problem with bind 8.2.3
Mark.Andrews at nominum.com
Mark.Andrews at nominum.com
Mon Feb 19 22:40:14 UTC 2001
> Im having some problems. I made some changes to my boot files. and I did in
> crement the serial # of these files.
>
> this is my slave dns.
> heres the error im getting in my syslog
>
> Feb 19 12:29:59 vbrg-ns named[28334]: Err/TO getting serial# for "66.52.200.I
> N-A
> DDR.ARPA"
> Feb 19 12:29:59 vbrg-ns named[28334]: Err/TO getting serial# for "visualbridg
> e.t
> v"
> Feb 19 12:29:59 vbrg-ns named-xfer[28337]: [209.247.124.3] not authoritative
> for
> 66.52.200.IN-ADDR.ARPA, SOA query got rcode 0, aa 0, ancount 0, aucount 13
Looks like 209.247.124.3 is not configured to serve
66.52.200.IN-ADDR.ARPA.
; <<>> DiG 8.3 <<>> soa 66.52.200.IN-ADDR.ARPA @209.247.124.3 +norec
; (1 server found)
;; res options: init defnam dnsrch
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 14735
;; flags: qr ra; QUERY: 1, ANSWER: 0, AUTHORITY: 13, ADDITIONAL: 13
;; QUERY SECTION:
;; 66.52.200.IN-ADDR.ARPA, type = SOA, class = IN
;; AUTHORITY SECTION:
. 5d23h54m22s IN NS G.ROOT-SERVERS.NET.
. 5d23h54m22s IN NS F.ROOT-SERVERS.NET.
. 5d23h54m22s IN NS B.ROOT-SERVERS.NET.
. 5d23h54m22s IN NS J.ROOT-SERVERS.NET.
. 5d23h54m22s IN NS K.ROOT-SERVERS.NET.
. 5d23h54m22s IN NS L.ROOT-SERVERS.NET.
. 5d23h54m22s IN NS M.ROOT-SERVERS.NET.
. 5d23h54m22s IN NS I.ROOT-SERVERS.NET.
. 5d23h54m22s IN NS E.ROOT-SERVERS.NET.
. 5d23h54m22s IN NS D.ROOT-SERVERS.NET.
. 5d23h54m22s IN NS A.ROOT-SERVERS.NET.
. 5d23h54m22s IN NS H.ROOT-SERVERS.NET.
. 5d23h54m22s IN NS C.ROOT-SERVERS.NET.
;; ADDITIONAL SECTION:
G.ROOT-SERVERS.NET. 6d23h54m22s IN A 192.112.36.4
F.ROOT-SERVERS.NET. 6d23h54m22s IN A 192.5.5.241
B.ROOT-SERVERS.NET. 6d23h54m22s IN A 128.9.0.107
J.ROOT-SERVERS.NET. 6d23h54m22s IN A 198.41.0.10
K.ROOT-SERVERS.NET. 6d23h54m22s IN A 193.0.14.129
L.ROOT-SERVERS.NET. 6d23h54m22s IN A 198.32.64.12
M.ROOT-SERVERS.NET. 6d23h54m22s IN A 202.12.27.33
I.ROOT-SERVERS.NET. 6d23h54m22s IN A 192.36.148.17
E.ROOT-SERVERS.NET. 6d23h54m22s IN A 192.203.230.10
D.ROOT-SERVERS.NET. 6d23h54m22s IN A 128.8.10.90
A.ROOT-SERVERS.NET. 6d23h54m22s IN A 198.41.0.4
H.ROOT-SERVERS.NET. 6d23h54m22s IN A 128.63.2.53
C.ROOT-SERVERS.NET. 6d23h54m22s IN A 192.33.4.12
;; Total query time: 327 msec
;; FROM: drugs.dv.isc.org to SERVER: 209.247.124.3
;; WHEN: Tue Feb 20 09:33:13 2001
;; MSG SIZE sent: 40 rcvd: 459
> Feb 19 12:29:59 vbrg-ns named-xfer[28338]: [209.247.124.3] not authoritative
> for
> visualbridge.tv, SOA query got rcode 0, aa 0, ancount 1, aucount 0
>
Looks like there is a syntax error in the zone file for
visualbridge.tv on the master. Also as you got this error
the master is still running a nameserver that has known
security vunerabilities see:
http://www.isc.org/products/BIND/bind-security.html
; <<>> DiG 8.3 <<>> soa visualbridge.tv +norec @209.247.124.3
; (1 server found)
;; res options: init defnam dnsrch
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 26828
;; flags: qr ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
;; QUERY SECTION:
;; visualbridge.tv, type = SOA, class = IN
;; ANSWER SECTION:
visualbridge.tv. 1D IN SOA ns1.visualbridge.tv. uramirez.visualbridge.tv. (
205 ; serial
3H ; refresh
2H ; retry
4W ; expiry
1D ) ; minimum
;; Total query time: 275 msec
;; FROM: drugs.dv.isc.org to SERVER: 209.247.124.3
;; WHEN: Tue Feb 20 09:33:52 2001
;; MSG SIZE sent: 33 rcvd: 82
> and heres my named.conf
>
>
>
> options {
>
> // The following paths are necessary for this chroot
>
> directory "/etc/namedb";
>
> dump-file "/var/tmp/named_dump.db";
>
> pid-file "/var/run/named.pid";
>
> named-xfer "/usr/sbin/named-xfer";
>
> statistics-file "/var/tmp/named.stats";
>
> memstatistics-file "/var/tmp/named.memstats";
>
> };
>
> logging {
>
> channel seclog {
>
> file "/var/log/sec.log" versions 5 size
>
> 1m;
>
> print-time yes; print-category yes;
>
> };
>
> category xfer-out { seclog; };
>
> category panic { seclog; };
>
> category security { seclog; };
>
> category insist { seclog; };
>
> category response-checks { seclog; };
>
> };
>
> zone "iecommerce.net" in {
>
> type slave;
>
> file "named.data";
>
> masters {12.19.102.16;};
>
> };
>
> zone "iecknowledge.com" in {
>
> type slave;
>
> file "iecknowledge.com";
>
> masters {12.19.102.16;};
>
> };
>
> zone "netforalltv.net" in {
>
> type slave;
>
> file "iecommerce.net";
>
> masters {
>
> 12.19.102.16;
>
> };
>
> };
>
> zone "netforalltv.com" in {
>
> type slave;
>
> file "netforalltv.com";
>
> masters {12.19.102.16;};
>
> };
>
> zone "netforallhealth.com" in {
>
> type slave;
>
> file "netforallhealth.com";
>
> masters {12.19.102.16;};
>
> };
>
> zone "netforallhealth.net" in {
>
> type slave;
>
> file "netforallhealth.net";
>
> masters {12.19.102.16;};
>
> };
>
> zone "netforallhealth.org" in {
>
> type slave;
>
> file "netforallhealth.org";
>
> masters {12.19.102.16;};
>
> };
>
> zone "healthnetforall.com" in {
>
> type slave;
>
> file "healthnetforall.com";
>
> masters {12.19.102.16;};
>
> };
>
> zone "healthnetforall.org" in {
>
> type slave;
>
> file "healthnetforall.org";
>
> masters {12.19.102.16;};
>
> };
>
> zone "healthnetforall.net" in {
>
> type slave;
>
> file "healthnetforall.net";
>
> masters {12.19.102.16;};
>
> };
>
> zone "net4alltv.net" in {
>
> type slave;
>
> file "net4alltv.net";
>
> masters {12.19.102.16;};
>
> };
>
> zone "net4alltv.com" in {
>
> type slave;
>
> file "net4alltv.com";
>
> masters {12.19.102.16;};
>
> };
>
> zone "tv-net.net" in {
>
> type slave;
>
> file "tv-net.net";
>
> masters {12.19.102.16;};
>
> };
>
> zone "netforall.net" in {
>
> type slave;
>
> file "netforall.net";
>
> masters {12.19.102.16;};
>
> };
>
> zone "interkiosk.net" in {
>
> type slave;
>
> file "interkiosk.net";
>
> masters {12.19.102.16;};
>
> };
>
> zone "interkiosk.com" in {
>
> type slave;
>
> file "interkiosk.com";
>
> masters {12.19.102.16;};
>
> };
>
> zone "netforallmall.com" in {
>
> type slave;
>
> file "netforallmall.com";
>
> masters {12.19.102.16;};
>
> };
>
> zone "netforallmall.net" in {
>
> type slave;
>
> file "netforallmall.net";
>
> masters {12.19.102.16;};
>
> };
>
> zone "healthnetforall.cc" {
>
> type slave;
>
> file "/etc/namedb/healthnetforall.cc.hosts";
>
> masters {12.19.102.16;};
>
> };
>
> zone "netforallhealth.cc" {
>
> type slave;
>
> file "/etc/namedb/netforallhealth.cc.hosts";
>
> masters {12.19.102.16;};
>
> };
>
> zone "netforallmall.cc" {
>
> type slave;
>
> file "/etc/namedb/netforallmall.cc.hosts";
>
> masters {12.19.102.16;};
>
> };
>
> zone "netforalltv.cc" {
>
> type slave;
>
> file "/etc/namedb/netforalltv.cc.hosts";
>
> masters {12.19.102.16;};
>
> };
>
> zone "iecommerce.cc" {
>
> type slave;
>
> file "/etc/namedb/iecommerce.cc.hosts";
>
> masters {
>
> 12.19.102.16;
>
> };
>
> };
>
> zone "netforall.cc" {
>
> type slave;
>
> file "/etc/namedb/netforall.cc.hosts";
>
> masters {
>
> 12.19.102.16;
>
> };
>
> notify yes;
>
> };
>
> zone "net4alltv.cc" {
>
> type slave;
>
> file "/etc/namedb/net4alltv.cc.hosts";
>
> masters {12.19.102.16;};
>
> };
>
> zone "netforall.com" {
>
> type slave;
>
> file "/etc/namedb/netforall.com.hosts";
>
> masters {12.19.102.16;};
>
> };
>
> zone "net4all.com" {
>
> type slave;
>
> file "/etc/namedb/net4all.com.hosts";
>
> masters {12.19.102.16;};
>
> };
>
>
>
> zone "211.31.12.IN-ADDR.ARPA" in{
>
> type slave;
>
> file "rev.12.31.211";
>
> masters {12.19.102.16;};
>
> };
>
> zone "66.52.200.IN-ADDR.ARPA" in{
>
> type slave;
>
> file "rev.200.52.66";
>
> masters {12.19.102.16;};
>
> };
>
> zone "." in {
>
> type hint;
>
> file "named.ca";
>
> };
>
>
>
>
>
> zone "visualbridge.tv" {
>
> type slave;
>
> file "/etc/namedb/visualbridge.tv.hosts";
>
> masters {
>
> 12.19.102.16;
>
> };
>
> };
>
> can anyone help me?
>
>
>
> phil
>
>
>
--
Mark Andrews, Nominum Inc.
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark.Andrews at nominum.com
More information about the bind-users
mailing list