097szO74xFXqtlbT3il
wMsBz5cnfCR5cEmci0Rj9u/jqBbPeES1I4PeFBXPUIT1XDSOuutFXylzrQvGyboWstCoQZyP
dxX4dLx0eauFe1x9puhoi0Ao1omEJo+BZ6XLVNaVpWiKekxN0VK2VMpmAy+Bk7ZV4SO+p1L/
uErNRS/qH2iFU+iNOtbcmVt9N16lfF7tLv9FXNj8AiyNcOi1AQAA


More information about the bind-users mailing list