[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] DNS problem - please help! {Scanned}

Subject: Re: [cobalt-users] DNS problem - please help! {Scanned}
From: "SW" <wppiphoto@xxxxxxxx>
Date: Wed Dec 31 07:11:02 2003
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

The only thing I can see in /var/log/messages for named is the following:

Dec 31 08:07:07 ns1 named[4862]: denied query from [199.165.157.121].32839
for "wppi.com" IN
Dec 31 08:07:43 ns1 named[4862]: denied query from [205.189.41.5].1025 for
"mcbc-dc.org" IN
Dec 31 08:07:45 ns1 named[4862]: denied query from [192.139.81.6].1024 for
"mcbc-dc.org" IN
Dec 31 08:12:44 ns1 named[4862]: denied query from [205.189.41.25].33410 for
"mcbc-dc.org" IN
Dec 31 08:13:30 ns1 named[4862]: denied query from [64.241.242.56].51720 for
"ns1.wppi.net" IN
Dec 31 08:13:30 ns1 named[4862]: denied query from [64.241.242.56].51720 for
"ns2.wppi.net" IN
Dec 31 08:13:30 ns1 named[4862]: denied query from [64.241.242.56].51720 for
"ns1.wppi.net" IN
Dec 31 08:13:30 ns1 named[4862]: denied query from [64.241.242.56].51720 for
"ns2.wppi.net" IN
Dec 31 08:13:37 ns1 named[4862]: denied query from [64.241.242.55].57652 for
"www.wppi.com" IN
Dec 31 08:20:29 ns1 named[4862]: denied query from [209.137.160.2].44144 for
"wppi.com" IN
Dec 31 08:20:29 ns1 named[4862]: denied query from [209.137.160.2].51651 for
"mail.wppi.com" IN
Dec 31 08:20:38 ns1 named[4862]: denied query from [209.137.160.3].12782 for
"wppi.com" IN
Dec 31 08:33:56 ns1 named[4862]: denied query from [207.67.140.58].1263 for
"wppi.com" IN
Dec 31 08:41:34 ns1 named[4862]: denied query from [209.124.86.130].60561
for "mail.wppi.com" IN
Dec 31 08:41:44 ns1 named[4862]: denied query from [209.124.86.130].15340
for "mail.wppi.com" IN
Dec 31 08:41:44 ns1 named[4862]: denied query from [209.124.86.130].46902
for "mail.wppi.com" IN
Dec 31 08:44:14 ns1 named[4862]: denied query from [80.0.70.57].55229 for
"mcbc-dc.org" IN
Dec 31 08:55:58 ns1 named[4862]: denied query from [207.67.140.58].1263 for
"wppi.com" IN
Dec 31 08:57:46 ns1 named[4862]: denied query from [209.154.198.82].1369 for
"ns2.wppi.net" IN
Dec 31 08:58:56 ns1 named[4862]: denied query from [209.154.198.82].1369 for
"ns1.wppi.net" IN
--------------
The denied query above are due to adding the allow-query directive in
/etc/named.conf:

options {
        directory "/etc/named";
        allow-recursion { xxx.xxx.xxx.xx/27; localhost; };
        allow-query { xxx.xxx.xxx.xx/27; localhost; };
        version "WPPi Name Server - NA";
        allow-transfer { xxx.xxx.xxx.xx; };
-----------
xxx.xxx.xxx.xx a bove is our ip block
----------
We added the allow-query option after running a security check which
recommened we add 'allow-recursion' and 'allow-query' to bind to prevent
various vulabilities. But I thought these changes will still allow users to
get dns info for mail and httpd info, etc.

Thanks,

SW

----- Original Message ----- 
From: "phoenix hawk" <phawk@xxxxxxxxxxxxxxx>
To: <cobalt-users@xxxxxxxxxxxxxxx>
Sent: Wednesday, December 31, 2003 9:43 AM
Subject: Re: [cobalt-users] DNS problem - please help! {Scanned}


Hi,

SW wrote:
> DNS is running on the box it just takes it a long time to startup when the
> box is rebooted (the LCD sits for about 10 - 15 minutes on the 'Starting
DNS
> Server'). Here is what I get when I do the following:
>
> # /etc/rc.d/init.d/named status
> named 8.2.7-REL Sun Aug  3 23:05:18 PDT 2003
>
admin@xxxxxxxxxxxxxxxxxxxxxxxxxx:/home/redhat/BUILD/bind-8.2.7/src/bin/named
> config (/etc/named.conf) last loaded at age: Tue Dec 30 14:39:23 2003
> number of zones allocated: 64
> debug level: 0
> xfers running: 0
> xfers deferred: 0
> soa queries in progress: 0
> query logging is OFF
> server is up and running
> ------------
> What else can I take a look to see why it's not working? It works for
other
> domains but not all that are on this box.
>

64 zones isn't a lot to initialize, so it shouldn't be that.

go through the /var/log/messages file and see what you have there that
is related to "named" or any other weird messages.

regards.

_____________________________________
cobalt-users mailing list
cobalt-users@xxxxxxxxxxxxxxx
To subscribe/unsubscribe, or to SEARCH THE ARCHIVES, go to:
http://list.cobalt.com/mailman/listinfo/cobalt-users

-------------------------------------------------
        WPPi.com        |        WPPi.Net
-------------------------------------------------
  http://www.wppi.com   |  http://www.wppi.net
-------------------------------------------------
WPPi.com & WPPi.Net MailScanner Signature
This message has been scanned for viruses
and dangerous content by WPPi MailScanner,
and has been found to be clean.
-------------------------------------------------




-------------------------------------------------
        WPPi.com        |        WPPi.Net
-------------------------------------------------
  http://www.wppi.com   |  http://www.wppi.net
-------------------------------------------------
WPPi.com & WPPi.Net MailScanner Signature
This message has been scanned for viruses
and dangerous content by WPPi MailScanner,
and has been found to be clean.
-------------------------------------------------

Follow-Ups:
- Re: [cobalt-users] DNS problem - please help! {Scanned}
  - From: Larry Smith
- Re: [cobalt-users] DNS problem - please help! {Scanned}
  - From: phoenix hawk

References:
- [cobalt-users] DNS problem - please help! {Scanned}
  - From: SW
- Re: [cobalt-users] DNS problem - please help! {Scanned}
  - From: phoenix hawk
- Re: [cobalt-users] DNS problem - please help! {Scanned}
  - From: SW
- Re: [cobalt-users] DNS problem - please help! {Scanned}
  - From: phoenix hawk

Prev by Date: Re: [cobalt-users] DNS problem - please help! {Scanned}
Next by Date: [cobalt-users] Re: DNS problem - please help! {Scanned}
Previous by thread: Re: [cobalt-users] DNS problem - please help! {Scanned}
Next by thread: Re: [cobalt-users] DNS problem - please help! {Scanned}

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index