From: Alan McKinnon <alan.mckinnon@gmail.com>
To: gentoo-user@lists.gentoo.org
Subject: Re: [gentoo-user] Re: SERVFAIL with bind; problems in named.conf?
Date: Wed, 5 Oct 2011 15:45:49 +0200 [thread overview]
Message-ID: <20111005154549.42eef735@rohan.example.com> (raw)
In-Reply-To: <CAFnZeoSLF01Pw1SgwR-vKwF2R-jQPR2XFkYvcUpHfhLratoieQ@mail.gmail.com>
On Wed, 5 Oct 2011 09:38:01 -0400
Andrey Moshbear <andrey.vul@gmail.com> wrote:
> No clue, as logging isn't yet enabled. However, chechzone says that
> all is fine.
Well that's your primary error right there. How can you run a daemon
that isn't logging and consider that even halfway proper? Get some real
logs from when bind loads the zone and I'll bet it'll tell you right
away what the problem is
checkzone != a full bind
>
> On 2011-10-05, Alan McKinnon <alan.mckinnon@gmail.com> wrote:
> > On Wed, 5 Oct 2011 05:06:27 -0400
> > Andrey Moshbear <andrey.vul@gmail.com> wrote:
> >
> >> For bind, I have the following as named.conf:
> >>
> >> acl "xfer" { none; };
> >>
> >> acl "trusted" { 127.0.0.0/8; ::1/128; };
> >>
> >> options {
> >> directory "/var/bind";
> >> pid-file "/var/run/named/named.pid";
> >>
> >> listen-on-v6 { none; };
> >> listen-on port 53 { 127.0.0.1; 192.168.1.0/10;
> >> EXTERNAL_IP; }; };
> >>
> >> include "/etc/bind/rndc.key";
> >> controls { inet 127.0.0.1 port 953 allow { 127.0.0.1/32; ::1/128; }
> >> keys { "rndc-key"; }; };
> >>
> >> zone "." in { type hint; file "/var/bind/root.cache"; };
> >>
> >> zone "localhost" IN { type master; file "pri/localhost.zone";
> >> notify no; };
> >>
> >> zone "127.in-addr.arpa" IN { type master; file "pri/127.zone";
> >> notify no; };
> >>
> >> zone "moshbear.net" IN { type master; file
> >> "/var/bind/pri/moshbear.net.zone"; allow-query { any; };
> >> allow-transfer { xfer; }; };
> >> // end of dump
> >>
> >> The zone file does not have any errors.
> >>
> >> Any reasons as to why "dig @127.0.0.1 moshbear.net" returns
> >> SERVFAIL?
> >
> > What result does bind write to log files when it loads that zone?
> >
> > SERVFAIL usually indicates something wrong with the zone and bind
> > refuses to load it.
> >
> >
> >
> >
> >>
> >> --
> >> 001100 Andrey "m05hbear" Vul
> >> 010010
> >> 100001 andrey dot vul at gmail
> >> 110011
> >>
> >
> >
> >
> > --
> > Alan McKinnnon
> > alan.mckinnon@gmail.com
> >
> >
>
--
Alan McKinnnon
alan.mckinnon@gmail.com
next prev parent reply other threads:[~2011-10-05 13:47 UTC|newest]
Thread overview: 7+ messages / expand[flat|nested] mbox.gz Atom feed top
2011-10-05 9:06 [gentoo-user] SERVFAIL with bind; problems in named.conf? Andrey Moshbear
2011-10-05 13:27 ` Alan McKinnon
2011-10-05 13:38 ` [gentoo-user] " Andrey Moshbear
2011-10-05 13:45 ` Alan McKinnon [this message]
2011-10-05 17:29 ` Andrey Moshbear
2011-10-05 19:27 ` Alan McKinnon
2011-10-05 22:25 ` Andrey Moshbear
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20111005154549.42eef735@rohan.example.com \
--to=alan.mckinnon@gmail.com \
--cc=gentoo-user@lists.gentoo.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox