Part of Slepp's ProjectsPastebinTURLImagebinFilebin
Feedback -- English French German Japanese
Create Upload Newest Tools Donate

Paste Actions

Download Raw
Embed
Post to Twitter
Remove Paste

Paste Details

Raw format, 10 years 5 months old.

Advertising

Paste Description for bind9 config prob

what's missing?

bind9 config prob
Monday, August 6th, 2007 at 11:28:57pm UTC 

  1. Script started on Mon 06 Aug 2007 04:01:52 PM PDT
  2. [email protected]:/etc/bind# cat named.conf
  3. // This is the primary configuration file for the BIND DNS server named.
  4. //
  5. // Please read /usr/share/doc/bind9/README.Debian.gz for information on the
  6. // structure of BIND configuration files in Debian, *BEFORE* you customize
  7. // this configuration file.
  8. //
  9. // If you are just adding zones, please do that in /etc/bind/named.conf.local
  10.  
  11. include "/etc/bind/named.conf.options";
  12.  
  13. // prime the server with knowledge of the root servers
  14. zone "." {
  15.         type hint;
  16.         file "/etc/bind/db.root";
  17. };
  18.  
  19. // be authoritative for the localhost forward and reverse zones, and for
  20. // broadcast zones as per RFC 1912
  21.  
  22. zone "localhost" {
  23.         type master;
  24.         file "/etc/bind/db.local";
  25. };
  26.  
  27. zone "127.in-addr.arpa" {
  28.         type master;
  29.         file "/etc/bind/db.127";
  30. };
  31.  
  32. zone "0.in-addr.arpa" {
  33.         type master;
  34.         file "/etc/bind/db.0";
  35. };
  36.  
  37. zone "255.in-addr.arpa" {
  38.         type master;
  39.         file "/etc/bind/db.255";
  40. };
  41.  
  42. // zone "com" { type delegation-only; };
  43. // zone "net" { type delegation-only; };
  44.  
  45. // From the release notes:
  46. //  Because many of our users are uncomfortable receiving undelegated answers
  47. //  from root or top level domains, other than a few for whom that behaviour
  48. //  has been trusted and expected for quite some length of time, we have now
  49. //  introduced the "root-delegations-only" feature which applies delegation-only
  50. //  logic to all top level domains, and to the root domain.  An exception list
  51. //  should be specified, including "MUSEUM" and "DE", and any other top level
  52. //  domains from whom undelegated responses are expected and trusted.
  53. // root-delegation-only exclude { "DE"; "MUSEUM"; };
  54.  
  55. include "/etc/bind/named.conf.local";
  56.  
  57. // RNDC
  58.  
  59. key "rndc-key" {
  60.         algorithm hmac-md5;
  61.         secret "S5LkLzwB215/+YR3PhtzFw==";
  62. };
  63.  
  64.  
  65.  
  66. [email protected]:/etc/bind# cat named.conf.local
  67. //
  68. // Do any local configuration here
  69. //
  70.  
  71. #GL.COM definition
  72.  
  73. zone "goodkinlynch.com"{
  74. type master;
  75. file "/etc/bind/zones/goodkinlynch.com.db";
  76. };
  77.  
  78. #GL.COM reverse
  79.  
  80. zone "5.168.192.in-addr.arpa" {
  81. type master;
  82. file "/etc/bind/zones/rev.5.168.192.in-addr.arpa";
  83. };
  84.  
  85. //Consider adding the 1918 zones here, if they are not used in your
  86. // organization
  87. //include "/etc/bind/zones.rfc1918";
  88.  
  89.  
  90.  
  91. [email protected]:/etc/bind# cat named.conf.options
  92. options {
  93.         directory "/var/cache/bind";
  94.  
  95.         // If there is a firewall between you and nameservers you want
  96.         // to talk to, you might need to uncomment the query-source
  97.         // directive below.  Previous versions of BIND always asked
  98.         // questions using port 53, but BIND 8.1 and later use an unprivileged
  99.         // port by default.
  100.  
  101.         // query-source address * port 53;
  102.  
  103.         // If your ISP provided one or more IP addresses for stable
  104.         // nameservers, you probably want to use them as forwarders. 
  105.         // Uncomment the following block, and insert the addresses replacing
  106.         // the all-0's placeholder.
  107.  
  108.         forwarders {
  109.                 66.51.205.100;
  110.         };
  111.  
  112.         auth-nxdomain no;    # conform to RFC1035
  113.         listen-on-v6 { any; };
  114.  
  115.         // By default, name servers should only perform recursive domain
  116.         // lookups for their direct clients.  If recursion is left open
  117.         // to the entire Internet, your name server could be used to
  118.         // perform distributed denial of service attacks against other
  119.         // innocent computers.  For more information on DDoS recursion:
  120.         // http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0987
  121.  
  122.         allow-recursion { localnets; };
  123.  
  124.         // If you have DNS clients on other subnets outside of your
  125.         // server's "localnets", you can explicitly add their networks
  126.         // without opening up your server to the Internet at large:
  127.         // allow-recursion { localnets; 192.168.0.0/24; };
  128.  
  129.         // If your name server is only listening on 127.0.0.1, consider:
  130.         // allow-recursion { 127.0.0.1; };
  131. };
  132.  
  133. [email protected]:/etc/bind/zones# cat goodkinlynch.com.db
  134. $TTL 1D
  135. $ORIGIN goodkinlynch.com
  136.  
  137. @                       IN      SOA     goodkinlynch.com. gladmin.goodkinlynch.com. (
  138.                                                                 2006081401
  139.                                                                 28800
  140.                                                                 3600
  141.                                                                 604800
  142.                                                                 38400
  143. )
  144. @                       IN      NS              apollo.goodkinlynch.com
  145. @                       IN      MX      10      mta.goodkinlynch.com
  146. @                       IN      A               192.168.15.5
  147. apollo                  IN      A               192.168.15.5
  148. athena                  IN      A               192.168.15.10
  149. asterisk1               IN      A               192.168.55.2
  150. GLrtrLAN                IN      A               192.168.5.1
  151. GLrtrWAN                IN      A               10.50.5.1
  152. GL-PDC                  IN      CNAME           apollo
  153. [email protected]:/etc/bind/zones# exit
  154. exit
  155. Script done on Mon 06 Aug 2007 04:04:08 PM PDT
  156.  
  157. [email protected]:/etc/bind# cat /etc/resolv.conf
  158. nameserver 192.168.15.5
  159. nameserver 4.2.2.1
  160.  
  161. [email protected]:/etc/bind# hostname -f
  162. apollo.goodkinlynch.com
  163.  
  164. [email protected]:/etc/bind# hostname
  165. apollo.goodkinlynch.com
  166.  
  167. [email protected]:/etc/bind# hostname -f
  168. apollo.goodkinlynch.com
  169.  
  170. [email protected]:/etc/bind# ping GLrtrLAN
  171. ping: unknown host GLrtrLAN
  172.  
  173. [email protected]:/etc/bind# ping GLrtrLAN.goodkinlynch.com
  174. ping: unknown host GLrtrLAN.goodkinlynch.com
  175.  
  176. [email protected]:/etc/bind# ping asterisk1.goodkinlynch.com
  177. ping: unknown host asterisk1.goodkinlynch.com
  178.  
  179. [email protected]:/etc/bind# ping asterisk1
  180. ping: unknown host asterisk1
  181.  
  182. [email protected]:/etc/bind# ping apollo.goodkinlynch.com
  183. PING apollo.goodkinlynch.com (192.168.15.5) 56(84) bytes of data.
  184. 64 bytes from apollo.goodkinlynch.com (192.168.15.5): icmp_seq=1 ttl=64 time=0.015 ms
  185. 64 bytes from apollo.goodkinlynch.com (192.168.15.5): icmp_seq=2 ttl=64 time=0.007 ms
  186. 64 bytes from apollo.goodkinlynch.com (192.168.15.5): icmp_seq=3 ttl=64 time=0.007 ms
  187. 64 bytes from apollo.goodkinlynch.com (192.168.15.5): icmp_seq=4 ttl=64 time=0.007 ms
  188. 64 bytes from apollo.goodkinlynch.com (192.168.15.5): icmp_seq=5 ttl=64 time=0.007 ms
  189.  
  190. --- apollo.goodkinlynch.com ping statistics ---
  191. 5 packets transmitted, 5 received, 0% packet loss, time 3996ms
  192. rtt min/avg/max/mdev = 0.007/0.008/0.015/0.004 ms
  193.  
  194. [email protected]:/etc/bind# ping apollo
  195. PING apollo (192.168.15.5) 56(84) bytes of data.
  196. 64 bytes from apollo.goodkinlynch.com (192.168.15.5): icmp_seq=1 ttl=64 time=0.018 ms
  197. 64 bytes from apollo.goodkinlynch.com (192.168.15.5): icmp_seq=2 ttl=64 time=0.009 ms
  198.  
  199. --- apollo ping statistics ---
  200. 2 packets transmitted, 2 received, 0% packet loss, time 999ms
  201. rtt min/avg/max/mdev = 0.009/0.013/0.018/0.005 ms

advertising

Update the Post

Either update this post and resubmit it with changes, or make a new post.

You may also comment on this post.

update paste below
details of the post (optional)

Note: Only the paste content is required, though the following information can be useful to others.

Save name / title?

(space separated, optional)



Please note that information posted here will not expire by default. If you do not want it to expire, please set the expiry time above. If it is set to expire, web search engines will not be allowed to index it prior to it expiring. Items that are not marked to expire will be indexable by search engines. Be careful with your passwords. All illegal activities will be reported and any information will be handed over to the authorities, so be good.

comments powered by Disqus
worth-right
worth-right