denied query on bind

Mark_Andrews at isc.org Mark_Andrews at isc.org
Mon Sep 29 22:52:01 UTC 2003


> ChrisC <chris at issolutions.co.uk> wrote:
> > Hi,
> > Im running bind 8.2.4 on solaris 9. My messages /log files are
> > constantly fillling up with 'denied query' from various ip addresses
> > to the following
> 
> > denied query from [206.222.107.70].53 for
> > "82.80/28.192.147.12.in-addr.arpa
> > " IN Sep 13 08:17:54 
> 
> > The ip address looks strange and I havnt seen it before, Im trying to
> > find out why Im constantly getting queries for this, could someone
> > give me a clue??
> 
> > Thanks
> 
> The range _is_ assigned to :
> 80/28.192.147.12.in-addr.arpa.  1d23h58m8s IN NS  percy.issolutions.co.uk.
> 80/28.192.147.12.in-addr.arpa.  1d23h58m8s IN NS  ns2.toshiba-europe.com.
> 
> which might indicate that one of your clients uses this address for outbound 
> use. 
> Servers "out there" tries to query the nameservers ( and get's refused)
> 
> If you use these addresses you are supposed to present working servers.

	And the fix for this is to add

	allow-query { any; };

	to the zone clause for 80/28.192.147.12.in-addr.arpa

	You should also allo percy.issolutions.co.uk to transfer
	the zone as it is a slave. 

	allow-transfer { 193.129.122.21; };
 
> 
> -- 
> Peter Håkanson         
>         IPSec  Sverige      ( At Gothenburg Riverside )
>            Sorry about my e-mail address, but i'm trying to keep spam out,
> 	   remove "icke-reklam" if you feel for mailing me. Thanx.
> 
--
Mark Andrews, Internet Software Consortium
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: Mark.Andrews at isc.org


More information about the bind-users mailing list