I am having a bit of trouble getting my CENTOS 6.5 DNS server to work correctly in our testlab environment. Lab network is 10.8.0.0/24 in which we all access from 10.7.0.0.0/24 && 10.0.0.0/24. Here are my configs:
Code:
options {
listen-on port 53 { 127.0.0.1; 10.8.0.19;};
#listen-on-v6 port 53 { ::1; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
// forwarders { 10.8.0.150; };
memstatistics-file "/var/named/data/named_mem_stats.txt";
allow-query { localhost; 10.0.0.0/24; 10.8.0.0/24; 10.7.0.0/24; };
allow-transfer { localhost; 10.0.0.0/24; };
recursion yes;
dnssec-enable yes;
dnssec-validation yes;
dnssec-lookaside auto;
/* Path to ISC DLV key */
bindkeys-file "/etc/named.iscdlv.key";
managed-keys-directory "/var/named/dynamic";
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};
zone "." IN {
type hint;
file "named.ca";
};
zone "labtest.local" IN {
type master;
file "labtest.local.zone";
allow-update { none; };
};
zone "0.8.10.in-addr.arpa" IN {
type master;
file "0.8.10.in-addr.arpa";
allow-update { none; };
};
include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";
forward look stuff:
Code:
$ORIGIN labtest.local.
$TTL 1d
@ IN SOA test-nameserver.labtest.local. root.labtest.local. (
12 ; se = serial number
3h ; ref = refresh
15m ; ret = update retry
3w ; ex = expiry
3h ; min = minimum
)
@ IN NS test-nameserver.labtest.local.
@ IN A 10.8.0.19
test-nameserver IN A 10.8.0.19
dojo1 IN A 10.8.0.186
redhat.5.5.32Bit IN A 10.8.0.149
redhat.6.2.64Bit IN A 10.8.0.147
mandriva.9.2.32Bit IN A 10.8.0.153
RELEASE-WIN2003 IN A 10.8.0.17
reverse stuff
Code:
$TTL 1d
@ IN SOA test-nameserver.labtest.local. root.labtest.local. (
2013112100 ; se = serial number
3h ; ref = refresh
15m ; ret = update retry
3w ; ex = expiry
3h ; min = minimum
)
@ IN NS test-nameserver.labtest.local.
@ IN A 10.8.0.19
@ IN PTR labtest.local
test-nameserver IN A 10.8.0.19
19 IN PTR test-nameserver.labtest.local.
186 IN PTR dojo1.labtest.local.
149 IN PTR redhat.5.5.32Bit.labtest.local.
147 IN PTR redhat.6.2.64Bit.labtest.local.
153 IN PTR mandriva.9.2.32Bit.labtest.local.
17 IN PTR RELEASE-WIN2003.labtest.local.
When running my tests against it, I can ping a target but oddly digs response shows that the DNS server is not anwsering:
in /etc/resolv.conf, you can omit the domain part and use:
Code:
dig @test-nameserver.labtest.local dojo1 +search
Also,it turned out that it is was the way I was using nslookup. nslookup responds correctly with the IP of the domain. Hosts listing (ls option) is not implemented anymore for security reasons.
If you want to list all hosts, you can do domain transfer on screen:
Code:
nslookup -q=axfr abtest.local
---------- Post updated at 04:49 PM ---------- Previous update was at 04:48 PM ----------
you beat me to the punch.
---------- Post updated at 05:01 PM ---------- Previous update was at 04:49 PM ----------
Actually I ran the test on my laptop and it doesnt work
dig @test-nameserver.labtest.local dojo1.labtest.local +search
dig: couldn't get address for 'test-nameserver.labtest.local': not found
but if I do it via the ip address:
Code:
dig @10.8.0.19 dojo1.labtest.local
; <<>> DiG 9.9.5-3-Ubuntu <<>> @10.8.0.19 dojo1.labtest.local
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 54507
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 2
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;dojo1.labtest.local. IN A
;; ANSWER SECTION:
dojo1.labtest.local. 86400 IN A 10.8.0.186
;; AUTHORITY SECTION:
testlabtest.local. 86400 IN NS test-nameserver.labtest.local.
;; ADDITIONAL SECTION:
test-nameserver.labtest.local. 86400 IN A 10.8.0.19
;; Query time: 3 msec
;; SERVER: 10.8.0.19#53(10.8.0.19)
;; WHEN: Thu May 29 16:59:30 EDT 2014
;; MSG SIZE rcvd: 112
---------- Post updated at 05:12 PM ---------- Previous update was at 05:01 PM ----------
Hello,
Did anyone setup a CentOS7 as a gateway (with squid transparent proxy).
I am trying to do so but not able to setup.
I setup squid , iptables (using it instead of firewalld) and all the necessary IPtables rules but nothing work.
It work previously but access.log of squid not getting... (4 Replies)
hi
I installed Openvas we have the following problem
internet Connection is Ok
Even Reinstall the problem is not resolved
Openvas Setup, Version: 0.5
Step 1: Update NVT's and SCAP data
Please note this step could take some time.
Once completed, NVT's and SCAP data will be updated... (12 Replies)
Hi, how do I set the DNS in centos.
I don't mean of creating DNS server, but setting what should be the DNS server of centos.
I mean to what server he should go in order to translate url into ip (6 Replies)
I am trying to setup DNS server in Solaris 10.
I have two blade 1500 system and want to setup two name server
I would like to start setting up DNS. appreciate your help. (1 Reply)
Hi all.
I need to configure a secondary dns server to get the zones that are in the primary server.
How can I do this? It's possible to make to sync automatically?
What configuration I ahve to do? And in which files?
Thanks in advance.
If anyone could give me examples or a tutorial, that... (4 Replies)
Using Redhat Linux Enterprise AS 4
can someone teach me how to setup a dns server for my webserver?
i've registered a domainname at mydomain.com
but when i type in the domain i register i cannot enter to my webserver.
someone told me that it is related with the DNS setting on my server.
i've... (2 Replies)