NS hosed! Please Advise

Jeffrey Reasoner jeff.reasoner at mail.hccanet.org
Fri Oct 27 02:30:10 UTC 2006 

The issue is probably related to your views (referenced in the path of
the named-checkzone statements you included).
Actually, from outside it appers that there is a problem with the public
view on ns1. It returns the address of only one of the servers, while
ns2 hands back both:

dig ns +nostats +nocmd +noqr +noquestion wananchi.com @ns1.wananchi.com
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 11918
;; flags: qr aa rd; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
 
;; ANSWER SECTION:
wananchi.com.           86400   IN      NS      ns2.wananchi.com.
wananchi.com.           86400   IN      NS      ns1.wananchi.com.
 
;; ADDITIONAL SECTION:
ns1.wananchi.com.       86400   IN      A       62.8.64.3

dig ns +nostats +nocmd +noqr +noquestion wananchi.com @ns2.wananchi.com
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 1274
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 2
 
;; ANSWER SECTION:
wananchi.com.           86400   IN      NS      ns1.wananchi.com.
wananchi.com.           86400   IN      NS      ns2.wananchi.com.
 
;; ADDITIONAL SECTION:
ns1.wananchi.com.       86400   IN      A       62.8.64.3
ns2.wananchi.com.       86400   IN      A       62.8.64.4


The .com servers also list an additional server for your domain which is
not resolvable by your servers:

dig ns +nostats +nocmd +noqr +noquestion wananchi.com
@a.gtld-servers.net
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 62169
;; flags: qr rd; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 3
 
;; ANSWER SECTION:
wananchi.com.           172800  IN      NS      ns1.wananchi.com.
wananchi.com.           172800  IN      NS      ns2.wananchi.com.
wananchi.com.           172800  IN      NS      ns3.wananchi.com.
 
;; ADDITIONAL SECTION:
ns1.wananchi.com.       172800  IN      A       62.8.64.3
ns2.wananchi.com.       172800  IN      A       62.8.64.4
ns3.wananchi.com.       172800  IN      A       62.8.64.2

This issue almost certainly did not come "Out of nowhere" - it has to be
related to changes in the server config, zonefiles, views acl matching,
etc. 
More help from this list will at least require you post named.conf

On Thu, 2006-10-26 at 12:28, Odhiambo Washington wrote:
> Hello there,
> 
> Out of nowhere, my name server cannot resolve its own name:
> This is a query while I am logged into the same box:
> 
> 
> 5$ nslookup ns2.wananchi.com
> Server:  ns2.wananchi.com
> Address:  62.8.64.4
> 
> *** ns2.wananchi.com can't find ns2.wananchi.com: Non-existent host/domain
> 
> 
> I have looked and looked and now I believe a "third eye" is perfectly in 
> order. I have also used some web-based tools (out of desperation) -
> 
> http://demo.dnsdoctor.org/
> http://atrey.karlin.mff.cuni.cz/~mj/sleuth/
> 
> They also still confirm my fears...
> 
> I am probably just missing some logging option to reveal this. I have
> added
> 
> !named
> *.*	/var/log/named.log
> 
> to syslog.conf. However that log file does not reveal much in terms of 
> why there is NO A record for ns2.wananchi.com, even though I can see one
> in the zone file! named-checkzone says we are fine... while we are 
> not:-(
> 
> 
> [root at ns2]#named-checkzone wananchi.com /etc/namedb/views/internal/wananchi.com
> zone wananchi.com/IN: loaded serial 2006102602
> OK
> [root at ns2]#named-checkzone wananchi.com /etc/namedb/views/external/wananchi.com
> zone wananchi.com/IN: loaded serial 2006102602
> OK
> 
> 
> Now I remain simply stumped.
> Any advise to identify the problem would be most helpful.
> 
> 
> 
> -Wash
> 
> http://www.netmeister.org/news/learn2quote.html
> 
> DISCLAIMER: See http://www.wananchi.com/bms/terms.php
> 
> --
> +======================================================================+
>     |\      _,,,---,,_     | Odhiambo Washington    <wash at wananchi.com>
> Zzz /,`.-'`'    -.  ;-;;,_ | Wananchi Online Ltd.   www.wananchi.com
>    |,4-  ) )-,_. ,\ (  `'-'| Tel: +254 20 313985-9  +254 20 313922
>   '---''(_/--'  `-'\_)     | GSM: +254 722 743223   +254 733 744121
> +======================================================================+
> 
> On the road, ZIPPY is a pinhead without a purpose, but never without a
> POINT ...
> 
> 
#####################################################################################

This email has been scanned by MailMarshal, an email content filter. 

#####################################################################################

More information about the bind-users mailing list