A question about bind?

Eivind Olsen eivind.olsen at ttyl.com
Tue Nov 27 06:25:22 UTC 2001


--On 26. november 2001 22:32 -0500 Joseph Watson <jtwatson at datakota.com> 
wrote:
> 	I have been running bind for about a year or so, and am running version
> bind-8.2.2P5-1mdk, from mandrake 7.0.  I am in the process of upgrading,
> and ran into a few problems.  So I ended up putting it back to keep it

I hope you're aware of the security-problems in BIND 8-versions before 
8.2.3, such as the 8.2.2P5 you're running.

> ;; ANSWER SECTION:
> ns3.datakota.com.       60      IN      CNAME   www.datakota.com.
> ns3.datakota.com.       172786  IN      A       216.16.67.246
>
> ;; AUTHORITY SECTION:
> datakota.com.           60      IN      NS      ns3.datakota.com.

Here we have two problems at least. First, you have a "cname and other 
data"-problem. You can not have both an A record and a CNAME record for the 
same resource. Problem number two is that you should not have the NS record 
point to a CNAME but to an A record.

> Received 82 bytes from 208.232.58.6#53 in 252 ms
> [jtwatson at Smokey jtwatson]$ host -a ns3.datakota.com 216.16.67.246
> Trying "ns3.datakota.com"
> ;; connection timed out; no servers could be reached
> [jtwatson at Smokey jtwatson]$

If you look at the output from your host-commands, the first one says it 
got the answer from the nameserver on 208.232.58.6 (ns1.myeasydomain.com).

When I now query your nameserver ns3.datakota.com it shows the following 
problems:

1) The domain is delegated to ns2.datakota.net and ns3.datakota.com, but 
you only have an NS record in your zonefile pointing to ns3.datakota.com. 
You should have one for ns2.datakota.net as well.

2) The MX record points to mail.datakota.com, which is a CNAME to 
www.datakota.com. MX records should point to A records, not CNAME records.

3) You list ns1.datakota.com and ns2.datakota.com as hosts in your zoefile, 
and they are CNAMEs to www.datakota.com. If they are to be used as 
nameservers, they should be A records instead.

-- 
Talk To You Later
Eivind Olsen




More information about the bind-users mailing list