new here
Ben Croswell
ben.croswell at gmail.com
Mon Apr 23 03:22:44 UTC 2012
You set a listen-on that does not include 127.0.0.1.
On Apr 22, 2012 11:08 PM, "David Milholen" <dmilholen at wletc.com> wrote:
> I am a Wisp admin and I have just configured a couple of new Bind9
> servers.
> They will resolve using dig google.com @9x.1xx.104.14
> I am having some trouble getting them to answer themselves on 127.0.0.1
> for example:
>
> [root at ns4 named]# dig google.com @127.0.0.1 +trace
>
> ; <<>> DiG 9.3.6-P1-RedHat-9.3.6-20.P1.el5 <<>> google.com @127.0.0.1+trace
> ;; global options: printcmd
> ;; connection timed out; no servers could be reached
> [root at ns4 named]#
>
> Here is an my config:
> //
> // named.conf for Red Hat caching-nameserver
> //
> controls {
> inet 127.0.0.1 allow { localhost; } keys { rndckey; rndc-key; };
> };
>
> options {
> directory "/var/named";
> dump-file "/var/named/data/cache_dump.db";
> statistics-file "/var/named/data/named_stats.txt";
> /*
> * If there is a firewall between you and nameservers you want
> * to talk to, you might need to uncomment the query-source
> * directive below. Previous versions of BIND always asked
> * questions using port 53, but BIND 8.1 uses an unprivileged
> * port by default.
> */
> // query-source address * port 53;
> version "Surely you must be joking";
> notify yes;
> allow-recursion {
> 127.0.0.1;
> 9x.1xx.104.0/22;
> 9x.1xx.108.0/23;
> };
> allow-transfer { 9x.1xx.104.22;
> };
> listen-on {
> 9x.1xx.104.14;
> };
> };
> //
> logging {
> channel my_syslog {
> syslog kern;
> severity debug;
> };
> channel my_file {
> file "/var/named/chroot/var/named/log.msgs";
> severity dynamic;
> print-category yes;
> };
> category unmatched {
> null;
> };
> category queries {
> my_file;
> };
> category lame-servers {
> null;
> };
> category general {
> default_syslog;
> };
> };
>
>
> // a caching only nameserver config
> //
>
> zone "." IN {
> type hint;
> file "root.servers";
> };
>
>
>
> zone "104.1xx.9x.in-addr.arpa" {
> type master;
> file "/var/named/9x.1xx.104.rev";
> allow-transfer {
> 9x.1xx.104.22;
> };
> };
> zone "0.0.127.in-addr.arpa" {
> type master;
> file "/var/named/127.0.0.rev";
> };
> zone "localdomain" {
> type master;
> file "/var/named/localdomain.hosts";
> };
> zone "localhost" {
> type master;
> file "/var/named/localhost.hosts";
> };
> key rndc-key {
> algorithm hmac-md5;
> secret "wh6DFiuNGJHzHwvNTy8JEA==";
> };
>
> Here is my resolv.conf :
> nameserver 127.0.0.1
> nameserver 9x.1xx.104.14
>
> Not sure what I broke but it seems to work on some of my older servers.
> Thanks for any help.
>
> --
>
> David Milholen
> Project Engineer
> P:501-318-1300
>
> _______________________________________________
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to
> unsubscribe from this list
>
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20120422/0b3c352a/attachment.html>
More information about the bind-users
mailing list