[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] DNS problem...please help? {Scanned}
- Subject: Re: [cobalt-users] DNS problem...please help? {Scanned}
- From: Jeff Lasman <blists@xxxxxxxxxxxxx>
- Date: Fri Mar 26 07:29:05 2004
- Organization: nobaloney.net
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
On Tuesday 23 March 2004 09:07 pm, SW wrote:
> I have clamav antivirus installed but a few days ago, it stopped
> getting updated because I can't seem to resolve 'database.clamav.net'
> and I'm not sure what the problem is. It seems I can resolve other
> sites, including clamav.net but not the database.clamav.net. Can
> someone help? I've tried this on a Raq4 and 2 Raq550's and they all
> do the same thing.
I'm just reading this thread now. Did you finally get it resolved, or
not?
If not, look at your firewall to see if you're allowing traffic on port
#53 for tcp, not just for udp.
This message:
<snip>
$ dig database.clamav.net
;; Truncated, retrying in TCP mode.
</snip>
is normal for a domain with so many A records; for some reason you're
not getting it.
As a last-ditch test turn off your firewall for a moment, then try it.
(Be sure to remember to turn your firewall right back on.)
You also wrote:
> Thanks for the info. I have setup my ISP (Covad) as primary &
> secondary DNS and when I run nslookup, I still can't seem to reach
> database.clamav.net. Is it possible there is something my ISP is
> blocking which doesn't allow me to get to database.clamav.net either
> using my own dns servers or using their dns servers?
By primary and secondary DNS I presume you mean in the network setup
page for your RaQ. Those servers (listed by IP#) should be the ones
your connectivity ISP gives you; in your case Covad is probably the
ones to use.
You can use your own, but like you, I don't; I prefer to not allow my
nameservers to be used recursively.
> Also, is there a way I can setup my Raq4 & Raq550 primary and
> secondary DNS servers to connect to my IPS DNS servers to query for
> non-attoratative domains instead of going to the root domains?
Not through the gui; it's called a "forwarding" nameserver, and
generally it would only be used in very special circumstances (for
example, if your local DNS server were on a private network in private
address space).
> Here is what I get w/ nslookup:
>
> $ nslookup database.clamav.net
> Server: ns1.wppi.net
> Address: 68.166.149.45
>
> *** ns1.wppi.net can't find database.clamav.net: Non-existent
> host/domain
>
> But, I can get to clamav.net:
>
> $ nslookup clamav.net
> Server: ns1.wppi.net
> Address: 68.166.149.45
>
> Non-authoritative answer:
> Name: clamav.net
> Address: 66.35.250.210
I can't test your nameserver; it appears to be firewalled as I can't
test it at all; I get a "connection refused" error.
However, if even your own DNS server, when set to allow recursive
lookups, can't find it, then it's probably a problem in your firewall.
I tried the Covad nameserver myself:
<snip>
[jeff@of1 jeff]$ dig @64.105.190.74 clamav.net
; <<>> DiG 9.2.1 <<>> @64.105.190.74 clamav.net
;; global options: printcmd
;; connection timed out; no servers could be reached
[jeff@of1 jeff]$
</snip>
but can't reach it; most likely because they've got it firwalled so it
can't be used from outside their network.
Try looking at your own firwall; otherwise try a recursive nameserver
run by someone on this list who _can_ get it resolved.
Jeff
--
Jeff Lasman, nobaloney.net, P. O. Box 52672, Riverside, CA 92517 US
Professional Internet Services & Support / Consulting / Colocation
Our blists address used on lists is for list email only
Phone +1 909 324-9706, or see: "http://www.nobaloney.net/contactus.html";