Big problem "dns timeout"

Kevin Darcy kcd at daimlerchrysler.com
Sat Mar 6 00:11:19 UTC 2004 

As the tool said: Le serveur n'ecoute pas ou ne repond pas en UDP sur le=20
port 53.

I confirm this: I can get a response from 82.224.132.15 via TCP but not=20
via UDP. Check your NAT and/or port-forwarding configuration.

                                                                        =20
                                                - Kevin

arnaud wrote:

>Hello,
>
>First, sorry for my poor english.
>
>-bind.9.2.3
>
>I tried to check my dns configuration of my public domain name.
>
>This site, http://www.afnic.fr/outils/zonecheck, give me a lot of
>dns timeout. So i don't understand why.
>
>1=B0) no activate iptables firewall for this test
>2=B0) the computer is behin a router who mades nat for port 53 and
>protocol udp et tcp.
>
>Sorry, but i preferred gives you my named.conf :
>
>-------
>
>controls {
>         inet 127.0.0.1 allow { localhost; } keys { rndc_key; };
>};
>
>key "rndc_key" {
>         algorithm hmac-md5;
>         secret "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX";
>};
>
>acl accor {
>127.0.0.1;
>192.168.0.0/24;
>};
>
>acl free {
>212.27.32.176;
>212.27.32.177;
>};
>
>acl xfert {
>80.67.173.196;
>};
>
>options {
>         directory "/etc";
>         pid-file "/var/run/named.pid";
>         version "not register";
>         query-source address * port 53;
>         listen-on { 127.0.0.1; 192.168.0.1; 10.0.0.1;};
>         interface-interval 0;
>         forward first;
>         forwarders { 212.27.32.176; 212.27.32.177; };
>         // using with rndc stats
>         statistics-file "/var/run/named.stats";
>         zone-statistics yes;
>         notify no;
>         transfer-format many-answers;
>         max-transfer-time-in 60;
>         // recursive-clients 100;
>         // tcp-clients 10;
>};
>view "internal-in" in {
>         match-clients { accor; };
>         recursion yes;
>         additional-from-auth yes;
>         additional-from-cache yes;
>         allow-query { any; };
>         zone "." {
>                 type hint;
>                 file "internal/db.root";
>         };
>         zone "127.in-addr.arpa" {
>                 type master;
>                 file "internal/db.127";
>         };
>         zone "255.in-addr.arpa" {
>                 type master;
>                 file "internal/db.255";
>         };
>         zone "0.168.192.in-addr.arpa" {
>                 type master;
>                 file "internal/db.reseau";
>         };
>         zone "ad-lx.net" {
>                 type master;
>                 file "internal/db.ad-lx.net";
>         };
>};
>view "external-in" in {
>         match-clients { any; };
>         recursion no;
>         additional-from-auth no;
>         additional-from-cache no;
>
>         zone "." {
>                 type hint;
>                 file "external/db.root";
>         };
>         zone "ad-lx.net" {
>                 type master;
>                 file "external/db.ad-lx.net";
>                 allow-query { any; };
>                 allow-transfer { xfert; };
>         };
>};
>
>any idea for resolve this big problem.
>Perhaps it is not a dns problem ?
>
>Thanks.
>Arnaud.
>
>
>
>
>
> =20
>

More information about the bind-users mailing list