Bind

Hi linuxers

I am setting up a DNS/BIND for my local office 100 users for resolving
internal (nonroutable) and external names (internet)
for internet usage it works fine but for internal one it shows problems
am not using real name i called only my.lan
my DNS server 10.5.1.30 hostname: linux1.my.lan
my clients having 10.6.x.0/24
my servers having 10.5.0.0/16

can any one tell me what am doing wrong?

root@linuxvmware:~# cat /etc/resolv.conf
nameserver 10.5.1.30
domain my.lan
search my.lan






root@linuxvmware:~# nslookup redhat.com
Server: 10.5.1.30
Address: 10.5.1.30#53

Non-authoritative answer:
Name: redhat.com
Address: 209.132.177.50

root@linuxvmware:~# dig redhat.com

; <<>> DiG 9.4.1-P1 <<>> redhat.com
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 41276
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 3, ADDITIONAL: 1

;; QUESTION SECTION:
;redhat.com. IN A

;; ANSWER SECTION:
redhat.com. 49 IN A 209.132.177.50

;; AUTHORITY SECTION:
redhat.com. 370 IN NS ns1.redhat.com.
redhat.com. 370 IN NS ns2.redhat.com.
redhat.com. 370 IN NS ns3.redhat.com.

;; ADDITIONAL SECTION:
ns3.redhat.com. 90304 IN A 66.187.229.10

;; Query time: 11 msec
;; SERVER: 10.5.1.30#53(10.5.1.30)
;; WHEN: Sun Nov 4 20:58:54 2007
;; MSG SIZE rcvd: 114



root@linuxvmware:~# dig linux1

; <<>> DiG 9.4.1-P1 <<>> linux1
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2535
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;linux1. IN A

;; AUTHORITY SECTION:
. 5874 IN SOA A.ROOT-SERVERS.NET.
NSTLD.VERISIGN-GRS.COM. 2007111601 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 10.5.1.30#53(10.5.1.30)
;; WHEN: Sun Nov 4 20:59:23 2007
;; MSG SIZE rcvd: 99



root@linuxvmware:~# nslookup linux1
Server: 10.5.1.30
Address: 10.5.1.30#53

** server can't find linux1: NXDOMAIN

root@linuxvmware:~#







/etc/named.caching-nameserver.conf


//
// named.caching-nameserver.conf
//
// Provided by Red Hat caching-nameserver package to configure the
// ISC BIND named(8) DNS server as a caching only nameserver
// (as a localhost DNS resolver only).
//
// See /usr/share/doc/bind*/sample/ for example named configuration files.
//
// DO NOT EDIT THIS FILE - use system-config-bind or an editor
// to create named.conf - edits to this file will be lost on
// caching-nameserver package upgrade.
//

acl my-lan { 10.5.0.0/16; 10.6.40.0/24; 127.0/8; };

options {
forwarders { X.X.X.X; Y.Y.Y.Y; }; #IP of upstream ISP nameserver(s)
forward only; #rely completely on our upstream nameservers
listen-on port 53 { 127.0.0.1; 10.5.1.30;};
listen-on { 10.5.1.30; };
listen-on-v6 port 53 { ::1; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
query-source port 53;
query-source-v6 port 53;
allow-query { localhost; my-lan; };
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};

zone "." {
type hint;
file "named.root";
};


# Forward Zone for my.lan domain
zone "my.lan" IN {
type master;
file "my.lan.zone";
allow-query { localhost; my-lan; };
};

# Reverse Zone for my.lan domain
zone "0.10.in-addr.arpa" IN {
type master;
// file "10.0.zone";
file "10.in-addr.arpa";
//file "0.10.in-addr.arpa";
allow-query { localhost; my-lan; };
};


view localhost_resolver {
match-clients { localhost; 10.5.0.0/16; 10.6.40.0/24; 127.0/8;
};
match-destinations { localhost; };
recursion yes;
include "/etc/named.rfc1912.zones";
};
~



------------------------------
my.lan.zone

$TTL 12h

@ IN SOA linux1.my.lan. pons.my.lan. (
2007052500 ; Serial
10800 ; Refresh
3600 ; Retry
604800 ; Expire
86400 ) ; Minimum
; Name servers
IN NS linux1.my.lan.
; Mail servers
IN MX 5 linux1.my.lan.
; Individual servers
linux1 IN A 10.5.1.30
linuxvmware IN A 10.6.40.81
mailhost IN CNAME linux1
www IN CNAME linux1


----------------------------------


10.in-addr.arpa

$TTL 24h
; 10.0.rev
@ IN SOA linux1.my.lan pons.my.lan. (
2007052500
10800
3600
604800
86400 )

IN NS linux1.my.lan.

10 IN PTR linux1.my.lan.
1 IN PTR linuxvmware.my.lan.








--
madunix
--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list

Relevant Pages

  • CORRECT! Heres ZA Tech Supports Email Re: Internet Worms and ZoneAlarm
    ... ZoneAlarm protects the computer it is installed on by only allowing Internet ... There is a third zone -- a Restricted Zone (which restricts access to your ... Server rights to both Local AND Internet Zones. ...
    (comp.security.firewalls)
  • Re: BIND9 Latency
    ... it times out when resolving Internet ... Have you specified a forwarding name server in the /etc/named.conf ... forwards, and zone synchronisation. ...
    (Ubuntu)
  • Re: For anyone interested in blocking nameserver lookups to sites
    ... > 8.2.x series name server and a semi-current version of RedHat Linux. ... > The first thing that you need to do is setup the start of the named.conf ... > zone "doubleclick.net" in { ... > however you can go into Internet Options -> Advanced tab and turn off ...
    (comp.os.linux.security)
  • Re: Urgent! New router and big disaster
    ... The SBS DNS server, running on ... its IP it means that your problem is now DNS. ... forward ports to it reliably in the router. ... I should have been more clear about internet connection.. ...
    (microsoft.public.windows.server.sbs)
  • Re: RWW Disconnecting
    ... I have been connected from a remote site for about 3 ... DHCP server and even a wireless access ... the key codes to for Internet access. ... Client Workstations} ...
    (microsoft.public.windows.server.sbs)