Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Bind named query
Operating Systems Linux Red Hat Bind named query Post 302633289 by admin_xor on Tuesday 1st of May 2012 03:59:56 PM
Old 05-01-2012
Bind named query
Hello!

I have a DNS server running named on a RHEL 6.2 for very small development servers/clients network. I see the below logs on /var/named/data/named.run

Code:
error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 198.41.0.4#53
error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 193.0.14.129#53
error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 198.41.0.4#53
error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 2001:dc3::35#53
error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 198.41.0.4#53
error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 2001:dc3::35#53
error (network unreachable) resolving 'I.ROOT-SERVERS.NET/AAAA/IN': 192.58.128.30#53
error (network unreachable) resolving 'I.ROOT-SERVERS.NET/AAAA/IN': 2001:dc3::35#53
error (network unreachable) resolving 'L.ROOT-SERVERS.NET/AAAA/IN': 2001:503:c27::2:30#53
error (network unreachable) resolving 'L.ROOT-SERVERS.NET/AAAA/IN': 2001:500:1::803f:235#53

I have never configured any forwarding on the DNS server. Then why is it trying to look up on external DNS servers -- this is what I am trying to understand.

Here's how my named.conf looks like:
Code:
options {
        listen-on port 53 { 127.0.0.1; 10.0.1.102; };
        listen-on-v6 port 53 { ::1; };
        directory       "/var/named";
        dump-file       "/var/named/data/cache_dump.db";
        statistics-file "/var/named/data/named_stats.txt";
        memstatistics-file "/var/named/data/named_mem_stats.txt";
        allow-query     { localhost; any; };
        recursion yes;
        dnssec-enable yes;
        dnssec-validation yes;
        dnssec-lookaside auto;
        /* Path to ISC DLV key */
        bindkeys-file "/etc/named.iscdlv.key";
};
logging {
        channel default_debug {
                file "data/named.run";
                severity dynamic;
        };
};
zone "." IN {
        type hint;
        file "named.ca";
};
zone "vmnet.com" IN {
        type master;
        file "vmnet.com.zone";
};
zone "1.0.10.in-addr.arpa" IN {
        type master;
        file "vmnet.com.rev.zone";
};
include "/etc/named.rfc1912.zones";
# Use with the following in named.conf, adjusting the allow list as needed:
key "rndc-key" {
       algorithm hmac-md5;
       secret "jMR4mMP5RfO1WE5N56Kq6A==";
};
controls {
       inet 127.0.0.1 port 953
               allow { 127.0.0.1; } keys { "rndc-key"; };
};

This server is isolated from outside world and serves a small group of development machines. Can anyone tell me where I need to look at?

I figured the below entry has something to do with it. Root hint?
Code:
zone "." IN {         type hint;         file "named.ca"; };

How do I avoid it?
 

9 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

named pipes

Hi I am having trouble with a script to export individual schemas to tape from an oracle database. Basicaly I need to export each shema through a pipe with compression and store each shema name in a file with the relevant tape marker. (4 Replies)
Discussion started by: truma1
4 Replies

2. UNIX for Dummies Questions & Answers

named

Dear All , Kindly i would like to start the named whenever the system reboot , currently i start it manually . for more info. i have both named , one from SUN , and other one i installed it from internet , now i want the one from SUN to start automatically when rebooting . its path is :... (5 Replies)
Discussion started by: tamemi
5 Replies

3. UNIX for Dummies Questions & Answers

Named PIPE

Gurus, I've a File Transaction Server, which communicates with other servers and performs some processing.It uses many Named PIPE's. By mistake i copied a named PIPE into a text file. I heard that PIPE files shouldn't be copied.Isn't it? Since it's a production box, i'm afraid on... (2 Replies)
Discussion started by: Tamil
2 Replies

4. UNIX for Dummies Questions & Answers

Named Pipes

hi, i am working on a script for oracle export, m using a parameter file... i want to compress the dump file that is generated.. in my script following is the code i have written. i am not able to generata .gz file mknod /tmp/exp_tesd1_pipe p gzip -cNf... (4 Replies)
Discussion started by: saharookiedba
4 Replies

5. Shell Programming and Scripting

add the output of a query to a variable to be used in another query

I would like to use the result of a query in another query. How do I redirect/add the output to another variable? $result = odbc_exec($connect, $query); while ($row = odbc_fetch_array($result)) { echo $row,"\n"; } odbc_close($connect); ?> This will output hostnames: host1... (0 Replies)
Discussion started by: hazno
0 Replies

6. Solaris

Solaris 8 bind 9 named question

Hi, I can't rememeber what passwd is set for the "named" user in bind. Is there possibly a default one or anyway to find it ? I'm worried about changing it and causing other issues, if I did change it what other files would I need to edit ? :( Thanks (1 Reply)
Discussion started by: sysop400
1 Replies

7. Shell Programming and Scripting

Query Oracle tables and return values to shell script that calls the query

Hi, I have a requirement as below which needs to be done viz UNIX shell script (1) I have to connect to an Oracle database (2) Exexute "SELECT field_status from table 1" query on one of the tables. (3) Based on the result that I get from point (2), I have to update another table in the... (6 Replies)
Discussion started by: balaeswari
6 Replies

8. Solaris

BIND 9 ---> no /etc/named.conf file after installation

Hi I installed BIND 9 from dvd image of my Solaris 10 (SUNWbind, SUNWbindr) and when I try to start it(svcadm enable network/dns/server), it says there is no /etc/named.conf file. Why is it so ? Should not this file be created during installation phase ? Do I have to create it manually ?... (0 Replies)
Discussion started by: presul
0 Replies

9. Shell Programming and Scripting

Shell Script to execute Oracle query taking input from a file to form query

Hi, I need to query Oracle database for 100 users. I have these 100 users in a file. I need a shell script which would read this User file (one user at a time) & query database. For instance: USER CITY --------- ---------- A CITY_A B CITY_B C ... (2 Replies)
Discussion started by: DevendraG
2 Replies

LEARN ABOUT OSX

named-checkzone

NAMED-CHECKZONE(8)						       BIND9							NAMED-CHECKZONE(8)

NAME

       named-checkzone, named-compilezone - zone file validity checking or converting tool

SYNOPSIS

       named-checkzone [-d] [-h] [-j] [-q] [-v] [-c class] [-f format] [-F format] [-i mode] [-k mode] [-m mode] [-M mode] [-n mode] [-o filename]
		       [-s style] [-S mode] [-t directory] [-w directory] [-D] [-W mode] {zonename} {filename}

       named-compilezone [-d] [-j] [-q] [-v] [-c class] [-C mode] [-f format] [-F format] [-i mode] [-k mode] [-m mode] [-n mode] [-o filename]
			 [-s style] [-t directory] [-w directory] [-D] [-W mode] {zonename} {filename}

DESCRIPTION

       named-checkzone checks the syntax and integrity of a zone file. It performs the same checks as named does when loading a zone. This makes
       named-checkzone useful for checking zone files before configuring them into a name server.

       named-compilezone is similar to named-checkzone, but it always dumps the zone contents to a specified file in a specified format.
       Additionally, it applies stricter check levels by default, since the dump output will be used as an actual zone file loaded by named. When
       manually specified otherwise, the check levels must at least be as strict as those specified in the named configuration file.

OPTIONS

       -d
	   Enable debugging.

       -h
	   Print the usage summary and exit.

       -q
	   Quiet mode - exit code only.

       -v
	   Print the version of the named-checkzone program and exit.

       -j
	   When loading the zone file read the journal if it exists.

       -c class
	   Specify the class of the zone. If not specified "IN" is assumed.

       -i mode
	   Perform post-load zone integrity checks. Possible modes are "full" (default), "full-sibling", "local", "local-sibling" and "none".

	   Mode "full" checks that MX records refer to A or AAAA record (both in-zone and out-of-zone hostnames). Mode "local" only checks MX
	   records which refer to in-zone hostnames.

	   Mode "full" checks that SRV records refer to A or AAAA record (both in-zone and out-of-zone hostnames). Mode "local" only checks SRV
	   records which refer to in-zone hostnames.

	   Mode "full" checks that delegation NS records refer to A or AAAA record (both in-zone and out-of-zone hostnames). It also checks that
	   glue address records in the zone match those advertised by the child. Mode "local" only checks NS records which refer to in-zone
	   hostnames or that some required glue exists, that is when the nameserver is in a child zone.

	   Mode "full-sibling" and "local-sibling" disable sibling glue checks but are otherwise the same as "full" and "local" respectively.

	   Mode "none" disables the checks.

       -f format
	   Specify the format of the zone file. Possible formats are "text" (default) and "raw".

       -F format
	   Specify the format of the output file specified. Possible formats are "text" (default) and "raw". For named-checkzone, this does not
	   cause any effects unless it dumps the zone contents.

       -k mode
	   Perform "check-names" checks with the specified failure mode. Possible modes are "fail" (default for named-compilezone), "warn"
	   (default for named-checkzone) and "ignore".

       -m mode
	   Specify whether MX records should be checked to see if they are addresses. Possible modes are "fail", "warn" (default) and "ignore".

       -M mode
	   Check if a MX record refers to a CNAME. Possible modes are "fail", "warn" (default) and "ignore".

       -n mode
	   Specify whether NS records should be checked to see if they are addresses. Possible modes are "fail" (default for named-compilezone),
	   "warn" (default for named-checkzone) and "ignore".

       -o filename
	   Write zone output to filename. If filename is - then write to standard out. This is mandatory for named-compilezone.

       -s style
	   Specify the style of the dumped zone file. Possible styles are "full" (default) and "relative". The full format is most suitable for
	   processing automatically by a separate script. On the other hand, the relative format is more human-readable and is thus suitable for
	   editing by hand. For named-checkzone this does not cause any effects unless it dumps the zone contents. It also does not have any
	   meaning if the output format is not text.

       -S mode
	   Check if a SRV record refers to a CNAME. Possible modes are "fail", "warn" (default) and "ignore".

       -t directory
	   Chroot to directory so that include directives in the configuration file are processed as if run by a similarly chrooted named.

       -w directory
	   chdir to directory so that relative filenames in master file $INCLUDE directives work. This is similar to the directory clause in
	   named.conf.

       -D
	   Dump zone file in canonical format. This is always enabled for named-compilezone.

       -W mode
	   Specify whether to check for non-terminal wildcards. Non-terminal wildcards are almost always the result of a failure to understand the
	   wildcard matching algorithm (RFC 1034). Possible modes are "warn" (default) and "ignore".

       zonename
	   The domain name of the zone being checked.

       filename
	   The name of the zone file.

RETURN VALUES

       named-checkzone returns an exit status of 1 if errors were detected and 0 otherwise.

SEE ALSO

       named(8), named-checkconf(8), RFC 1035, BIND 9 Administrator Reference Manual.

AUTHOR

       Internet Systems Consortium

COPYRIGHT

       Copyright (C) 2004-2007 Internet Systems Consortium, Inc. ("ISC")
       Copyright (C) 2000-2002 Internet Software Consortium.

BIND9								   June 13, 2000						NAMED-CHECKZONE(8)
All times are GMT -4. The time now is 12:59 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy