Find the answer to your Linux question:
Results 1 to 2 of 2
Hello, I'm having some issues with Ubuntu Linux 12.04 LTS and setting up a DNS resolver to be used internally in my office. I've installed bind9 and I've setup it ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Just Joined!
    Join Date
    Jan 2014
    Posts
    1

    Setup DNS resolver


    Hello,

    I'm having some issues with Ubuntu Linux 12.04 LTS and setting up a DNS resolver to be used internally in my office.

    I've installed bind9 and I've setup it with the following options:

    Code:
    acl internals {
                    127.0.0.0/8;
                    192.168.1.0/24;
                    };
    
    
    options {
            directory "/var/cache/bind";
            dnssec-enable yes;
            dnssec-validation auto;
            auth-nxdomain no;
    
            allow-transfer {none; };
    
            allow-query {internals; };
            allow-recursion {internals; };
            version none;
    };
    This is the output of netstat -na

    Code:
    tcp        0      0 192.168.1.100:53       0.0.0.0:*               LISTEN
    tcp        0      0 127.0.0.1:53            0.0.0.0:*               LISTEN
    tcp        0      0 0.0.0.0:22              0.0.0.0:*               LISTEN
    tcp        0      0 127.0.0.1:953           0.0.0.0:*               LISTEN
    
    LISTEN
    tcp6       0      0 ::1:953                 :::*                    LISTEN
    udp        0      0 192.168.1.100:53       0.0.0.0:*
    udp        0      0 127.0.0.1:53            0.0.0.0:*
    udp        0      0 0.0.0.0:68              0.0.0.0:*
    If I do a dig +trace AT192.168.1.100 linuxforums.org

    Code:
    ; <<>> DiG 9.8.1-P1 <<>> +trace AT192.168.1.100 linuxforums.org
    ; (1 server found)
    ;; global options: +cmd
    .                       3600000 IN      NS      I.ROOT-SERVERS.NET.
    .                       3600000 IN      NS      F.ROOT-SERVERS.NET.
    .                       3600000 IN      NS      E.ROOT-SERVERS.NET.
    .                       3600000 IN      NS      H.ROOT-SERVERS.NET.
    .                       3600000 IN      NS      J.ROOT-SERVERS.NET.
    .                       3600000 IN      NS      C.ROOT-SERVERS.NET.
    .                       3600000 IN      NS      K.ROOT-SERVERS.NET.
    .                       3600000 IN      NS      G.ROOT-SERVERS.NET.
    .                       3600000 IN      NS      L.ROOT-SERVERS.NET.
    .                       3600000 IN      NS      B.ROOT-SERVERS.NET.
    .                       3600000 IN      NS      A.ROOT-SERVERS.NET.
    .                       3600000 IN      NS      D.ROOT-SERVERS.NET.
    .                       3600000 IN      NS      M.ROOT-SERVERS.NET.
    ;; Received 228 bytes from 192.168.1.100#53(192.168.1.100) in 62 ms
    
    org.                    172800  IN      NS      a0.org.afilias-nst.info.
    org.                    172800  IN      NS      a2.org.afilias-nst.info.
    org.                    172800  IN      NS      b0.org.afilias-nst.org.
    org.                    172800  IN      NS      b2.org.afilias-nst.org.
    org.                    172800  IN      NS      c0.org.afilias-nst.info.
    org.                    172800  IN      NS      d0.org.afilias-nst.org.
    ;; Received 435 bytes from 193.0.14.129#53(193.0.14.129) in 336 ms
    
    linuxforums.org.        86400   IN      NS      dns2.ultrahosting.com.
    linuxforums.org.        86400   IN      NS      dns1.ultrahosting.com.
    ;; Received 87 bytes from 199.19.54.1#53(199.19.54.1) in 624 ms
    
    linuxforums.org.        600     IN      A       174.132.123.98
    linuxforums.org.        600     IN      NS      dns2.ultrahosting.com.
    linuxforums.org.        600     IN      NS      dns3.ultrahosting.com.
    linuxforums.org.        600     IN      NS      dns1.ultrahosting.com.
    ;; Received 122 bytes from 66.240.151.5#53(66.240.151.5) in 134 ms
    if I do a simple dig AT192.168.1.100 linuxforums.org

    Code:
    ; <<>> DiG 9.8.1-P1 <<>> AT192.168.1.100 linuxforums.org
    ; (1 server found)
    ;; global options: +cmd
    ;; connection timed out; no servers could be reached
    The same happens with nslookup.

    What's going on here?

    I want to thank you in advance for your time and availability

    Best regards

  2. #2
    Just Joined!
    Join Date
    Feb 2011
    Posts
    5
    Hi,

    May be the below can help!!! The allow-transfer has the value configured to none. It should have "acl internals".

    options {
    allow-transfer {"acl internals"; };
    };

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •