No errors starting up, but no response from Named either..
Mark Damrose
mdamrose at elgin.cc.il.us
Tue Feb 5 21:24:56 UTC 2002
"Ronald Landheer" <ronald.landheer at minisat.com> wrote in message
news:a3p896$o14 at pub3.rc.vix.com...
>
> Hello all,
>
> Named is behaving rather strangely: from both the localhost and the
internal
> network, there are no problems at all, but though it does listen on port
53
> of the external IP address,
You've verified this with netstat?
it doesn't respond to anything anymore (but used
> to work just fine).
> Without any firewall running, this is what I get when I do nmap -P0 -p53
> from the internal, and from the external network
> internal:
> Starting nmap V. 2.54BETA22 ( www.insecure.org/nmap/ )
> Interesting ports on (192.168.2.1):
> Port State Service
> 53/tcp open domain
>
> External:
> Starting nmap V. 2.54BETA30 ( www.insecure.org/nmap/ )
> Interesting ports on AMontsouris-101-2-1-97.abo.wanadoo.fr
(193.251.54.97):
> Port State Service
> 53/tcp filtered domain
>
> I am sure that port 53 is not filtered.. :(
Not filtered by a firewall on your own box?
Not filtered by a firewall elsewhere on the network?
Does any other traffic work on that interface - are you sure the network
interface is working? Bad cable? Bad hub/switch?
What does your routing table look like?
Do you have a misconfigured router upstream?
>
> dig +norec @localhost minisat.net provides (on the server in question):
> ; <<>> DiG 9.2.0 <<>> +norec @localhost minisat.net
> ;; global options: printcmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 20717
> ;; flags: qr aa ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2
>
> ;; QUESTION SECTION:
> ;minisat.net. IN A
>
> ;; ANSWER SECTION:
> minisat.net. 259200 IN A 193.251.54.97
>
> ;; AUTHORITY SECTION:
> minisat.net. 259200 IN NS hotbird.minisat.net.
> minisat.net. 259200 IN NS ns.beryte.com.
>
> ;; ADDITIONAL SECTION:
> hotbird.minisat.net. 259200 IN A 193.251.54.97
> ns.beryte.com. 153937 IN A 193.107.136.24
>
> ;; Query time: 17 msec
> ;; SERVER: 127.0.0.1#53(localhost)
> ;; WHEN: Mon Feb 4 18:20:50 2002
> ;; MSG SIZE rcvd: 126
>
> dig +norec @192.168.2.1 minisat.net (from a development server) provides
the
> same thing.
> dig +norec @193.251.54.97 minisat.net (from a server outside the network)
> times out.
I was going to ask if you had tested from anywhere else, to see if it might
be a communication problem between these two machines, but it doesn't work
from here either. I can't dig. nmap fails on all ports, and traceroute
does not reach you.
Could you be having a problem with your ISP? Is anything else using this
Internet connection?
>
> Version: bind-8.2.2_P7-1
>
> My question: will upgrading to 8.3.1 help?
> Any pointers?
I think this is a communications problem not a BIND problem, so no. 8.2.2
does have some serious vulnerabilities, so you should upgrade anyway.
>
> Thanx!
>
> Ronald
>
>
More information about the bind-users
mailing list