Unable to resolve the A records, not sure what is wrong

Bob Harold rharolde at umich.edu
Fri Jun 1 18:03:22 UTC 2018 

On Fri, Jun 1, 2018 at 2:01 PM Blason R <blason16 at gmail.com> wrote:

> Yes that was the issue :) and got resolved.
>

Glad it was an easy fix.

-- 
Bob Harold


> On Fri, Jun 1, 2018 at 11:29 PM, Blason R <blason16 at gmail.com> wrote:
>
>> I guess this could be the issue
>>
>> zone "malware.trap" {
>>         type master;
>>         file "/var/lib/bind/zones/malware.trap.db";
>>         allow-query { localhost;};
>>
>>
>> On Fri, Jun 1, 2018 at 11:28 PM, Blason R <blason16 at gmail.com> wrote:
>>
>>> Well this is I am getting in network.log what could be the issue?
>>>
>>> 01-Jun-2018 23:27:42.274 client 192.168.5.103#58425 (wg.block.tld):
>>> query 'wg.block.tld/A/IN' denied
>>>
>>>
>>> On Fri, Jun 1, 2018 at 11:27 PM, Bob Harold <rharolde at umich.edu> wrote:
>>>
>>>>
>>>> On Fri, Jun 1, 2018 at 1:36 PM Blason R <blason16 at gmail.com> wrote:
>>>>
>>>>> Hi there,
>>>>>
>>>>> I am writing a RPZ zone and here is my zone file. RPZ is working fine
>>>>> but somehow A records are not getting resovled hence I am unable to do the
>>>>> wall-gardening.
>>>>>
>>>>> Can someone please help
>>>>>
>>>>>
>>>>> $TTL 3h
>>>>> @               IN      SOA     ns1.malware.trap.
>>>>> admin.malware.trap.    (
>>>>>                         2006060301      ; Serial
>>>>>                         21600           ; Refresh
>>>>>                         3600            ; Retry
>>>>>                         604800          ; Expire
>>>>>                         3600 )          ; Minimum TTL
>>>>>
>>>>>             IN  NS    ns1.malware.trap.
>>>>> ns1.malware.trap.       A     172.16.3.48
>>>>> wg.malware.trap.        A     172.16.3.48
>>>>> baddomain.co   CNAME  wg.malware.trap.
>>>>> block.this    CNAME   wg.malware.trap.
>>>>>
>>>>> ###############################
>>>>>
>>>>> ;; ANSWER SECTION:
>>>>> block.this.            5       IN      CNAME   wg.malware.trap.
>>>>>
>>>>>
>>>>> ***********************************************
>>>>> ;; QUESTION SECTION:
>>>>> ;wg.malware.trap.               IN      A
>>>>>
>>>>> Answer not getting what could be wrong??
>>>>>
>>>>
>>>> Not sure what is a normal configuration, but on my servers users cannot
>>>> query the RPZ domain, it is only used for RPZ.
>>>> Try putting the A record in a normal zone, and CNAME to that, rather
>>>> than having the A record in the RPZ zone.
>>>> Or try doing a direct query for the A record and see if it resolves.
>>>>
>>>> --
>>>> Bob Harold
>>>>
>>>>
>>>
>>>
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20180601/3df3373e/attachment-0001.html>

More information about the bind-users mailing list