<div class="moz-text-flowed" lang="x-western" style="FONT-SIZE: 13px; FONT-FAMILY: -moz-fixed">Hi, <br><br> I've my secondary DNS Server that run bind9 version 9.5.0-P2 (from ubuntu 8.10 server) <br><br> Before, I was using the version on ubuntu 8.04 and it was working successfully with ipv6. <br>
<br> Yesterday I configure a new '.fr' domain which require a successfull zonecheck and I got the following error : <br><br>_____________________________________________________________________ <br><font face="courier new,monospace">---- fatal ---- <br>
Server doesn't listen/answer on port 53 for UDP protocol <br><br> * Ref: IETF RFC1035 (p.32 4.2. Transport) <br><br> The DNS assumes that messages will be transmitted as datagrams or in a byte stream carried by a virtual circuit. While virtual circuits can be used for any DNS activity, datagrams are preferred for queries due to their lower overhead and better performance. <br>
<br> * ns1.ordiworld.fr./2A01:E0B:1:31:240:63FF:FEE5:C74A</font> <br>_____________________________________________________________________ <br><br>I've checked that I can ping6 my server, firewall is correctly configured and I've got this message in the logs which says no ipv6 interface found : <br>
________________________________________________________________________ <br>Nov 18 13:36:08 ns1 named[32135]: received control channel command 'stop' <br>Nov 18 13:36:08 ns1 named[32135]: shutting down: flushing changes <br>
Nov 18 13:36:08 ns1 named[32135]: stopping command channel on <a href="http://127.0.0.1#953">127.0.0.1#953</a> <br>Nov 18 13:36:08 ns1 named[32135]: no longer listening on <a href="http://127.0.0.1#53">127.0.0.1#53</a> <br>
Nov 18 13:36:08 ns1 named[32135]: no longer listening on <a href="http://88.191.31.101#53">88.191.31.101#53</a> <br>Nov 18 13:36:08 ns1 named[32135]: exiting <br>Nov 18 13:36:11 ns1 named[32579]: starting BIND 9.5.0-P2 -u bind <br>
Nov 18 13:36:11 ns1 named[32579]: found 1 CPU, using 1 worker thread <br>Nov 18 13:36:11 ns1 named[32579]: loading configuration from '/etc/bind/named.conf' <br><strong>Nov 18 13:36:11 ns1 named[32579]: no IPv6 interfaces found <br>
</strong>Nov 18 13:36:11 ns1 named[32579]: listening on IPv4 interface lo, <a href="http://127.0.0.1#53">127.0.0.1#53</a> <br>Nov 18 13:36:11 ns1 named[32579]: listening on IPv4 interface eth0, <a href="http://88.191.31.101#53">88.191.31.101#53</a> <br>
Nov 18 13:36:11 ns1 named[32579]: default max-cache-size (33554432) applies <br>Nov 18 13:36:11 ns1 named[32579]: automatic empty zone: 254.169.IN-ADDR.ARPA <br>Nov 18 13:36:11 ns1 named[32579]: automatic empty zone: 2.0.192.IN-ADDR.ARPA <br>
________________________________________________________________________ <br><br><br>Any idea of what's wrong ? <br>Regards, <br>Thomas. <br><br><br>Next, configuration files and other logs : <br><br><br><br>my named.conf.options is : <br>
_________________________________________________________________ <br> auth-nxdomain no; # conform to RFC1035 <br> listen-on { <a href="http://127.0.0.1">127.0.0.1</a>; <a href="http://88.191.31.101">88.191.31.101</a>; }; <br>
listen-on-v6 {any; };//before I set the ipv6 address, I set to any to be more open without success <br> allow-transfer { <br> <a href="http://127.0.0.1">127.0.0.1</a>; //localhost <br> <a href="http://88.191.31.101">88.191.31.101</a>; <br>
2a01:e0b:1:31:240:63ff:fee5:c74a; <br> }; <br> match-mapped-addresses yes; <br><br>}; <br>_________________________________________________________________ <br><br>ifconfig output : <br>_________________________________________________________________ <br>
<font face="courier new,monospace">thomas@ns1:/etc/bind$ ifconfig <br>eth0 Link encap:Ethernet HWaddr 00:40:63:e5:c7:4a <br> inet addr:<a href="http://88.191.31.101">88.191.31.101</a> Bcast:<a href="http://88.191.31.255">88.191.31.255</a> Mask:<a href="http://255.255.255.0">255.255.255.0</a> <br>
inet6 addr: 2a01:e0b:1:31:240:63ff:fee5:c74a/64 Scope:Global <br> inet6 addr: fe80::240:63ff:fee5:c74a/64 Scope:Link <br> UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 <br> RX packets:613649 errors:0 dropped:0 overruns:0 frame:0 <br>
TX packets:142920 errors:0 dropped:0 overruns:0 carrier:0 <br> collisions:0 txqueuelen:1000 <br> RX bytes:58245990 (58.2 MB) TX bytes:22161493 (22.1 MB) <br> Interrupt:18 Base address:0xfc00 <br>
<br>lo Link encap:Local Loopback <br> inet addr:<a href="http://127.0.0.1">127.0.0.1</a> Mask:<a href="http://255.0.0.0">255.0.0.0</a> <br> inet6 addr: ::1/128 Scope:Host <br> UP LOOPBACK RUNNING MTU:16436 Metric:1 <br>
RX packets:42140 errors:0 dropped:0 overruns:0 frame:0 <br> TX packets:42140 errors:0 dropped:0 overruns:0 carrier:0 <br> collisions:0 txqueuelen:0 <br> RX bytes:4333412 (4.3 MB) TX bytes:4333412 (4.3 MB) <br>
</font>_________________________________________________________________ <br><br>my /etc/network/interfaces <br>_________________________________________________________________ <br><font face="courier new,monospace">thomas@ns1:/etc/bind$ cat /etc/network/interfaces <br>
# This file describes the network interfaces available on your system <br># and how to activate them. For more information, see interfaces(5). <br><br># The loopback network interface <br>auto lo <br>iface lo inet loopback <br>
iface lo inet6 loopback <br><br># The primary network interface <br>auto eth0 <br>iface eth0 inet static <br> address <a href="http://88.191.31.101">88.191.31.101</a> <br> netmask <a href="http://255.255.255.0">255.255.255.0</a> <br>
network <a href="http://88.191.31.0">88.191.31.0</a> <br> broadcast <a href="http://88.191.31.255">88.191.31.255</a> <br> gateway <a href="http://88.191.31.1">88.191.31.1</a> <br>
iface eth0 inet6 static <br> address 2a01:e0b:1:31:240:63ff:fee5:c74a <br> netmask 64 <br> gateway 2a01:e0b:1:31::1</font> <br>_________________________________________________________________ <br>
<br><br><br>firewall allow ipv6 udp on port 53 : <br><br>_________________________________________________________________ <br>thomas@ns1:~$ sudo ufw status <br>Status: loaded <br><br><font face="courier new,monospace">To Action From <br>
-- ------ ---- <br>53/tcp ALLOW Anywhere <br>53/udp ALLOW Anywhere <br>80/tcp ALLOW Anywhere <br>22/tcp ALLOW <a href="http://88.166.6.71">88.166.6.71</a> <br>
22/tcp ALLOW <a href="http://213.218.132.220">213.218.132.220</a> <br>22/tcp DENY Anywhere <br>22/udp DENY Anywhere <br>53/tcp ALLOW Anywhere (v6) <br>
53/udp ALLOW Anywhere (v6) <br>80/tcp ALLOW Anywhere (v6) <br>22/tcp DENY Anywhere (v6) <br>22/udp DENY Anywhere (v6) <br></font>_________________________________________________________________ <br>
<br><br>machine is reachable on ipv6 from another host : <br>_________________________________________________________________ <br><font face="courier new,monospace">thomas@home:~$ ping6 <a href="http://ns1.ordiworld.fr">ns1.ordiworld.fr</a> <br>
PING <a href="http://ns1.ordiworld.fr">ns1.ordiworld.fr</a>(2a01:e0b:1:31:240:63ff:fee5:c74a) 56 data bytes <br>64 bytes from 2a01:e0b:1:31:240:63ff:fee5:c74a: icmp_seq=1 ttl=60 time=38.1 ms <br>64 bytes from 2a01:e0b:1:31:240:63ff:fee5:c74a: icmp_seq=2 ttl=60 time=33.9 ms <br>
^C <br>--- <a href="http://ns1.ordiworld.fr">ns1.ordiworld.fr</a> ping statistics --- <br>2 packets transmitted, 2 received, 0% packet loss, time 1009ms <br>rtt min/avg/max/mdev = 33.902/36.027/38.152/2.125 ms</font> <br>
_________________________________________________________________ <br><br><br></div>