Unmanaged VPS + DNS BIND = DNS ne radi

[phreakbox]

Pozdrav,

kratko: domain name treba resolvat 1 IP adresu na unmanaged VPS serveru

server: Debian 6, hoster: r.a.m.n.o.d.e (stavio sam tocku da ne moras bas svatko znat o serveru) 5GiB, VPS SSD 1 gbps

instalirano: ntp, apache, mysql, php5, vhosts, a2enmod, upgrade-an, .... sve što je bitno osim BIND-a s kojim nisam baš , ssh, user,...

situacija:

DOMENA:
domain.com > trebam assign-at NS adrese (1 adresa za 1 VPS, 2 ima smisla za shared)

VPS server, testiran, cca vuce 40 MB/s iz UK od Mannheim-a (wget ISO slike ubuntu-a test), ok, brz je, štima, samo 128 MB RAM-a al za sad ne trebam više jer će gore bit samo wordpress

OpenVZ, dobio sam javnu IP adresu, nema postavke za ns (probao sam njihov NS postaviti u DOMAIN.COM adresi ns1000.r.a.m.n.o.d.e.com) > nslookup ne pointa na VPS server.

Trenutno stanje:

Kod: Označi sve

marin@skymond:~$ nslookup mojadomena.net
Server:		127.0.1.1
Address:	127.0.1.1#53

** server can't find mojadomena.net: SERVFAIL

umjesto linuxzasve.com kao primjer napisati cu mojadomena.net ili samo host mojadomena

uname -a

Kod: Označi sve

Linux mojadomena 2.6.32-042stab072.10 #1 SMP Wed Jan 16 18:54:05 MSK 2013 i686 GNU/Linux

Kod: Označi sve

mojadomena ~: cat /etc/hosts
fe00::0		ip6-localnet
ff00::0		ip6-mcastprefix
ff02::1		ip6-allnodes
ff02::2		ip6-allrouters

127.0.0.1 localhost.localdomain localhost
# Auto-generated hostname. Please do not remove this comment.
192.73.234.167 mojadomena.net http://www.mojadomena.net  mojadomena
::1		localhost ip6-localhost ip6-loopback

Kod: Označi sve

mojadomena ~: hostname -f
mojadomena.net

Kod: Označi sve

mojadomena ~: rndc status
rndc: connect failed: 127.0.0.1#953: connection refused

Kod: Označi sve

mojadomena ~: cat /etc/bind/named.conf

include "/etc/bind/named.conf.options";
include "/etc/bind/named.conf.local";
include "/etc/bind/named.conf.default-zones";

Kod: Označi sve

mojadomena ~: cat /etc/bind/db.mojadomena.net 
;
; BIND reverse data file for local loopback interface
;
$TTL	604800
@	IN	SOA	ns.mojadomena.net. info.mojadomena.net. (
			      2		; Serial
			 604800		; Refresh
			  86400		; Retry
			2419200		; Expire
			 604800 )	; Negative Cache TTL
;
@	IN	NS	ns.
10	IN	PTR	ns.mojadomena.net.

Problem je što ne mogu dobiti nslookup-om ns1.mojadomena.net da mogu assignat ns adrese iz domain.com
Na managed serverima tj. na m.i.n.i.v.p.s.c.o.m to je odmah proradilo nisam se morao igrati sa NS-om i BIND-om.

[drade]

A gdje ti je forward zona, postao si samo konfiguraciju reverse zone ?

NS rekordi bi trebali navoditi puno ime ( host.domena.tld.).

Postaj i sve konfiguracijske datoteke servisa !

[phreakbox]

daj neki provjereni tutorial ak imas, forward zona je 1.2.3.4?

Kod: Označi sve

fail	Lame nameservers	ERROR: lame nameservers:

ns1.r.a.m.n.o.d.e.com. [1.9.9..2.4.1..3.0..3.0]

Skuzio sam da mi fali i SOA

fail SOA MNAME Check ERROR: Your SOA (Start of Authority) record states that your master (primary) name server is: That server is not listed at the parent servers, which is not correct.

[shrike]

Joj, bind mi je popio solidnu količinu živaca. Iskreno, trebal isu to (kao i mnogo toga drugoga, puno jednostavnije uraditi). E sad, vidim da ti niti rndc nije dobro konfiguriran. To isto trebaš srediti, i db fajl ne bi trebao biti u /etc/init.d već u
/etc/bind/zones folderu

[drade]

daj neki provjereni tutorial ak imas, forward zona je 1.2.3.4?

Kod: Označi sve

fail	Lame nameservers	ERROR: lame nameservers:

ns1.r.a.m.n.o.d.e.com. [1.9.9..2.4.1..3.0..3.0]

Skuzio sam da mi fali i SOA

fail SOA MNAME Check ERROR: Your SOA (Start of Authority) record states that your master (primary) name server is: That server is not listed at the parent servers, which is not correct.

Daj samo prikljuci konfiguracijske datoteke uza svoj odgovor. Bilo bi dobro kada bi prikljucio i svoje zonske datoteke.

[phreakbox]

Kod: Označi sve

mojadomena /etc/bind: ls
bind.keys  db.255	       db.root			 named.conf.options
db.0	   db.empty	       named.conf		 rndc.key
db.127	   db.mojadomena.net  named.conf.default-zones  zones
db.192	   db.local	       named.conf.local		 zones.rfc1918

Kod: Označi sve

mojadomena /etc/bind: cat named.conf


include "/etc/bind/named.conf.options";
include "/etc/bind/named.conf.local";
include "/etc/bind/named.conf.default-zones";

Kod: Označi sve

mojadomena /etc/bind: cat named.conf.options 
options {
	directory "/var/cache/bind";

	// If there is a firewall between you and nameservers you want
	// to talk to, you may need to fix the firewall to allow multiple
	// ports to talk.  See http://www.kb.cert.org/vuls/id/800113

	// If your ISP provided one or more IP addresses for stable 
	// nameservers, you probably want to use them as forwarders.  
	// Uncomment the following block, and insert the addresses replacing 
	// the all-0's placeholder.

	// forwarders {
	// 	0.0.0.0;
	// };

	auth-nxdomain no;    # conform to RFC1035
	listen-on-v6 { any; };
};

Kod: Označi sve

mojadomena /etc/bind: cat named.conf.default-zones 
// prime the server with knowledge of the root servers
zone "." {
	type hint;
	file "/etc/bind/db.root";
};

// be authoritative for the localhost forward and reverse zones, and for
// broadcast zones as per RFC 1912

zone "localhost" {
	type master;
	file "/etc/bind/db.local";
};

zone "127.in-addr.arpa" {
	type master;
	file "/etc/bind/db.127";
};

zone "0.in-addr.arpa" {
	type master;
	file "/etc/bind/db.0";
};

zone "255.in-addr.arpa" {
	type master;
	file "/etc/bind/db.255";
};

Kod: Označi sve

mojadomena /etc/bind: cat named.conf.local 
//
// Do any local configuration here
//

// Consider adding the 1918 zones here, if they are not used in your
// organization
//include "/etc/bind/zones.rfc1918";

ZONE:

Kod: Označi sve

mojadomena /etc/bind/zones/master: ls
db.mojadomena.net

Kod: Označi sve

$TTL	86400 ; 24 hours could have been written as 24h or 1d
$ORIGIN mojadomena.net.
@  1D  IN	 SOA ns1.mojadomena.net.	mojhost.mojadomena.net. (
			      2002022401 ; serial
			      3H ; refresh
			      15 ; retry
			      1w ; expire
			      3h ; minimum
			     )
       IN  NS     ns1.mojadomena.net. ; in the domain
;       IN  NS     ns2.mojadomena.net. ; external to domain
       IN  MX  10 mail.mojadomena.net. ; external mail provider
; server host definitions
ns1    IN  A      199.241.30.30  ;name server definition     
www    IN  A      199.241.30.30  ;web server definition
ftp    IN  CNAME  www.mojadomena.net.  ;ftp server definition
; non server domain hosts 

[phreakbox]

Sad sam točno ovo napraivo što je on napravio sa svojom VPS IP adresom i hostname-om http://www.webhostingtalk.com/showthread.php?t=929082

Kod: Označi sve

Feb 15 02:56:51 mojadomena named[16224]: zone 0.in-addr.arpa/IN: loaded serial 1
Feb 15 02:56:51 mojadomena named[16224]: zone 127.in-addr.arpa/IN: loaded serial 1
Feb 15 02:56:51 mojadomena named[16224]: zone 1.168.192.in-addr.arpa/IN: loaded serial 2013021401
Feb 15 02:56:51 mojadomena named[16224]: zone 255.in-addr.arpa/IN: loaded serial 1
Feb 15 02:56:51 mojadomena named[16224]: zone localhost/IN: loaded serial 2
Feb 15 02:56:51 mojadomena named[16224]: zone mojadomena.net/IN: mojadomena.net/MX 'mail.mojadomena.net' has no address records (A or AAAA)
Feb 15 02:56:51 mojadomena named[16224]: zone mojadomena.net/IN: loaded serial 2013021401
Feb 15 02:56:51 mojadomena named[16224]: managed-keys-zone ./IN: loading from master file managed-keys.bind failed: file not found
Feb 15 02:56:51 mojadomena named[16224]: managed-keys-zone ./IN: loaded serial 0
Feb 15 02:56:51 mojadomena named[16224]: running

[drade]

Unutar datoteke "/etc/bind/named.conf.default-zones" dodaj:

Kod: Označi sve

listen-on { any; };

Takodjer dodaj forwardere (zamijeni xxx s IP adresom hosting providera):

Kod: Označi sve

forwarders { xxx.xxx.xxx.xxx; };

Unutar datoteke "/etc/bind/named.conf.default-zones" dodaj blokove unutar kojih ces naznaciti svoje zonske datoteke (prvi blok je za forward zonu, sample sam prikljucio na kraju; drugi blok je za reverse zonu (to vec imas)):

Kod: Označi sve

zone "mojadomena.tld" in {
   type master;
   file "/putanja/do/zonske/datoteke";
};

zone "mojadomena.tld.reverse" in {
   type master;
   file "/putanja/do/zonske/datoteke";
};

Forward zonska konfiguracija slijedi (zamijeni xxx s IP adresom ns1 servera):

Kod: Označi sve

$TTL   86400 ; 24 hours could have been written as 24h or 1d
@  1D  IN    SOA ns1.mojadomena.net.   mojhost.mojadomena.net. (
               2002022401 ; serial
               3H ; refresh
               15 ; retry
               1w ; expire
               3h ; minimum
              )
       IN  NS       ns1.mojadomena.net. ; in the domain
       IN  MX  10 mail.mojadomena.net. ; external mail provider
ns1  IN  A         xxx.xxx.xxx.xxx
mail IN  A         xxx.xxx.xxx.xxx

Inace, ovo mojhost.mojadomena.net. ti je zapravo e-mail adresa (npr. mozda je bolje ovdje staviti root.mojadomena.net., ili koji god ti je servisni e-mail account (bez obzira imao ga ili ne)).

Reverse zona: (zamijeni XX sa zadnjim oktetom IP adrese; npr. ako ti je IP adresa 192.168.1.1, stavi tu 1)

Kod: Označi sve

$TTL   86400 ; 24 hours could have been written as 24h or 1d
@  1D  IN    SOA ns1.mojadomena.net.   mojhost.mojadomena.net. (
               2002022401 ; serial
               3H ; refresh
               15 ; retry
               1w ; expire
               3h ; minimum
              )
        IN  NS       ns1.mojadomena.net. ; in the domain
XX    IN  PTR      ns1.mojadomena.net.
XX    IN PTR       mail.mojadomena.net.

Restartaj bind te izdaj sljedecu naredbu (sve outpute postaj ovdje):

Kod: Označi sve

dig @localhost NS +tcp +short
dig @IP_ADRESA NS +tcp +short

Daj i output naredbe:

Kod: Označi sve

lsof -i

[phreakbox]

Kod: Označi sve

mojadomena /etc/bind: dig @localhost NS +tcp +short
b.root-servers.net.
m.root-servers.net.
i.root-servers.net.
h.root-servers.net.
l.root-servers.net.
g.root-servers.net.
c.root-servers.net.
e.root-servers.net.
j.root-servers.net.
a.root-servers.net.
d.root-servers.net.
f.root-servers.net.
k.root-servers.net.

Kod: Označi sve

hippygarden /etc/bind: dig @VPS_IP NS +tcp +short
;; communications error to VPS_IP#53: end of file

huh?

ls -of

Kod: Označi sve

mojadomena /etc/bind: lsof -i
COMMAND     PID     USER   FD   TYPE   DEVICE SIZE/OFF NODE NAME
nmbd        606     root    9u  IPv4 23947567      0t0  UDP *:netbios-ns 
nmbd        606     root   10u  IPv4 23947568      0t0  UDP *:netbios-dgm 
nmbd        606     root   11u  IPv4 23947570      0t0  UDP mojadomena.net:netbios-ns 
nmbd        606     root   12u  IPv4 23947571      0t0  UDP mojadomena.net:netbios-ns 
nmbd        606     root   13u  IPv4 23947572      0t0  UDP mojadomena.net:netbios-dgm 
nmbd        606     root   14u  IPv4 23947573      0t0  UDP mojadomena.net:netbios-dgm 
nmbd        606     root   15u  IPv4 23947574      0t0  UDP 127.0.0.2:netbios-ns 
nmbd        606     root   16u  IPv4 23947575      0t0  UDP 127.0.0.2:netbios-ns 
nmbd        606     root   17u  IPv4 23947576      0t0  UDP 127.0.0.2:netbios-dgm 
nmbd        606     root   18u  IPv4 23947577      0t0  UDP 127.0.0.2:netbios-dgm 
smbd        634     root   24u  IPv6 23947669      0t0  TCP *:microsoft-ds (LISTEN)
smbd        634     root   25u  IPv6 23947671      0t0  TCP *:netbios-ssn (LISTEN)
sshd        687     root    3u  IPv4 23947745      0t0  TCP *:ssh (LISTEN)
sshd        687     root    4u  IPv6 23947747      0t0  TCP *:ssh (LISTEN)
sendmail-   823     root    3u  IPv4 23947945      0t0  TCP localhost.localdomain:smtp (LISTEN)
sendmail-   823     root    5u  IPv4 23947946      0t0  TCP localhost.localdomain:submission (LISTEN)
mysqld      869    mysql   10u  IPv4 23947995      0t0  TCP localhost.localdomain:mysql (LISTEN)
proftpd    1052  proftpd    1u  IPv6 23948630      0t0  TCP *:ftp (LISTEN)a
pdns_serv 13081     pdns    5u  IPv4 26091355      0t0  UDP *:domain 
pdns_serv 13081     pdns    6u  IPv4 26091356      0t0  TCP *:domain (LISTEN)
pdns_serv 13081     pdns    8u  IPv4 26091365      0t0  TCP localhost.localdomain:44419->localhost.localdomain:mysql (CLOSE_WAIT)
pdns_serv 13081     pdns    9u  IPv4 26091369      0t0  TCP localhost.localdomain:44420->localhost.localdomain:mysql (CLOSE_WAIT)
pdns_serv 13081     pdns   10u  IPv4 26091376      0t0  TCP localhost.localdomain:44421->localhost.localdomain:mysql (CLOSE_WAIT)
sshd      15123     root    3u  IPv4 30162581      0t0  TCP mojadomena.net:ssh->93-***-**-***.adsl.net.t-com.hr:40535 (ESTABLISHED)
named     16224     bind   20u  IPv6 31701218      0t0  TCP *:domain (LISTEN)
named     16224     bind   21u  IPv4 31701231      0t0  TCP localhost.localdomain:953 (LISTEN)
named     16224     bind   22u  IPv6 31701232      0t0  TCP localhost:953 (LISTEN)
named     16224     bind  512u  IPv6 31701217      0t0  UDP *:domain 
apache2   16293     root    4u  IPv6 31740401      0t0  TCP *:www (LISTEN)
apache2   16296 www-data    4u  IPv6 31740401      0t0  TCP *:www (LISTEN)
apache2   16300 www-data    4u  IPv6 31740401      0t0  TCP *:www (LISTEN)

[phreakbox]

Sad ne javlja nikakve greške na ovo:

mojadomena /etc/bind: dig @IP_VPS NS +tcp +short

vraća "null" tj. prazno čini mi se da je prošlo?


mojadomena /etc/bind: sudo /etc/init.d/bind9 restart
Stopping domain name service...: bind9rndc: connect failed: 127.0.0.1#953: connection refused
.
Starting domain name service...: bind9 failed!