Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Bind named query
Operating Systems Linux Red Hat Bind named query Post 302633289 by admin_xor on Tuesday 1st of May 2012 03:59:56 PM
Old 05-01-2012
Bind named query
Hello!

I have a DNS server running named on a RHEL 6.2 for very small development servers/clients network. I see the below logs on /var/named/data/named.run

Code:
error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 198.41.0.4#53
error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 193.0.14.129#53
error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 198.41.0.4#53
error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 2001:dc3::35#53
error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 198.41.0.4#53
error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 2001:dc3::35#53
error (network unreachable) resolving 'I.ROOT-SERVERS.NET/AAAA/IN': 192.58.128.30#53
error (network unreachable) resolving 'I.ROOT-SERVERS.NET/AAAA/IN': 2001:dc3::35#53
error (network unreachable) resolving 'L.ROOT-SERVERS.NET/AAAA/IN': 2001:503:c27::2:30#53
error (network unreachable) resolving 'L.ROOT-SERVERS.NET/AAAA/IN': 2001:500:1::803f:235#53

I have never configured any forwarding on the DNS server. Then why is it trying to look up on external DNS servers -- this is what I am trying to understand.

Here's how my named.conf looks like:
Code:
options {
        listen-on port 53 { 127.0.0.1; 10.0.1.102; };
        listen-on-v6 port 53 { ::1; };
        directory       "/var/named";
        dump-file       "/var/named/data/cache_dump.db";
        statistics-file "/var/named/data/named_stats.txt";
        memstatistics-file "/var/named/data/named_mem_stats.txt";
        allow-query     { localhost; any; };
        recursion yes;
        dnssec-enable yes;
        dnssec-validation yes;
        dnssec-lookaside auto;
        /* Path to ISC DLV key */
        bindkeys-file "/etc/named.iscdlv.key";
};
logging {
        channel default_debug {
                file "data/named.run";
                severity dynamic;
        };
};
zone "." IN {
        type hint;
        file "named.ca";
};
zone "vmnet.com" IN {
        type master;
        file "vmnet.com.zone";
};
zone "1.0.10.in-addr.arpa" IN {
        type master;
        file "vmnet.com.rev.zone";
};
include "/etc/named.rfc1912.zones";
# Use with the following in named.conf, adjusting the allow list as needed:
key "rndc-key" {
       algorithm hmac-md5;
       secret "jMR4mMP5RfO1WE5N56Kq6A==";
};
controls {
       inet 127.0.0.1 port 953
               allow { 127.0.0.1; } keys { "rndc-key"; };
};

This server is isolated from outside world and serves a small group of development machines. Can anyone tell me where I need to look at?

I figured the below entry has something to do with it. Root hint?
Code:
zone "." IN {         type hint;         file "named.ca"; };

How do I avoid it?
 

9 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

named pipes

Hi I am having trouble with a script to export individual schemas to tape from an oracle database. Basicaly I need to export each shema through a pipe with compression and store each shema name in a file with the relevant tape marker. (4 Replies)
Discussion started by: truma1
4 Replies

2. UNIX for Dummies Questions & Answers

named

Dear All , Kindly i would like to start the named whenever the system reboot , currently i start it manually . for more info. i have both named , one from SUN , and other one i installed it from internet , now i want the one from SUN to start automatically when rebooting . its path is :... (5 Replies)
Discussion started by: tamemi
5 Replies

3. UNIX for Dummies Questions & Answers

Named PIPE

Gurus, I've a File Transaction Server, which communicates with other servers and performs some processing.It uses many Named PIPE's. By mistake i copied a named PIPE into a text file. I heard that PIPE files shouldn't be copied.Isn't it? Since it's a production box, i'm afraid on... (2 Replies)
Discussion started by: Tamil
2 Replies

4. UNIX for Dummies Questions & Answers

Named Pipes

hi, i am working on a script for oracle export, m using a parameter file... i want to compress the dump file that is generated.. in my script following is the code i have written. i am not able to generata .gz file mknod /tmp/exp_tesd1_pipe p gzip -cNf... (4 Replies)
Discussion started by: saharookiedba
4 Replies

5. Shell Programming and Scripting

add the output of a query to a variable to be used in another query

I would like to use the result of a query in another query. How do I redirect/add the output to another variable? $result = odbc_exec($connect, $query); while ($row = odbc_fetch_array($result)) { echo $row,"\n"; } odbc_close($connect); ?> This will output hostnames: host1... (0 Replies)
Discussion started by: hazno
0 Replies

6. Solaris

Solaris 8 bind 9 named question

Hi, I can't rememeber what passwd is set for the "named" user in bind. Is there possibly a default one or anyway to find it ? I'm worried about changing it and causing other issues, if I did change it what other files would I need to edit ? :( Thanks (1 Reply)
Discussion started by: sysop400
1 Replies

7. Shell Programming and Scripting

Query Oracle tables and return values to shell script that calls the query

Hi, I have a requirement as below which needs to be done viz UNIX shell script (1) I have to connect to an Oracle database (2) Exexute "SELECT field_status from table 1" query on one of the tables. (3) Based on the result that I get from point (2), I have to update another table in the... (6 Replies)
Discussion started by: balaeswari
6 Replies

8. Solaris

BIND 9 ---> no /etc/named.conf file after installation

Hi I installed BIND 9 from dvd image of my Solaris 10 (SUNWbind, SUNWbindr) and when I try to start it(svcadm enable network/dns/server), it says there is no /etc/named.conf file. Why is it so ? Should not this file be created during installation phase ? Do I have to create it manually ?... (0 Replies)
Discussion started by: presul
0 Replies

9. Shell Programming and Scripting

Shell Script to execute Oracle query taking input from a file to form query

Hi, I need to query Oracle database for 100 users. I have these 100 users in a file. I need a shell script which would read this User file (one user at a time) & query database. For instance: USER CITY --------- ---------- A CITY_A B CITY_B C ... (2 Replies)
Discussion started by: DevendraG
2 Replies

LEARN ABOUT OSF1

named.conf

named.conf(4)						     Kernel Interfaces Manual						     named.conf(4)

NAME

       named.conf - named configuration file

SYNOPSIS

       /etc/named.conf

DESCRIPTION

       This file is the default configuration (or boot) file for the named server.  This configuration file replaces the named.boot file.

       The named daemon reads the start-up file when the named daemon starts and when receiving signal SIGHUP.

       The statements in the named.conf file tell the named daemon what type of server it is, which domains (or zones of authority) it has author-
       ity over, and where to get the data for initially setting up its database.

       The name server first needs to know the root name server, which is the authority server for the network.  The root name	server	is  estab-
       lished in the named.conf file by specifying the root server filename (named.ca) as the cache for this name server.

       The  named.conf file consists of a sequence of statements terminated by a semi-colon (;) and comments.  Comments can be specified by any of
       the following: A number sign (#) The C-style /* and */ characters.  The C++-style // characters

       The types of named.conf statements are as follows: Defines a named IP address matching list for access control and other uses.  Includes  a
       file.   Specifies key information for use in authentication and authorization.  Specifies the information that the server logs and the des-
       tination of the log messages.  Controls global server configuration options and sets defaults for other statements.  Sets certain  configu-
       ration options on a per-server basis.  Defines a zone.

       The  logging  and  options  statements  can occur only one time in a configuration file.  Many statements contain a block of substatements,
       which are also terminated with a semicolon.  See the BIND Configuration Guide in the Tru64 UNIX HTML Documentation Library  for	additional
       information about the description and format of each statement.

       For examples of various ways of using the named.conf file, see the EXAMPLES section.

       See named(8) for additional named.conf file directives.

       Note  that  the named daemon does not provide other hosts with the information contained in a cache file.  Cache files are usually used for
       listing the name servers for domains higher than the local domain.

       These data files can have any name.  However, for convenience in maintaining the named database, they are generally given names in the fol-
       lowing form: /etc/named.extension.  The general format of named data files is described in /etc/named.*.

EXAMPLES

       The  following  examples  show  the  various ways to use the named start-up file.  The /etc/named.conf file for venus, a master name server
       (that which used to be called a primary name server), contains these entries: // Configuration (boot) file for master name server  //  zone
       "." {
	       type hint;
	       file "/etc/named.ca"; };

       zone "abc.aus.osf.com" {
	       type master;
	       file "/etc/named.abcdata"; };

       zone "xyz.aus.osf.com" {
	       type master;
	       file "/etc/named.xyzdata"; };

       zone "201.9.192.in-addr.arpa" {
	       type master;
	       file "/etc/named.abcrev"; };

       zone "100.114.128.in-addr.arpa" {
	       type master;
	       file "/etc/named.xyzrev"; };

       zone "0.0.127.in-addr.arpa" {
	       type master;
	       file "/etc/named.local"; };

	      In  this	example,  the master name server is venus and the Internet address is 192.9.201.1.  The /etc/named.conf file for kronos, a
	      slave name server (that which used to be called a secondary name server), contains these entries: // Configuration (boot)  file  for
	      slave name server // zone "." {
		      type hint;
		      file "/etc/named.ca"; };

	      zone "abc.aus.osf.com" {
		      type slave;
		      file "192.9.201.2";
		      masters {
			      192.9.201.1;
		      }; };

	      zone "xyz.aus.osf.com" {
		      type slave;
		      file "192.9.201.2";
		      masters {
			      192.9.201.1;
		      }; };

	      zone "201.9.192.in-addr.arpa" {
		      type slave;
		      file "192.9.201.2";
		      masters {
			      192.9.201.1;
		      }; };

	      zone "100.114.128.in-addr.arpa" {
		      type slave;
		      file "192.9.201.2";
		      masters {
			      192.9.201.1;
		      }; };

	      zone "0.0.127.in-addr.arpa" {
		      type master;
		      file "/etc/named.local"; };

	      In  this	example  the  slave  name  server is kronos and the Internet address is 192.9.201.2.  The /etc/named.conf file for hera, a
	      caching-only name server contains these entries: // Configuration (boot) file for caching-only server // zone "." {      type  hint;
		   file "/etc/named.ca"; };

	      zone  "0.0.127.in-addr.arpa" {	  type master;	    file "/etc/named.local"; }; The /etc/named.conf file for titan, an IPv4 master
	      name server that accepts secure dynamic updates from new clients, contains these entries: It is recommended that you do  not  enable
	      authentication for IPv6 zones that are dynamically updated.  See bind_manual_setup(7) for more information.  // Configuration (boot)
	      file for master name server // include "/etc/namedb/named.keys";

	      zone "." {
		      type hint;
		      file "/etc/named.ca"; };

	      zone "dyn.aus.osf.com" {
		      type master;
		      file "/etc/named.dyndata";      allow-update {	       dynnet-titan_update }; };

	      zone "201.9.192.in-addr.arpa" {
		      type master;
		      file "/etc/named.dynrev";      allow-update {	      dynnet-titan_update }; };

	      zone "0.0.127.in-addr.arpa" {
		      type master;
		      file "/etc/named.local"; };

	      The allow-update substatement in the zone statements specifies that dynamic updates to the master DNS database are  successful  only
	      if they are signed with the dynnet-titan_update key.

	      The  include statement calls named.keys, a file that is read/writable only by superuser and contains the following key configuration
	      statement: key dynnet-titan_update {
		  algorithm hmac-md5;
		  secret "YYnTXprDocI5qizxfT9/A8f9Ec+eq0Oo1DGXvks/Q27kTMMYKw==" };

	      You generate a private key for the secret substatement by using the dnskeygen command.

	      See the Network Administration guide or bind_manual_setup(7) for more information about configuring secure dynamic updates.

RELATED INFORMATION

       Commands: named(8), dnskeygen(1).

       Files: named.star(4).

       Networking: bind_manual_setup(7).

       Network Administration delim off

																     named.conf(4)
All times are GMT -4. The time now is 07:20 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy