problem with NS record resolution

Manuel Ramirez Montero manuel.ramirez at grupoica.com
Wed Jul 2 12:00:18 UTC 2014 

Hi,

i have  BIND 9.9.5-P1  installed.

i have tried to configure a new zone "isilon.mep.es":

         zone "isilon.mep.es" in {
                type master;
                file "/var/named/data/isilon.mep.es.hosts";
                allow-update { dns; };
                allow-transfer { dns_xfer; };
                };



 with the following zone archive:

*************************************************

$ORIGIN .
$TTL 38400      ; 10 hours 40 minutes
isilon.mep.es           IN SOA  dnspri.mep.es. mail.mep.es. (
                                42         ; serial
                                10800      ; refresh (3 hours)
                                3600       ; retry (1 hour)
                                604800     ; expire (1 week)
                                38400      ; minimum (10 hours 40 minutes)
                                )
                        NS      dnspri.mep.es.
                        NS      dnssec.mep.es.
$ORIGIN isilon.mep.es.
buzones01               CNAME   scmol1
scgal1                  NS      sipgal1
scmol1                  NS      sipmol1
sipgal1                 A       10.1.32.224
sipmol1                 A       10.1.32.222

*********************************

What i want is when i  do a nslookup to scgal1.isilon.mep.es, the sipgal1
server  returns me the correct ip, but it is not working.

If i do a nslookup to sipgal1, it resolves ok with the 10.1.32.224----this
is ok

but when i try the query to one of the NS  records(scgal1 or scmol1),
doesn´t resolve.

I see that query goes to the forwarders servers, like my dns server is not
authoritative for that zone.
this is the DIG command output:

******************************************

[root at dnssec ~]# dig @10.1.29.179 scmol1.isilon.mep.es

; <<>> DiG 9.9.5-P1 <<>> @10.1.29.179 scmol1.isilon.mep.es
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26785
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;scmol1.isilon.mep.es.          IN      A

;; Query time: 4 msec
;; SERVER: 10.1.29.179#53(10.1.29.179)
;; WHEN: Wed Jul 02 13:46:41 CEST 2014
;; MSG SIZE  rcvd: 49


***************************

querys to records type A,CNAME works fine but this is the first time i
configure a NS record and doesn´t work.



these are the named.conf options:


options {
        listen-on port 53 { 127.0.0.1; 10.1.29.179; };
        directory       "/var/named";
        pid-file        "/var/run/named/named.pid";
        dump-file       "/var/named/data/named_dump.db";
        statistics-file "/var/named/data/named_stats.txt";
        memstatistics-file "/var/named/data/named_mem_stats.txt";
        forwarders      { 10.1.0.236; 10.1.0.242; };
        allow-query     { red_interna; dns_mpr; };
        allow-recursion { red_interna; dns_mpr; };
        allow-transfer  { dns_xfer; };
        allow-notify  { 10.1.24.35; };
        also-notify { 10.1.24.35; };
        recursive-clients 2000;
        transfers-out 100;
        transfers-per-ns 10;
        minimal-responses yes;
        notify yes;
        version "none";
        check-names master ignore;
        check-names slave ignore;
};





Thanks for your help and sorry for my poor English.

Regards
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20140702/3a520f41/attachment.html>

More information about the bind-users mailing list