NS is an Alias problem????

phn at icke-reklam.ipsec.nu phn at icke-reklam.ipsec.nu
Thu Nov 4 08:04:59 UTC 2004

kogger <foup at alcor.concordia.ca> wrote:
> (my apologies if this ends up being a double post)
> Hello all,

> I'm new to DNS and BIND.  I'm trying to get my NS boxes to be
> authoritative.  I've relied on O'Reilly's "DNS and BIND" book by Paul
> Albitz to help me learn the initial in and outs, but I still cannot get
> my NS boxes to work properly.

> ns2.finearts.concordia.ca is a Unix system running BIND 8.3.7. (master)
> ns1.finearts.concordia.ca is a win2k system running MS DNS. (slave)

> Locally everything seems to work great (mostly because I use my own DNS
> server directly).  But outside of my network I cannot get
> digitalcitieswproject.net to resolve properly.  The only thing I can
> find in my log files are the following lines:

> [log messages]
>>> named[555]: NS 'ns2.finearts.concordia.ca' for=20
>>> '114.205.132.in-addr.arpa/IN' is a CNAME
>>> named[555]: NS 'ns2.finearts.concordia.ca' for '0.0.127.in-addr.arpa/=
>>> is a CNAME
>>> named[555]: NS 'ns1.finearts.concordia.ca' for=20
>>> 'digitalcitiesproject.net/IN' is a CNAME

> Would this be the cause of the problem?  The DNS names ns1 and ns2 are
> given to me by another BIND server. Would asking them to be changed to =
> records solve my problem?

> Just in case this isn't it I'm adding some of my configs below (trimmed
> for convenience).  I would appreciate any advice.

> Many Thanks.

The delegation to finearts.concordia.ca is broken ;=20
> dig finearts.concordia.ca ns

; <<>> DiG 9.3.0 <<>> finearts.concordia.ca ns
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 23677
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0

;finearts.concordia.ca.         IN      NS

finearts.concordia.ca.  86400   IN      CNAME   cda-nt-dc1.concordia.ca.

Tell your "upstream" dna-admin to fix this delegation :

finearts.concordia.ca.  IN   NS    ns1.finearts.concordia.ca.
finearts.concordia.ca.  IN   NS    ns2.finearts.concordia.ca.

and add gluerecords :
ns1.finearts.concordia.ca. IN  A   <ip-of-ns1>
ns2.finearts.concordia.ca. IN  A   <ip-of-ns2>

Peter H=E5kanson        =20
        IPSec  Sverige      ( At Gothenburg Riverside )
           Sorry about my e-mail address, but i'm trying to keep spam out=
	   remove "icke-reklam" if you feel for mailing me. Thanx.

More information about the bind-users mailing list