Page 2 - DNS Newbie Help!

Hi mindsquad,

Why you have removed your configurations files from URL "www.mindsquad.com/zone". I am also trying to setup my own DNS on my own server from where I want to run apache and virtualhosts.
I tried to locate mailing list, this forum for DNS help but this particular discussion is the best DNS support I have found given by SilentRage
I request you to activate that URL www.mindsquad.com/zone. Please activate the same

I will configure all files as per your setup and then post here whether I get success or not.

Thanks.

Hi,
I am trying to create files for DNS. Please guide me how I can get IP address of my registred domain "www.networkshastrihall.com". Registrar is www.onlinnic.com. Domain is already registered. ns1 and ns1 are also registered.
Thanks for support.

For an example configuration set go here:
http://www.dollardns.net/bind/

This is a list of the servers who are currently registered to host your domain:
http://www.dollardns.net/cgi-bin/dn...&lr=1&submit=DS

ns1.dns-diy.com (211.152.33.116)
ns2.dns-diy.com (210.77.151.100, 218.107.207.120)

211.152.33.116 has nothing for the networkshastrihall.com zone
210.77.151.100 times out and is possibly offline
218.107.207.129 has nothing for the networkshastrihall.com zone

Hi SilentRage,
Thanks for giving referece files and example files . Great help.
As per your advice and example files I have created all files.
I am attaching all files for your reference.

Detail of my server
Linux 8.0
BIND 9
Linux system acting as router.

Three ethernet cards with IPs
eth0 : 202.183.69.130 (INTERNET IP)
eth1 : 192.168.0.1 (LAN IP)
eth2 : 202.63.167.192


For trial I will be installing DNS Apache on same system.

In addition to all these files, Anything to be done in /etc/hosts and /etc/resolv.conf file?

Following are output of commands :

#################
[root@shastrihallweb root]# dig ns1.networkshastrihall.com

; <<>> DiG 9.2.1 <<>> ns1.networkshastrihall.com
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 6324
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 1

;; QUESTION SECTION:
;ns1.networkshastrihall.com. IN A

;; ANSWER SECTION:
ns1.networkshastrihall.com. 85745 IN A 202.63.167.192

;; AUTHORITY SECTION:
networkshastrihall.com. 85758 IN NS ns1.networkshastrihall.com.
networkshastrihall.com. 85758 IN NS ns2.networkshastrihall.com.

;; ADDITIONAL SECTION:
ns2.networkshastrihall.com. 85758 IN A 202.63.167.192

;; Query time: 289 msec
;; SERVER: 202.63.164.17#53(202.63.164.17)
;; WHEN: Mon Dec 1 12:41:16 2003
;; MSG SIZE rcvd: 108

###############

AND

#################
[root@shastrihallweb root]# dig 202.63.164.192

; <<>> DiG 9.2.1 <<>> 202.63.164.192
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42199
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;202.63.164.192. IN A

;; AUTHORITY SECTION:
. 10800 IN SOA A.ROOT-SERVERS.NET. NSTLD.VERISIGN-GRS.COM. 2003113001 1800 900 604800 86400

;; Query time: 413 msec
;; SERVER: 202.63.164.17#53(202.63.164.17)
;; WHEN: Mon Dec 1 12:42:06 2003
;; MSG SIZE rcvd: 107
###########################

file : /etc/namd.conf

#########
// generated by named-bootconf.pl

options {
directory "/var/named";

recursion yes;

forward first;
forwarders {
202.63.164.17;
202.63.164.18;

};

/*
* If there is a firewall between you and nameservers you want
* to talk to, you might need to uncomment the query-source
* directive below. Previous versions of BIND always asked
* questions using port 53, but BIND 8.1 uses an unprivileged
* port by default.
*/
query-source address * port 53;

notify no;

};

//
// a caching only nameserver config
//
controls {
inet 127.0.0.1 allow { localhost; } keys { rndckey; };
};
zone "." IN {
type hint;
file "named.ca";
};

/*
zone "localhost" IN {
type master;
file "localhost.zone";
};
*/
zone "networkshastrihall.com" IN {
type master;
file "networkshastrihall.com.zone";
};

zone "0.0.127.in-addr.arpa" {
type master;
file "0.0.127.IN-ADDR.ARPA.zone";
};

include "/etc/rndc.key";

#################

file : /var/named/0.0.127.IN-ADDR.ARPA.zone

########

$ORIGIN 0.0.127.IN-ADDR.ARPA.
$TTL 900

@ IN SOA ns1.networkshastrihall.com. webmaster.networkshastrihall.com. (
1 ; Serial
21600 ; Refresh
1800 ; Retry
604800 ; Expire
900 ) ; Negative Cache TTL

NS ns1.networkshastrihall.com.
NS ns2.networkshastrihall.com.

1 PTR www.networkshastrihall.com.
2 PTR ns1.networkshastrihall.com.
3 PTR ns2.networkshastrihall.com.
4 PTR mail.networkshastrihall.com.

#########

file : /etc/named/named.ca

####################

; This file holds the information on root name servers needed to
; initialize cache of Internet domain name servers
; (e.g. reference this file in the "cache . <file>"
; configuration file of BIND domain name servers).
;
; This file is made available by InterNIC registration services
; under anonymous FTP as
; file /domain/named.root
; on server FTP.RS.INTERNIC.NET
; -OR- under Gopher at RS.INTERNIC.NET
; under menu InterNIC Registration Services (NSI)
; submenu InterNIC Registration Archives
; file named.root
;
; last update: Aug 22, 1997
; related version of root zone: 1997082200
;
;
; formerly NS.INTERNIC.NET
;
. 3600000 IN NS A.ROOT-SERVERS.NET.
A.ROOT-SERVERS.NET. 3600000 A 198.41.0.4
;
; formerly NS1.ISI.EDU
;
. 3600000 NS B.ROOT-SERVERS.NET.
B.ROOT-SERVERS.NET. 3600000 A 128.9.0.107
;
; formerly C.PSI.NET
;
. 3600000 NS C.ROOT-SERVERS.NET.
C.ROOT-SERVERS.NET. 3600000 A 192.33.4.12
;
; formerly TERP.UMD.EDU
;
. 3600000 NS D.ROOT-SERVERS.NET.
D.ROOT-SERVERS.NET. 3600000 A 128.8.10.90
;
; formerly NS.NASA.GOV
;
. 3600000 NS E.ROOT-SERVERS.NET.
E.ROOT-SERVERS.NET. 3600000 A 192.203.230.10
;
; formerly NS.ISC.ORG
;
. 3600000 NS F.ROOT-SERVERS.NET.
F.ROOT-SERVERS.NET. 3600000 A 192.5.5.241
;
; formerly NS.NIC.DDN.MIL
;
. 3600000 NS G.ROOT-SERVERS.NET.
G.ROOT-SERVERS.NET. 3600000 A 192.112.36.4
;
; formerly AOS.ARL.ARMY.MIL
;
. 3600000 NS H.ROOT-SERVERS.NET.
H.ROOT-SERVERS.NET. 3600000 A 128.63.2.53
;
; formerly NIC.NORDU.NET
;
. 3600000 NS I.ROOT-SERVERS.NET.
I.ROOT-SERVERS.NET. 3600000 A 192.36.148.17
;
; temporarily housed at NSI (InterNIC)
;
. 3600000 NS J.ROOT-SERVERS.NET.
J.ROOT-SERVERS.NET. 3600000 A 198.41.0.10
;
; housed in LINX, operated by RIPE NCC
;
. 3600000 NS K.ROOT-SERVERS.NET.
K.ROOT-SERVERS.NET. 3600000 A 193.0.14.129
;
; temporarily housed at ISI (IANA)
;
. 3600000 NS L.ROOT-SERVERS.NET.
L.ROOT-SERVERS.NET. 3600000 A 198.32.64.12
;
; housed in Japan, operated by WIDE
;
. 3600000 NS M.ROOT-SERVERS.NET.
M.ROOT-SERVERS.NET. 3600000 A 202.12.27.33

##############
file : /etc/named/named.local

#############

$ORIGIN 0.0.127.IN-ADDR.ARPA.
$TTL 86400
@ IN SOA ns1 (
admin.basiczone.com.
1997022700 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS ns1.networkshastrihall.com.
IN NS ns2.networkshastrihall.com.

1 IN PTR www.networkshastrihall.com.
2 IN PTR ns1.networkshastrihall.com.
3 IN PTR ns2.networkshastrihall.com.
4 IN PTR mail.networkshastrihall.com.

####################
file : /etc/named/networkshastrihall.com.zone

######################


$TTL 86400
$ORIGIN networkshastrihall.com.

@ 1D IN SOA ns1 (
admin
42 ; serial (d. adams)
3H ; refresh
15M ; retry
1W ; expiry
1D ) ; minimum

1D IN NS ns1
1D IN NS ns2
1D IN A 202.63.167.192

1D IN MX 10 mail

ns1 1D IN A 202.63.167.192
ns2 1D IN A 202.63.167.193

mail 1D IN A 202.63.167.194

www 1D IN A 202.63.167.195

##################

I think ns2.networkshastrihall.com should display Ip 202.63.167.193.

Tell me whether this O.K.

Thanks for support.

I think something is wrong.
When I ping networkshastrihall.com
it gives following results :

#############
[root@shastrihallweb root]# ping networkshastrihall.com
PING networkshastrihall.com (127.0.0.1) from 127.0.0.1 : 56(84) bytes of data.
64 bytes from shastrihallweb (127.0.0.1): icmp_seq=1 ttl=64 time=0.045 ms
64 bytes from shastrihallweb (127.0.0.1): icmp_seq=2 ttl=64 time=0.036 ms
64 bytes from shastrihallweb (127.0.0.1): icmp_seq=3 ttl=64 time=0.044 ms

--- networkshastrihall.com ping statistics ---
3 packets transmitted, 3 received, 0% loss, time 1999ms
rtt min/avg/max/mdev = 0.036/0.041/0.045/0.008 ms
#############
I think here instead 127.0.0.1 It should be 202.63.167.192 in my case.
Thanks fo rsupport

Everything appears fine except '202.63.167.193' doesn't appear to be online. It makes queries on your domain fail half the time.

yes,
IP 202.63.164.193 is not given to any ethernet card.
What I should do in this case.

Also when i ping www.networkshastrihall.com.
It gives following[root@shastrihallweb root]# ping www.networkshastrihall.com
PING www.networkshastrihall.com (202.63.167.193) from 202.63.167.192 : 56(84) bytes of data.
From 202-63-167-192.exatt.com (202.63.167.192) icmp_seq=1 Destination Host Unreachable
From 202-63-167-192.exatt.com (202.63.167.192) icmp_seq=2 Destination Host Unreachable
From 202-63-167-192.exatt.com (202.63.167.192) icmp_seq=3 Destination Host Unreachable
^[[AFrom 202-63-167-192.exatt.com (202.63.167.192) icmp_seq=4 Destination Host Unreachable
From 202-63-167-192.exatt.com (202.63.167.192) icmp_seq=5 Destination Host Unreachable
From 202-63-167-192.exatt.com (202.63.167.192) icmp_seq=6 Destination Host Unreachable

Any Idea why it is not reaching.
Thanks for support.

let's take a look at your interfaces, and routing table.

[root@shastrihallweb root]# ifconfig
eth0 Link encap:Ethernet HWaddr 00:05:5D:4A:65:77
inet addr:202.183.69.130 Bcast:202.183.69.131 Mask:255.255.255.252
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:253754 errors:0 dropped:0 overruns:0 frame:0
TX packets:251466 errors:894 dropped:0 overruns:0 carrier:1788
collisions:4152 txqueuelen:100
RX bytes:152233901 (145.1 Mb) TX bytes:77877457 (74.2 Mb)
Interrupt:5 Base address:0xc000

eth1 Link encap:Ethernet HWaddr 00:50:BA:A8:A2:CF
inet addr:192.168.0.1 Bcast:192.168.0.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:214878 errors:0 dropped:0 overruns:0 frame:0
TX packets:212477 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:68255876 (65.0 Mb) TX bytes:143646771 (136.9 Mb)
Interrupt:11 Base address:0xe000

eth2 Link encap:Ethernet HWaddr 00:08:A1:53:BE:F7
inet addr:202.63.167.192 Bcast:202.63.167.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:1 errors:0 dropped:0 overruns:0 frame:0
TX packets:16436 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:60 (60.0 b) TX bytes:986160 (963.0 Kb)
Interrupt:11

lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:552 errors:0 dropped:0 overruns:0 frame:0
TX packets:552 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:42011 (41.0 Kb) TX bytes:42011 (41.0 Kb)

tunnel0 Link encap:IPIP Tunnel HWaddr
inet addr:202.63.162.62 P-t-P:202.63.162.62 Mask:255.255.255.252
UP POINTOPOINT RUNNING NOARP MTU:1480 Metric:1
RX packets:233282 errors:0 dropped:0 overruns:0 frame:0
TX packets:251924 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:143521121 (136.8 Mb) TX bytes:74887069 (71.4 Mb)

###################

I am using as a transperent proxy server on same server.
My iptables policy is kept open

#################
iptables --flush
iptables --table nat --flush
iptables --delete-chain
iptables --table nat --delete-chain
iptables --table nat --append POSTROUTING --out-interface tunnel0 -j MASQUERADE
iptables --append FORWARD --in-interface eth1 -j ACCEPT

/usr/local/squid/sbin/squid
iptables -t nat -A PREROUTING -p tcp --dport 80 -j REDIRECT --to-port 3128

################

oh yeah, you did say that the x.x.x.193 wasn't bound to any interface. I was hoping it would just be a routing problem. If you own that IP address and you are wanting to make it work, then you need to ask in the networking section or something. My knowledge of linux and networking only goes so far.

However, with the expedient of making your domain work, you can set ns2 to the same IP address as ns1. I tried your public IP address and it doesn't appear to work, but perhaps you just aren't listening on that interface? If you could get your public IP to work then you could use it for ns2.

Hi SilentRage,
I have changed ns2.networkshastrihall.com IP to 202.63.167.192

and checked with

[root@shastrihallweb named]# ping www.networkshastrihall.com
PING www.networkshastrihall.com (202.63.167.194) from 202.63.167.192 : 56(84) bytes of data.
From 202-63-167-192.exatt.com (202.63.167.192) icmp_seq=1 Destination Host Unreachable

--- www.networkshastrihall.com ping statistics ---
3 packets transmitted, 0 received, +1 errors, 100% loss, time 2001ms

Still it says Destination host Unreachable.
Do I have to set something in apache web server?


I have also changed ns2 entry in "networkshastrihall.com.zone" file to 202.63.167.192.

Thanks for support.

Hi SilentRage,
I asked my my ISP (Bandwidth supplier) whether Stactic IPs alloted to me from 202.63.167.192-195 are live or not. All are Live.

I have changed file "/var/named/networkshastrihall.com.zone"
as follows :

########
$TTL 86400
$ORIGIN networkshastrihall.com.

@ 1D IN SOA ns1 (
admin
42 ; serial (d. adams)
3H ; refresh
15M ; retry
1W ; expiry
1D ) ; minimum

1D IN NS ns1
1D IN NS ns2
1D IN A 202.63.167.192

1D IN MX 10 mail

ns1 1D IN A 202.63.167.192
ns2 1D IN A 202.63.167.192

mail 1D IN A 202.63.167.192

www 1D IN A 202.63.167.192
##########

I checked at your link "http://www.dollardns.org/cgi-bin/DN...&lr=1&submit=DS"

and it shows ns1, ns2, www, mail all are directing to 202.63.167.192

Once again I gave command :

[root@shastrihallweb root]# ping www.networkshastrihall.com
PING www.networkshastrihall.com (202.63.167.194) from 202.63.167.192 : 56(84) bytes of data.
From 202-63-167-192.exatt.com (202.63.167.192) icmp_seq=1 Destination Host Unreachable
From 202-63-167-192.exatt.com (202.63.167.192) icmp_seq=2 Destination Host Unreachable
From 202-63-167-192.exatt.com (202.63.167.192) icmp_seq=3 Destination Host Unreachable

--- www.networkshastrihall.com ping statistics ---
5 packets transmitted, 0 received, +3 errors, 100% loss, time 4022ms

Any clue for problem.
Thanks for support.

You made a typo when editing your record:

[root@shastrihallweb named]# ping www.networkshastrihall.com
PING www.networkshastrihall.com (202.63.167.194) from 202.63.167.192 : 56(84) bytes of data.
From 202-63-167-192.exatt.com (202.63.167.192) icmp_seq=1 Destination Host Unreachable

See that x.x.x.194 IP? That's supposedly www.networkshastrihall.com but last time I saw your interfaces you don't have such an IP.