-
DNS not working on IPv6
I am trying to get an IPv6 Bind DNS server running on RedHat ES4 Bind version bind-9.2.4-37.el4, but am having mixed results. I can get named to run correctly and I see named listening on my IPv6 address, I can even do a dig to the IPv6 local host address and it returns results.
I cant however get any dig results if I query against the IPv6 address it times out and doesn't return any results. I have tired from both my configured DNS server and another client running IPv6.
My configs and output are below if anyone can point out why this server isnt answering when I query against its IPv6 address I would appreciate it.
ifconfig
################
inet6 addr: fe80::206:5bff:feb5:71ce/64 Scope:Link
################
/etc/named.conf
################
options {
directory "/var/named";
version "Authorized users only!";
listen-on-v6 {any;};
################
host file I am serving up
/var/named/v6.amtelecom.net
##################
bender IN AAAA fe80::206:5bff:feb5:71ce
thor IN AAAA fe80::206:5bff:feb5:71ce
##################
I can ping the IPv6 address on the server and it responds
####################
ping6 -I eth0 fe80::206:5bff:feb5:71ce
PING fe80::206:5bff:feb5:71ce(fe80::206:5bff:feb5:71ce) from fe80::206:5bff:fe8f:f4d3 eth0: 56 data bytes
64 bytes from fe80::206:5bff:feb5:71ce: icmp_seq=0 ttl=64 time=1.92 ms
64 bytes from fe80::206:5bff:feb5:71ce: icmp_seq=1 ttl=64 time=0.303 ms
######################
I can see that the server is listening on the correct ports
#######################
netstat -lnptu |grep "named\W*$"
tcp 0 0 67.58.192.38:53 0.0.0.0:* LISTEN 25923/named
tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN 25923/named
tcp 0 0 127.0.0.1:953 0.0.0.0:* LISTEN 25923/named
tcp 0 0 :::53 :::* LISTEN 25923/named
tcp 0 0 ::1:953 :::* LISTEN 25923/named
udp 0 0 67.58.192.38:53 0.0.0.0:* 25923/named
udp 0 0 127.0.0.1:53 0.0.0.0:* 25923/named
udp 0 0 0.0.0.0:39618 0.0.0.0:* 25923/named
udp 0 0 :::39682 :::* 25923/named
udp 0 0 :::53 :::* 25923/named
#########################
From the server I can do a dig to the loopback address
#########################
dig ::1 bender.v6.amtelecom.net -taaaa
; QUESTION SECTION:
;bender.v6.amtelecom.net. IN AAAA
;; ANSWER SECTION:
bender.v6.amtelecom.net. 86400 IN AAAA fe80::206:5bff:feb5:71ce
;; AUTHORITY SECTION:
v6.amtelecom.net. 86400 IN NS bender.v6.amtelecom.net.
##########################
A dig to the actual address just times out
###########################
dig fe80::206:5bff:feb5:71ce bender.v6.amtelecom.net -taaaa
; <<>> DiG 9.2.4 <<>> fe80::206:5bff:feb5:71ce bender.v6.amtelecom.net -taaaa
; (1 server found)
;; global options: printcmd
;; connection timed out; no servers could be reached
###########################
Ip6tables is currently turned off as well, I am stumped on this one, any help would be appreciated.
Thanks,
Chris
-
I finally figured out the cause. The version of BIND DNS I was using (RedHat distro RPM) didnt work correctly with the kernel version I had. Once I upgraded to the latest BIND version 9.8 via compiling it everything worked like a charm.
Thanks,
Chris