 |  |
Re: default: info: sysquery: nlookup error on ?
From: David Reddy
Date: Wednesday, October 9, 2002
Time: 8:57:06 am
Seems root hint is missing from named_dump.db. Is it ok to manually add =
this enrty to the file?
>working master: auth01.weblink.ie
yes, ok:
# dig @auth01.weblink.ie meiway.com any +debug
; <<>> DiG 8.3 <<>> @auth01.weblink.ie meiway.com any +debug
; (1 server found)
;; res_nmkquery(QUERY, meiway.com, IN, ANY)
;; res options: init debug recurs defnam dnsrch
;; res_send()
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 45414
;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; QUERY SECTION:
;; meiway.com, type =3D ANY, class =3D IN
;; Querying server (# 1) address =3D 194.149.76.39
;; new DG socket
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 45414
;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 4, ADDITIONAL: 4
;; QUERY SECTION:
;; meiway.com, type =3D ANY, class =3D IN
;; ANSWER SECTION:
meiway.com. 2D IN NS AS1.meiway.com.
meiway.com. 2D IN NS MS1.meiway.com.
meiway.com. 2D IN NS NS1.meiway.com.
meiway.com. 2D IN NS NS2.meiway.com.
;; AUTHORITY SECTION:
meiway.com. 2D IN NS AS1.meiway.com.
meiway.com. 2D IN NS MS1.meiway.com.
meiway.com. 2D IN NS NS1.meiway.com.
meiway.com. 2D IN NS NS2.meiway.com.
;; ADDITIONAL SECTION:
AS1.meiway.com. 2D IN A 212.73.210.81
MS1.meiway.com. 2D IN A 212.73.210.73
NS1.meiway.com. 2D IN A 212.73.210.69
NS2.meiway.com. 2D IN A 212.73.210.72
;; Total query time: 208 msec
;; FROM: mx3.netwood.net to SERVER: auth01.weblink.ie 194.149.76.39
;; WHEN: Wed Oct 9 06:14:41 2002
;; MSG SIZE sent: 28 rcvd: 220
>not working: auth02.weblink.ie
no, it's "SERVFAIL" :
mx3# dig @auth02.weblink.ie meiway.com any +debug
; <<>> DiG 8.3 <<>> @auth02.weblink.ie meiway.com any +debug
; (1 server found)
;; res_nmkquery(QUERY, meiway.com, IN, ANY)
;; res options: init debug recurs defnam dnsrch
;; res_send()
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 34233
;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; QUERY SECTION:
;; meiway.com, type =3D ANY, class =3D IN
;; Querying server (# 1) address =3D 194.149.76.40
;; new DG socket
server rejected query:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 34233
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; QUERY SECTION:
;; meiway.com, type =3D ANY, class =3D IN
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 34233
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; QUERY SECTION:
;; meiway.com, type =3D ANY, class =3D IN
;; Total query time: 163 msec
;; FROM: mx3.netwood.net to SERVER: auth02.weblink.ie 194.149.76.40
;; WHEN: Wed Oct 9 06:14:47 2002
;; MSG SIZE sent: 28 rcvd: 28
You really ought to up to 8.3.3:
mx3# dig @auth02.weblink.ie txt chaos version.bind.
; <<>> DiG 8.3 <<>> @auth02.weblink.ie txt chaos version.bind.
; (1 server found)
;; res options: init recurs defnam dnsrch
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 6
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
;; QUERY SECTION:
;; version.bind, type =3D TXT, class =3D CHAOS
;; ANSWER SECTION:
VERSION.BIND. 0S CHAOS TXT "8.2.3-REL"
stop/start named on 2 and see what the log reports at startup. There =
must=20
be some clue there. If not
ndc trace
ndc reload
do a query that fails.
and see what named.run log says.
Also, our standard security advice in M&M courses is to restrict =
recursion=20
and zone transfers. It appears both of your NS's allow unrestricted=20
recursion, and I just transferred the zone weblink.ie from 1.
Len
Messages In This Thread:
Return to Digital Point Solutions' Home Page
| home | |
| products | |
| services | |
| support | |
| email lists |
| optigold isp | |
| optigold isp news | |
| home inspection | |
| inspectrix | |
| java companion | |
| oracle | |
| quickdns pro | |
| search engine | |
| veterinary |
| tips | |
| employees | |
| free tools | |
| portfolio | |
| jobs | |
| contact |
888/4-DPOINTSupport:
858/452-3696