New DNS Server HELP

Sorry, this will probably be simple.

I dont claim to be an expert, have been running a redhat box for 8
years with good dns/sendmail/web over that time.

Moving up in the world - new location, new dedicated pipe, new box...
doing a fedora install from scratch myself...

Got it all going.

Got DSL line, Static IP on router, plus 8 IP's for me (5 for machines -
1 gateway, 1 broadcast etc)

Anyway, on the new box, i have configured basic Named.

editing in console, the named.conf and named files..

So i am trying to get it going with just one domain to start with.

and when i do a NSLOOKUP on the New box:
[root@NEWBOX etc]# nslookup testdomain.com newbox.domain.com.au
Server: newbox.domain.com.au
Address: IP.IP.IP.IP#53

Name: testdomain.com
Address: IP.IP.IP.IP


all looks good...

but on another box wayoutside on another network:

[root@)OLDBOX]# nslookup testdomain.com newbox.domain.com.au
*** Can't find server name for address IP.IP.IP.IP: No response from
server
*** Default servers are not available

whats all that about?

seems to be not running... BUT IT IS!
[root@NEWBOX etc]# /etc/init.d/named status
number of zones: 4
debug level: 0
xfers running: 0
xfers deferred: 0
soa queries in progress: 0
query logging is OFF
recursive clients: 0/1000
tcp clients: 0/100
server is up and running




any advice?

Thanks

james_irvine wrote:
> Sorry, this will probably be simple.
>
> I dont claim to be an expert, have been running a redhat box for 8
> years with good dns/sendmail/web over that time.
>
> Moving up in the world - new location, new dedicated pipe, new box...
> doing a fedora install from scratch myself...
>
> Got it all going.
>
> Got DSL line, Static IP on router, plus 8 IP's for me (5 for machines -
> 1 gateway, 1 broadcast etc)
>
> Anyway, on the new box, i have configured basic Named.
>
> editing in console, the named.conf and named files..
>
> So i am trying to get it going with just one domain to start with.
>
> and when i do a NSLOOKUP on the New box:
> [root@NEWBOX etc]# nslookup testdomain.com newbox.domain.com.au
> Server: newbox.domain.com.au
> Address: IP.IP.IP.IP#53
>
> Name: testdomain.com
> Address: IP.IP.IP.IP
>
>
> all looks good...
>
> but on another box wayoutside on another network:
>
> [root@)OLDBOX]# nslookup testdomain.com newbox.domain.com.au
> *** Can't find server name for address IP.IP.IP.IP: No response from
> server
> *** Default servers are not available
>
> whats all that about?
>
> seems to be not running... BUT IT IS!
> [root@NEWBOX etc]# /etc/init.d/named status
> number of zones: 4
> debug level: 0
> xfers running: 0
> xfers deferred: 0
> soa queries in progress: 0
> query logging is OFF
> recursive clients: 0/1000
> tcp clients: 0/100
> server is up and running
>
>
>
>
> any advice?
>
> Thanks
>


It could be a networking issue rather than DNS itself.

On the DNS server you could use:

tcpdump -i ethx port 53

then test again. You should be able to set the request hit your server.
If not check your firewall(s). If you do see the request it sounds
like a named issue.

Scott R. Haven
Sr. Systems Engineer
Paisley Systems Inc.
managed services, consulting, and support
www.paisleysystems.com

very interesting


16:28:37.228984 IP oldbox.domain.com.au.2892 > localhost.domain:
52961+ PTR? IP.IP.IP.202.in-addr.arpa. (44)
16:28:37.250074 IP oldbox.domain.com.au.2892 > localhost.domain:
52961+ PTR? IP.IP.IP.202.in-addr.arpa. (44)

so the request is coming through - does this make it a reverse DNS
issue or a named issue?

james_irvine wrote:
> very interesting
>
>
> 16:28:37.228984 IP oldbox.domain.com.au.2892 > localhost.domain:
> 52961+ PTR? IP.IP.IP.202.in-addr.arpa. (44)
> 16:28:37.250074 IP oldbox.domain.com.au.2892 > localhost.domain:
> 52961+ PTR? IP.IP.IP.202.in-addr.arpa. (44)
>
> so the request is coming through - does this make it a reverse DNS
> issue or a named issue?
>

James,

I don't see the server's reply here. It seems it isn't responding.

Do you have iptables on? or something similar?

If not i'm guessing a /etc/named.conf issue or maybe a bad SOA line?

I'd try this:

backup your config then run the RedHat GUI tool and create a simple
configuration and retest. Then compare the new config with yours. This
whole problem could come down to a tiny typo.

Scott R. Haven
Sr. Systems Engineer
Managed Security Services
Paisley Systems, Inc.
http://www.paisleysystems.com