problem with NS record resolution
Manuel Ramirez Montero
manuel.ramirez at grupoica.com
Wed Jul 2 12:00:18 UTC 2014
Hi,
i have BIND 9.9.5-P1 installed.
i have tried to configure a new zone "isilon.mep.es":
zone "isilon.mep.es" in {
type master;
file "/var/named/data/isilon.mep.es.hosts";
allow-update { dns; };
allow-transfer { dns_xfer; };
};
with the following zone archive:
*************************************************
$ORIGIN .
$TTL 38400 ; 10 hours 40 minutes
isilon.mep.es IN SOA dnspri.mep.es. mail.mep.es. (
42 ; serial
10800 ; refresh (3 hours)
3600 ; retry (1 hour)
604800 ; expire (1 week)
38400 ; minimum (10 hours 40 minutes)
)
NS dnspri.mep.es.
NS dnssec.mep.es.
$ORIGIN isilon.mep.es.
buzones01 CNAME scmol1
scgal1 NS sipgal1
scmol1 NS sipmol1
sipgal1 A 10.1.32.224
sipmol1 A 10.1.32.222
*********************************
What i want is when i do a nslookup to scgal1.isilon.mep.es, the sipgal1
server returns me the correct ip, but it is not working.
If i do a nslookup to sipgal1, it resolves ok with the 10.1.32.224----this
is ok
but when i try the query to one of the NS records(scgal1 or scmol1),
doesn´t resolve.
I see that query goes to the forwarders servers, like my dns server is not
authoritative for that zone.
this is the DIG command output:
******************************************
[root at dnssec ~]# dig @10.1.29.179 scmol1.isilon.mep.es
; <<>> DiG 9.9.5-P1 <<>> @10.1.29.179 scmol1.isilon.mep.es
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26785
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;scmol1.isilon.mep.es. IN A
;; Query time: 4 msec
;; SERVER: 10.1.29.179#53(10.1.29.179)
;; WHEN: Wed Jul 02 13:46:41 CEST 2014
;; MSG SIZE rcvd: 49
***************************
querys to records type A,CNAME works fine but this is the first time i
configure a NS record and doesn´t work.
these are the named.conf options:
options {
listen-on port 53 { 127.0.0.1; 10.1.29.179; };
directory "/var/named";
pid-file "/var/run/named/named.pid";
dump-file "/var/named/data/named_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
forwarders { 10.1.0.236; 10.1.0.242; };
allow-query { red_interna; dns_mpr; };
allow-recursion { red_interna; dns_mpr; };
allow-transfer { dns_xfer; };
allow-notify { 10.1.24.35; };
also-notify { 10.1.24.35; };
recursive-clients 2000;
transfers-out 100;
transfers-per-ns 10;
minimal-responses yes;
notify yes;
version "none";
check-names master ignore;
check-names slave ignore;
};
Thanks for your help and sorry for my poor English.
Regards
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20140702/3a520f41/attachment.html>
More information about the bind-users
mailing list