How to Setup a Name Servers visible on Internet?

erickom at kom.za.net erickom at kom.za.net
Tue Jun 14 13:45:11 UTC 2011


On 14/06/2011 14:54, Stephane Bortzmeyer wrote:
> On Tue, Jun 14, 2011 at 02:25:12PM +0200,
>  erickom at kom.za.net <erickom at kom.za.net> wrote
>  a message of 307 lines which said:
>
>> root at ns1:/var/cache/bind# named-checkzone metropolitanbuntu.co.za 
>> 0.0.10.metropolitanbuntu.co.za.inv
>
> Wrong zone name. The file 0.0.10.metropolitanbuntu.co.za.inv contains
> data about 0.0.10.in-addr.arpa, not about metropolitanbuntu.co.za,
> which explains why named-checkzone is confused. (See your named.conf,
> which is correct.)
>
Thanks for that!

I changed the setting, and thinks that I'm on my way.

Please below the inverse zone settings changed

File:0.0.10.metropolitanbuntu.co.za.inv
$TTL 864000
metropolitanbuntu.co.za.                IN      SOA     
ns1.metropolitanbuntu.co.za.    postmaster.metropolitanbuntu.co.za.     
(
                                         1               ; serial
                                         3600            ; refresh
                                         900             ; retry
                                         1209600         ; expire
                                         43200)          ; default_TTL
;
metropolitanbuntu.co.za.        IN      NS      
ns1.metropolitanbuntu.co.za.
metropolitanbuntu.co.za.        IN      NS      
ns2.metropolitanbuntu.co.za.
;
80                              IN      PTR     
ns1.metropolitanbuntu.co.za.
82                              IN      PTR     
ns2.metropolitanbuntu.co.za.
81                              IN      PTR     
www.metropolitanbuntu.co.za.
102                             IN      PTR     
backup.metropolitanbuntu.co.za.
108                             IN      PTR     
printer-server.metropolitanbuntu.co.za.
31                              IN      PTR     
ldap.metropolitanbuntu.co.za.

and

File: 194.134.41.metropolitanbuntu.co.za.inv


$TTL 864000
metropolitanbuntu.co.za.        IN      SOA     
ns1.metropolitanbuntu.co.za.    postmaster.metropolitanbuntu.co.za.     
(
                                         1               ; serial
                                         3600            ; refresh
                                         900             ; retry
                                         1209600         ; expire
                                         43200)          ; default_TTL
;
metropolitanbuntu.co.za.        IN      NS      
ns1.metropolitanbuntu.co.za.
metropolitanbuntu.co.za.        IN      NS      
ns2.metropolitanbuntu.co.za.
;
90                              IN      PTR     
ns1.metropolitanbuntu.co.za.
91                              IN      PTR     
ns2.metropolitanbuntu.co.za.

Please This is another check for inverse and I can see that the number 
of errors/warnings was reduce:

root at ns1:/var/cache/bind# named-checkzone metropolitanbuntu.co.za 
0.0.10.metropolitanbuntu.co.za.inv
zone metropolitanbuntu.co.za/IN: NS 'ns1.metropolitanbuntu.co.za' has 
no address records (A or AAAA)
zone metropolitanbuntu.co.za/IN: NS 'ns2.metropolitanbuntu.co.za' has 
no address records (A or AAAA)
zone metropolitanbuntu.co.za/IN: not loaded due to errors.


and

Please see below the output command "#grep named /var/log/syslog"

root at ns1:/var/cache/bind# named-checkzone metropolitanbuntu.co.za 
194.134.41.metropolitanbuntu.co.za.inv
zone metropolitanbuntu.co.za/IN: NS 'ns1.metropolitanbuntu.co.za' has 
no address records (A or AAAA)
zone metropolitanbuntu.co.za/IN: NS 'ns2.metropolitanbuntu.co.za' has 
no address records (A or AAAA)
zone metropolitanbuntu.co.za/IN: not loaded due to errors.

Jun 14 15:31:23 ns1 named[11608]: received control channel command 
'stop -p'
Jun 14 15:31:23 ns1 named[11608]: shutting down: flushing changes
Jun 14 15:31:23 ns1 named[11608]: stopping command channel on 
127.0.0.1#953
Jun 14 15:31:23 ns1 named[11608]: stopping command channel on ::1#953
Jun 14 15:31:23 ns1 named[11608]: no longer listening on ::#53
Jun 14 15:31:23 ns1 named[11608]: no longer listening on 127.0.0.1#53
Jun 14 15:31:23 ns1 named[11608]: no longer listening on 10.0.0.80#53
Jun 14 15:31:23 ns1 named[11608]: exiting
Jun 14 15:31:24 ns1 named[11648]: starting BIND 9.7.3 -u bind
Jun 14 15:31:24 ns1 named[11648]: built with '--prefix=/usr' 
'--mandir=/usr/share/man' '--infodir=/usr/share/info' 
'--sysconfdir=/etc/bind' '--localstatedir=/var' '--enable-threads' 
'--enable-largefile' '--with-libtool' '--enable-shared' 
'--enable-static' '--with-openssl=/usr' '--with-gssapi=/usr' 
'--with-gnu-ld' '--with-dlz-postgres=no' '--with-dlz-mysql=no' 
'--with-dlz-bdb=yes' '--with-dlz-filesystem=yes' '--with-dlz-ldap=yes' 
'--with-dlz-stub=yes' '--with-geoip=/usr' '--enable-ipv6' 
'CFLAGS=-fno-strict-aliasing -DDIG_SIGCHASE -O2' 'LDFLAGS=' 'CPPFLAGS='
Jun 14 15:31:24 ns1 named[11648]: adjusted limit on open files from 
1024 to 1048576
Jun 14 15:31:24 ns1 named[11648]: found 1 CPU, using 1 worker thread
Jun 14 15:31:24 ns1 named[11648]: using up to 4096 sockets
Jun 14 15:31:24 ns1 named[11648]: loading configuration from 
'/etc/bind/named.conf'
Jun 14 15:31:24 ns1 named[11648]: reading built-in trusted keys from 
file '/etc/bind/bind.keys'
Jun 14 15:31:24 ns1 named[11648]: using default UDP/IPv4 port range: 
[1024, 65535]
Jun 14 15:31:24 ns1 named[11648]: using default UDP/IPv6 port range: 
[1024, 65535]
Jun 14 15:31:24 ns1 named[11648]: listening on IPv6 interfaces, port 53
Jun 14 15:31:24 ns1 named[11648]: listening on IPv4 interface lo, 
127.0.0.1#53
Jun 14 15:31:24 ns1 named[11648]: listening on IPv4 interface eth1, 
10.0.0.80#53
Jun 14 15:31:24 ns1 named[11648]: generating session key for dynamic 
DNS
Jun 14 15:31:24 ns1 named[11648]: set up managed keys zone for view 
_default, file 'managed-keys.bind'
Jun 14 15:31:24 ns1 named[11648]: automatic empty zone: 
254.169.IN-ADDR.ARPA
Jun 14 15:31:24 ns1 named[11648]: automatic empty zone: 
2.0.192.IN-ADDR.ARPA
Jun 14 15:31:24 ns1 named[11648]: automatic empty zone: 
100.51.198.IN-ADDR.ARPA
Jun 14 15:31:24 ns1 named[11648]: automatic empty zone: 
113.0.203.IN-ADDR.ARPA
Jun 14 15:31:24 ns1 named[11648]: automatic empty zone: 
255.255.255.255.IN-ADDR.ARPA
Jun 14 15:31:24 ns1 named[11648]: automatic empty zone: 
0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Jun 14 15:31:24 ns1 named[11648]: automatic empty zone: 
1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Jun 14 15:31:24 ns1 named[11648]: automatic empty zone: D.F.IP6.ARPA
Jun 14 15:31:24 ns1 named[11648]: automatic empty zone: 8.E.F.IP6.ARPA
Jun 14 15:31:24 ns1 named[11648]: automatic empty zone: 9.E.F.IP6.ARPA
Jun 14 15:31:24 ns1 named[11648]: automatic empty zone: A.E.F.IP6.ARPA
Jun 14 15:31:24 ns1 named[11648]: automatic empty zone: B.E.F.IP6.ARPA
Jun 14 15:31:24 ns1 named[11648]: automatic empty zone: 
8.B.D.0.1.0.0.2.IP6.ARPA
Jun 14 15:31:24 ns1 named[11648]: command channel listening on 
127.0.0.1#953
Jun 14 15:31:24 ns1 named[11648]: command channel listening on ::1#953
Jun 14 15:31:24 ns1 named[11648]: zone 0.in-addr.arpa/IN: loaded serial 
1
Jun 14 15:31:24 ns1 named[11648]: 
/var/cache/bind/0.0.10.metropolitanbuntu.co.za.inv:2: ignoring 
out-of-zone data (metropolitanbuntu.co.za)
Jun 14 15:31:24 ns1 named[11648]: 
/var/cache/bind/0.0.10.metropolitanbuntu.co.za.inv:9: ignoring 
out-of-zone data (metropolitanbuntu.co.za)
Jun 14 15:31:24 ns1 named[11648]: 
/var/cache/bind/0.0.10.metropolitanbuntu.co.za.inv:10: ignoring 
out-of-zone data (metropolitanbuntu.co.za)
Jun 14 15:31:24 ns1 named[11648]: zone 0.0.10.in-addr.arpa/IN: has 0 
SOA records
Jun 14 15:31:24 ns1 named[11648]: zone 0.0.10.in-addr.arpa/IN: has no 
NS records
Jun 14 15:31:24 ns1 named[11648]: zone 0.0.10.in-addr.arpa/IN: not 
loaded due to errors.
Jun 14 15:31:24 ns1 named[11648]: zone 127.in-addr.arpa/IN: loaded 
serial 1
Jun 14 15:31:24 ns1 named[11648]: zone 255.in-addr.arpa/IN: loaded 
serial 1
Jun 14 15:31:24 ns1 named[11648]: 
/var/cache/bind/194.134.41.metropolitanbuntu.co.za.inv:2: ignoring 
out-of-zone data (metropolitanbuntu.co.za)
Jun 14 15:31:24 ns1 named[11648]: 
/var/cache/bind/194.134.41.metropolitanbuntu.co.za.inv:9: ignoring 
out-of-zone data (metropolitanbuntu.co.za)
Jun 14 15:31:24 ns1 named[11648]: 
/var/cache/bind/194.134.41.metropolitanbuntu.co.za.inv:10: ignoring 
out-of-zone data (metropolitanbuntu.co.za)
Jun 14 15:31:24 ns1 named[11648]: zone 194.134.41.in-addr.arpa/IN: has 
0 SOA records
Jun 14 15:31:24 ns1 named[11648]: zone 194.134.41.in-addr.arpa/IN: has 
no NS records
Jun 14 15:31:24 ns1 named[11648]: zone 194.134.41.in-addr.arpa/IN: not 
loaded due to errors.
Jun 14 15:31:24 ns1 named[11648]: zone localhost/IN: loaded serial 2
Jun 14 15:31:24 ns1 named[11648]: zone metropolitanbuntu.co.za/IN: 
loaded serial 1
Jun 14 15:31:24 ns1 named[11648]: managed-keys-zone ./IN: loading from 
master file managed-keys.bind failed: file not found
Jun 14 15:31:24 ns1 named[11648]: managed-keys-zone ./IN: loaded serial 
0
Jun 14 15:31:24 ns1 named[11648]: running
Jun 14 15:31:24 ns1 named[11648]: zone metropolitanbuntu.co.za/IN: 
sending notifies (serial 1)


> I strongly suggest that you drop completely all the "inverse zone"
> terminology, which is very confusing. 0.0.10.in-addr.arpa is NOT
> metropolitanbuntu.co.za's inverse, it is 0.0.10.in-addr.arpa, period.
>


-- 
Your Truly

Eric Kom

2 Hennie Van Till, White River, 1240
erickom at kom.za.net | erickom at namekom.co.za | erickom at erickom.co.za
www.kom.za.net | www.kom.za.org | www.erickom.co.za

Key fingerprint: 513E E91A C243 3020 8735 09BB 2DBC 5AD7 A9DA 1EF5




More information about the bind-users mailing list