Linux za Sve forum

Daj mi postaj log datoteku.

DNS ti sada slusa na portu 53

Kod: Označi sve: pdns_serv 13081 pdns 5u IPv4 26091355 0t0 UDP *:domain pdns_serv 13081 pdns 6u IPv4 26091356 0t0 TCP *:domain (LISTEN)

Izmjeni dig naredbe na sljedeci nacin:

Kod: Označi sve: dig mojadomena.net NS +noall +answer dig mojadomena.net MX +noall +answer dig mojadomena.net +noall +answer

EDIT:
Skuzio sam, pdns ti je pokrenut a ti bi pokrenuo bind na istom portu (nece ici). Ugasi pdns na sekundu pa startaj bind.

Kod: Označi sve: sudo /etc/init.d/pdns stop sudo /etc/init.d/bind9 start

Ovo zadnje ne bi trebalo proci, zato jer nema A recorda u DNS-u (for shit and giggles).

Na sve dig mi odgovara:

Kod: Označi sve: ; <<>> DiG 9.7.3 <<>> mojadomena.net NS +noall +answer ;; global options: +cmd

Log:

/usr/sbin/named -g

Nakon sto sam iskljucio powerdns,....

Kod: Označi sve: 15-Feb-2013 03:41:08.820 zone 127.in-addr.arpa/IN: loaded serial 1 15-Feb-2013 03:41:08.820 zone 255.in-addr.arpa/IN: loaded serial 1 15-Feb-2013 03:41:08.821 zone localhost/IN: loaded serial 2 15-Feb-2013 03:41:08.821 zone mojadomena.net/IN: loaded serial 2002022402 15-Feb-2013 03:41:08.821 zone mojadomena.reverse/IN: loaded serial 2002022402 15-Feb-2013 03:41:08.821 managed-keys-zone ./IN: loading from master file managed-keys.bind failed: file not found 15-Feb-2013 03:41:08.821 managed-keys-zone ./IN: loaded serial 0 15-Feb-2013 03:41:08.822 running ^C15-Feb-2013 03:41:29.168 shutting down <---- CTRL + C 15-Feb-2013 03:41:29.169 no longer listening on ::#53 15-Feb-2013 03:41:29.169 no longer listening on 127.0.0.1#53 15-Feb-2013 03:41:29.169 no longer listening on 127.0.0.2#53 15-Feb-2013 03:41:29.169 no longer listening on IPVPS#53 15-Feb-2013 03:41:29.170 exiting

Sad sam se sjetio na OpenVZ imam postavljen master key...

Ubaci putanju do kljuca unutar datoteke named.conf (tamo gdje su ostale "include" direktive):

Kod: Označi sve: include "/putanja/do/kljuca";

DNS REPORT for ns1.mojadomena.net:

SOA
fail SOA MNAME Check ERROR: Your SOA (Start of Authority) record states that your master (primary) name server is: That server is not listed at the parent servers, which is not correct.

OK-->
pass NS records at parent servers Your NS records at the parent servers are:
ns1.ramnode.com. [ 1.9.9....2.4.1...3.0...3.0 ]
[These were obtained from h.gtld-servers.net.]

dig:

Kod: Označi sve: mojadomena /etc/bind: dig mojadomena.net ; <<>> DiG 9.7.3 <<>> mojadomena.net ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 18971 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;mojadomena.net. IN A ;; Query time: 44 msec ;; SERVER: 8.8.8.8#53(8.8.8.8) ;; WHEN: Fri Feb 15 14:55:23 2013 ;; MSG SIZE rcvd: 33

Restart bind:

Kod: Označi sve: mojadomena /etc/bind: service bind9 restart Stopping domain name service...: bind9. Starting domain name service...: bind9.

Tu javlja da mije loading master key failed [managed-keys-zone]

Kod: Označi sve: mojadomena /etc/bind: tail -f /var/log/syslog Feb 15 14:56:52 mojadomena named[2274]: command channel listening on ::1#953 Feb 15 14:56:52 mojadomena named[2274]: zone 0.in-addr.arpa/IN: loaded serial 1 Feb 15 14:56:52 mojadomena named[2274]: zone 127.in-addr.arpa/IN: loaded serial 1 Feb 15 14:56:52 mojadomena named[2274]: zone 255.in-addr.arpa/IN: loaded serial 1 Feb 15 14:56:52 mojadomena named[2274]: zone localhost/IN: loaded serial 2 Feb 15 14:56:52 mojadomena named[2274]: zone mojadomena.net/IN: loaded serial 2013022402 Feb 15 14:56:52 mojadomena named[2274]: zone mojadomena.reverse/IN: loaded serial 2013022402 Feb 15 14:56:52 mojadomena named[2274]: managed-keys-zone ./IN: loading from master file managed-keys.bind failed: file not found Feb 15 14:56:52 mojadomena named[2274]: managed-keys-zone ./IN: loaded serial 0 Feb 15 14:56:52 mojadomena named[2274]: running

cat named.conf

Kod: Označi sve: include "/etc/bind/named.conf.options"; include "/etc/bind/named.conf.local"; include "/etc/bind/named.conf.default-zones"; include "/etc/bind/bind.keys";

named.conf.options

Kod: Označi sve: mojadomena /etc/bind: cat named.conf.options options { directory "/var/cache/bind"; // If there is a firewall between you and nameservers you want // to talk to, you may need to fix the firewall to allow multiple // ports to talk. See http://www.kb.cert.org/vuls/id/800113 // If your ISP provided one or more IP addresses for stable // nameservers, you probably want to use them as forwarders. // Uncomment the following block, and insert the addresses replacing // the all-0's placeholder. // forwarders { // 0.0.0.0; // }; listen-on { any; }; forwarders { PROVIDER_IP_ADDR_VPS; }; auth-nxdomain no; # conform to RFC1035 //allow-query { localhost; 10.0.0.1/24; }; listen-on-v6 { any; }; };

named.conf.local (zakomentirano sve nazad)

Kod: Označi sve: // // Do any local configuration here // // Consider adding the 1918 zones here, if they are not used in your // organization //include "/etc/bind/zones.rfc1918"; # This is the zone definition. replace example.com with your domain name //zone "mojadomena.net" { // type master; // file "/etc/bind/zones/mojadomena.net.db"; //}; # This is the zone definition for reverse DNS. replace 0.168.192 with your network address in$ //zone "0.73.192.in-addr.arpa" { // type master; // file "/etc/bind/zones/rev.0.73.192.in-addr.arpa"; # PUBLIC ADRESA MOG VPS SERVERA REVERZNO 192.73.0.324 > 0.73.192 //};

nemd.conf.default-zones:

Kod: Označi sve: // prime the server with knowledge of the root servers zone "." { type hint; file "/etc/bind/db.root"; }; zone "mojadomena.net" in { type master; file "/etc/bind/db1.mojadomena.net"; }; zone "mojadomena.reverse" in { type master; file "/etc/bind/db1.mojadomena.net.reverse"; }; zone "localhost" { type master; file "/etc/bind/db.local"; }; zone "127.in-addr.arpa" { type master; file "/etc/bind/db.127"; }; zone "0.in-addr.arpa" { type master; file "/etc/bind/db.0"; }; zone "255.in-addr.arpa" { type master; file "/etc/bind/db.255"; };

db1.mojadomena.net

Kod: Označi sve: $TTL 86400 ; 24 hours could have been written as 24h or 1d @ 1D IN SOA ns1.mojadomena.net. root.mojadomena.net. ( 2002022402 ; serial 3H ; refresh 15 ; retry 1w ; expire 3h ; minimum ) IN NS ns1.mojadomena.net. ; in the domain IN MX 10 mail.mojadomena.net. ; external mail provider ns1 IN A 192.73.xxx.xxx mail IN A 192.73.xxx.xxx

db1.mojadomena.net.reverse

Kod: Označi sve: $TTL 86400 ; 24 hours could have been written as 24h or 1d @ 1D IN SOA ns1.mojadomena.net. root.mojadomena.net. ( 2002022402 ; serial 3H ; refresh 15 ; retry 1w ; expire 3h ; minimum ) IN NS ns1.mojadomena.net. ; in the domain IN MX 10 mail.mojadomena.net. ; external mail provider XX IN PTR ns1.mojadomena.net. XX IN PTR mail.mojadomena.net.

RNDC:

Kod: Označi sve: mojadomena /etc/bind: rndc reload server reload successful

hostname -f

Kod: Označi sve: mojadomena.net

named-checkconf -z

Kod: Označi sve: mojadomena /etc/bind: named-checkconf -z zone mojadomena.net/IN: loaded serial 2002022402 zone mojadomena.reverse/IN: loaded serial 2002022402 zone localhost/IN: loaded serial 2 zone 127.in-addr.arpa/IN: loaded serial 1 zone 0.in-addr.arpa/IN: loaded serial 1 zone 255.in-addr.arpa/IN: loaded serial 1

dig ns1.mojadomena.net

Kod: Označi sve: mojadomena /etc/bind: dig ns1.mojadomena.net ; <<>> DiG 9.7.3 <<>> ns1.mojadomena.net ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 7134 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;ns1.mojadomena.net. IN A ;; Query time: 135 msec ;; SERVER: 8.8.8.8#53(8.8.8.8) ;; WHEN: Fri Feb 15 15:10:30 2013 ;; MSG SIZE rcvd: 37

ls -of

Kod: Označi sve: COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME nmbd 606 root 9u IPv4 40584845 0t0 UDP *:netbios-ns nmbd 606 root 10u IPv4 40584846 0t0 UDP *:netbios-dgm nmbd 606 root 11u IPv4 40584848 0t0 UDP mojadomena.net:netbios-ns nmbd 606 root 12u IPv4 40584849 0t0 UDP mojadomena.net:netbios-ns nmbd 606 root 13u IPv4 40584850 0t0 UDP mojadomena.net:netbios-dgm nmbd 606 root 14u IPv4 40584851 0t0 UDP mojadomena.net:netbios-dgm nmbd 606 root 15u IPv4 40584852 0t0 UDP 127.0.0.2:netbios-ns nmbd 606 root 16u IPv4 40584853 0t0 UDP 127.0.0.2:netbios-ns nmbd 606 root 17u IPv4 40584854 0t0 UDP 127.0.0.2:netbios-dgm nmbd 606 root 18u IPv4 40584855 0t0 UDP 127.0.0.2:netbios-dgm smbd 623 root 24u IPv6 40584945 0t0 TCP *:microsoft-ds (LISTEN) smbd 623 root 25u IPv6 40584947 0t0 TCP *:netbios-ssn (LISTEN) sshd 760 root 3u IPv4 40585592 0t0 TCP *:ssh (LISTEN) sshd 760 root 4u IPv6 40585594 0t0 TCP *:ssh (LISTEN) sendmail- 809 root 3u IPv4 40586137 0t0 TCP localhost.localdomain:smtp (LISTEN) sendmail- 809 root 5u IPv4 40586138 0t0 TCP localhost.localdomain:submission (LISTEN) mysqld 895 mysql 10u IPv4 40586258 0t0 TCP localhost.localdomain:mysql (LISTEN) sshd 966 root 3u IPv4 40586915 0t0 TCP mojadomena.net:ssh->93-138-110-185.adsl.net.t-com.hr:58424 (ESTABLISHED) proftpd 1086 proftpd 1u IPv6 40587503 0t0 TCP *:ftp (LISTEN) apache2 1475 root 4u IPv6 40688332 0t0 TCP *:www (LISTEN) apache2 1478 www-data 4u IPv6 40688332 0t0 TCP *:www (LISTEN) apache2 1482 www-data 4u IPv6 40688332 0t0 TCP *:www (LISTEN) sshd 1494 root 3u IPv4 40722351 0t0 TCP mojadomena.net:ssh->xx-xx-xx-xxx.adsl.net.t-com.hr:58549 (ESTABLISHED) named 2446 bind 20u IPv6 41738350 0t0 TCP *:domain (LISTEN) named 2446 bind 21u IPv4 41738355 0t0 TCP localhost.localdomain:domain (LISTEN) named 2446 bind 22u IPv4 41738357 0t0 TCP 127.0.0.2:domain (LISTEN) named 2446 bind 23u IPv4 41738359 0t0 TCP mojadomena.net:domain (LISTEN) named 2446 bind 24u IPv4 41738362 0t0 TCP localhost.localdomain:953 (LISTEN) << !!!! zasto 953? named 2446 bind 25u IPv6 41738363 0t0 TCP localhost:953 (LISTEN) named 2446 bind 512u IPv6 41738349 0t0 UDP *:domain named 2446 bind 513u IPv4 41738354 0t0 UDP localhost.localdomain:domain named 2446 bind 514u IPv4 41738356 0t0 UDP 127.0.0.2:domain named 2446 bind 515u IPv4 41738358 0t0 UDP mojadomena.net:domain

nsloookup ns1.mojadomena.net

Kod: Označi sve: mojadomena /etc/bind: nslookup ns1.mojadomena.net ;; Got SERVFAIL reply from 8.8.8.8, trying next server ;; Got SERVFAIL reply from 8.8.8.8, trying next server Server: 8.8.4.4 Address: 8.8.4.4#53 ** server can't find ns1.mojadomena.net.mojadomena.net: SERVFAIL

Hosts:

Kod: Označi sve: mojadomena /etc/bind: cat /etc/hosts fe00::0 ip6-localnet ff00::0 ip6-mcastprefix ff02::1 ip6-allnodes ff02::2 ip6-allrouters 127.0.0.1 localhost.localdomain localhost # Auto-generated hostname. Please do not remove this comment. 192.73.234.xxx mojadomena.net www.mojadomena.net mojadomena ::1 localhost ip6-localhost ip6-loopback

ps aux
(upitnik kod TTY)

Kod: Označi sve: USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND bind 2446 0.0 8.8 44684 11584 ? Ssl 15:09 0:00 /usr/sbin/named -u bind daemon 670 0.0 0.2 2156 304 ? Ss 13:33 0:00 /usr/sbin/atd root 643 0.0 0.3 8668 488 ? Ss 13:33 0:00 /usr/sbin/saslauthd -a pam -c root 649 0.0 0.0 8668 52 ? S 13:33 0:00 /usr/sbin/saslauthd -a pam -c ... od ostalih servisa ok

ifconfig
192.73.234.a < public IP VPS na venet

Kod: Označi sve: mojadomena /etc/bind: ifconfig lo Link encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 inet6 addr: ::1/128 Scope:Host UP LOOPBACK RUNNING MTU:16436 Metric:1 RX packets:620 errors:0 dropped:0 overruns:0 frame:0 TX packets:620 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:69348 (67.7 KiB) TX bytes:69348 (67.7 KiB) venet0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00 inet addr:127.0.0.2 P-t-P:127.0.0.2 Bcast:0.0.0.0 Mask:255.255.255.255 inet6 addr: 2604:180::560e:724d/128 Scope:Global inet6 addr: 2604:180::496e:c383/128 Scope:Global inet6 addr: 2604:180::1d7f:104/128 Scope:Global inet6 addr: 2604:180::f9e8:7d3b/128 Scope:Global inet6 addr: 2604:180::1474:5a84/128 Scope:Global inet6 addr: 2604:180::c49b:3c74/128 Scope:Global inet6 addr: 2604:180::fe31:ec3a/128 Scope:Global inet6 addr: 2604:180::1e45:d6f/128 Scope:Global inet6 addr: 2604:180::12fd:84e9/128 Scope:Global inet6 addr: 2604:180::dfd7:15cb/128 Scope:Global inet6 addr: 2604:180::d5ab:fa7/128 Scope:Global inet6 addr: 2604:180::642e:407/128 Scope:Global inet6 addr: 2604:180::e5da:6c4c/128 Scope:Global inet6 addr: 2604:180::8af6:29a5/128 Scope:Global inet6 addr: 2604:180::eb7a:b25b/128 Scope:Global inet6 addr: 2604:180::1fb9:adea/128 Scope:Global UP BROADCAST POINTOPOINT RUNNING NOARP MTU:1500 Metric:1 RX packets:6019 errors:0 dropped:0 overruns:0 frame:0 TX packets:3707 errors:0 dropped:2 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:1546485 (1.4 MiB) TX bytes:661843 (646.3 KiB) venet0:0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00 inet addr:192.73.234.a P-t-P:192.73.234.a Bcast:0.0.0.0 Mask:255.255.255.255 UP BROADCAST POINTOPOINT RUNNING NOARP MTU:1500 Metric:1

Uh mislim da znam što je evo:

mojadomena /etc/bind: named-checkzone mojadomena.net db1.mojadomena.net
zone mojadomena.net/IN: loaded serial 2013021403
OK
mojadomena /etc/bind: named-checkzone mojadomena.net db1.mojadomena.net.reverse
zone mojadomena.net/IN: NS 'ns1.mojadomena.net' has no address records (A or AAAA)
zone mojadomena.net/IN: not loaded due to errors.

Fali mu A ili AAAA u reverznom

A se stavlja samo u forward zonu, reverse zona koristi PTR record.

Izmjeni forward zonu na sljedeci nacin:

Kod: Označi sve: ns1.mojadomena.net. IN A xxx.xxx.xxx.xxx mail.mojadomena.net. IN A xxx.xxx.xxx.xxx

Umjesto @ na pocetku zonske datoteke stavi mojadomena.net.

EDIT:
Nakon izmjena daj output naredbe:

Kod: Označi sve: dig @localhost mojadomena.net soa

i (ovo napravi za fw i rev zone)

Kod: Označi sve: named-checkzone mojadomena.net /putanja/do/zonske/datoteke

Output dig > soa:

Kod: Označi sve: mojadomena /etc/bind: dig @localhost mojadomena.net soa ; <<>> DiG 9.7.3 <<>> @localhost mojadomena.net soa ; ([b]2 servers found[/b]) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 36350 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;mojadomena.net. IN SOA ;; Query time: 0 msec ;; SERVER: ::1#53(::1) ;; WHEN: Fri Feb 15 17:12:15 2013 ;; MSG SIZE rcvd: 33

Vidim gore da je izvršen query 1? To je trenutno ili ukupno?

Reverse ne prolazi:

Kod: Označi sve: mojadom /etc/bind: named-checkzone mojadomena.net db1.mojadomena.net.reverse zone mojadomena.net/IN: NS 'ns.mojadomena.net' has no address records (A or AAAA) zone mojadomena.net/IN: not loaded due to errors.

FW:

Kod: Označi sve: GNU nano 2.2.4 File: db1.mojadomena.net $TTL 86400 @ IN SOA mojadomena.net. root.mojadomena.net. ( 2013021504 ; serial (d. adams) 3H ; refresh 15M ; retry 1W ; expiry 1D ) ; minimum IN NS ns.mojadomena.net IN MX 10 mail.mojadomena.net ns.mojadomena.net IN A 192.73.xxx.xxx mail.mojadomena.net IN A 192.73.xxx.xxx

Reverzna:

Kod: Označi sve: $TTL 86400 @ IN SOA mojadomena.net. root.mojadomena.net. ( 2013021504 ; serial (d. adams) 3H ; refresh 15M ; retry 1W ; expiry 1D ) ; minimum IN NS ns.mojadomena.net. 11 IN PTR ns.mojadomena.net. 15 IN PTR mail.mojadomena.net.

Fale ti tocke iza imena u forward zoni.

EDIT:
Ispravci zonskih datoteki.

forward:

Kod: Označi sve: GNU nano 2.2.4 File: db1.mojadomena.net $TTL 86400 mojadomena.net. IN SOA ns.mojadomena.net. root.mojadomena.net. ( 2013021504 ; serial (d. adams) 3H ; refresh 15M ; retry 1W ; expiry 1D ) ; minimum IN NS ns.mojadomena.net. IN MX 10 mail.mojadomena.net. ns.mojadomena.net. IN A 192.73.xxx.xxx mail.mojadomena.net. IN A 192.73.xxx.xxx mojadomena.net. IN A 192.73.xxx.xxx

Reverse:

Kod: Označi sve: $TTL 86400 mojadomena.net. IN SOA ns.mojadomena.net. root.mojadomena.net. ( 2013021504 ; serial (d. adams) 3H ; refresh 15M ; retry 1W ; expiry 1D ) ; minimum IN NS ns.mojadomena.net. 11 IN PTR ns.mojadomena.net. 15 IN PTR mail.mojadomena.net.

Napravi gore navedeno i daj output naredbe:

Kod: Označi sve: dig @localhost mojadomena.net NS dig @localhost mojadomena.net soa dig @localhost mojadomena.net A

checkzone:

Kod: Označi sve: mojadomena /etc/bind: named-checkzone mojadomena.net db1.mojadomena.net zone mojadomena.net/IN: loaded serial 2013021505 OK mojadomena /etc/bind: named-checkzone mojadomena.net db1.mojadomena.net.reverse zone mojadomena.net/IN: loaded serial 2013021505 OK

Konacno odgovorio zone. Hm, ali... >

Kod: Označi sve: mojadomena /etc/bind: named-checkconf -z zone mojadomena.net/IN: loaded serial 2013021505 /etc/bind/db1.mojadomena.net.reverse:12: ignoring out-of-zone data (ns.mojadomena.net) /etc/bind/db1.mojadomena.net.reverse:13: ignoring out-of-zone data (mail.mojadomena.net) zone mojadomena.reverse/IN: loaded serial 2013021505 zone localhost/IN: loaded serial 2 zone 127.in-addr.arpa/IN: loaded serial 1 zone 0.in-addr.arpa/IN: loaded serial 1 zone 255.in-addr.arpa/IN: loaded serial 1

FW:

Kod: Označi sve: mojadomena /etc/bind: cat db1.mojadomena.net $TTL 86400 @ IN SOA mojadomena.net. root.mojadomena.net. ( 2013021505 ; serial (d. adams) 3H ; refresh 15M ; retry 1W ; expiry 1D ) ; minimum IN NS ns.mojadomena.net. IN MX 10 mail.mojadomena.net. ns.mojadomena.net. IN A 192.73.xxx.xxx mail.mojadomena.net. IN A 192.73.xxx.xxx

REVERZ:

Kod: Označi sve: mojadomena /etc/bind: cat db1.mojadomena.net.reverse $TTL 86400 @ IN SOA mojadomena.net. root.mojadomena.net. ( 2013021505 ; serial (d. adams) 3H ; refresh 15M ; retry 1W ; expiry 1D ) ; minimum IN NS ns.mojadomena.net. 1 IN PTR ns.mojadomena.net. 201 IN PTR mail.mojadomena.net. ns.mojadomena.net. IN A 192.73.xxx.xxx mail.mojadomena.net. IN A 192.73.xxx.xxx

Pogledaj EDIT sekciju iznad svojeg zadnjeg posta.

U reverse zonu ne idu A rekordi, makni to van !

Linux za Sve forum

Unmanaged VPS + DNS BIND = DNS ne radi

Re: Unmanaged VPS + DNS BIND = DNS ne radi

Re: Unmanaged VPS + DNS BIND = DNS ne radi

Re: Unmanaged VPS + DNS BIND = DNS ne radi

Re: Unmanaged VPS + DNS BIND = DNS ne radi

Re: Unmanaged VPS + DNS BIND = DNS ne radi

Re: Unmanaged VPS + DNS BIND = DNS ne radi

Re: Unmanaged VPS + DNS BIND = DNS ne radi

Re: Unmanaged VPS + DNS BIND = DNS ne radi

Re: Unmanaged VPS + DNS BIND = DNS ne radi

Re: Unmanaged VPS + DNS BIND = DNS ne radi