Permission denied when creating DNS journal entries...

Hi,

In our setup, DHCP is served by our Linksys router. I am trying to
configure a Fedora box (hostname einstein) to act as a DNS server.

It appears the DNS functionality is working okay. Other computers on
the network can point to this Fedora machine as the DNS server and are
able to resolve dns names.

What is not working is the dynamic update of DNS records.

To test the setup, I run "ipconfig /renew" from a Windows client
(hostname newton). Here are the entries from /var/log/messages:

Aug 13 02:36:15 einstein named[2505]: client 192.168.15.108#1256:
updating zone 'mycompany.com/IN': deleting rrset at
'newton.mycompany.com' A
Aug 13 02:36:15 einstein named[2505]: client 192.168.15.108#1256:
updating zone mycompany.com/IN': adding an RR at 'newton.mycompany.com'
A
Aug 13 02:36:15 einstein named[2505]: journal file mycompany.zone.jnl
does not exist, creating it
Aug 13 02:36:15 einstein named[2505]: mycompany.zone.jnl: create:
permission denied
Aug 13 02:36:15 einstein named[2505]: client 192.168.15.108#1256:
updating zone 'mycompany.com/IN': error: journal open failed:
unexpected error

I tried the following commands:
chown named:named /var/named
chown named:named /var/named/*
chmod 777 /var/named
chmod 777 /var/named/*

However, the problem still does not go away.

I also tried the following but it doesn't work:
chown root:root /var/named
chown root:root /var/named/*
chmod 777 /var/named
chmod 777 /var/named/*

Can someone please tell me what am I missing?

Thank you in advance for your help.

Pradeep

Can anyone please help me? I haven't been able to figure out what to
do.

Thank you in advance for your help.

Pradeep

Pradeep <(E-Mail Removed)> wrote:
> Can anyone please help me? I haven't been able to figure out what to
> do.

Do what? Ah, I see; you've put your question the subject.
==> Subject: Re: Permission denied when creating DNS journal entries...

It's always worth putting a subject (summary line, if you will) in
the subject, and stating your question in some detail in the body of
your message.

The journal directory needs to be writable. To get much more detail than
that and you'll have to post some detail yourself. For example, what
/exactly/ you're trying to do, and how you're doing it (maybe which HOWTO
you're following), etc. Oh, and a precise error message would help, too.

Chris

"Pradeep" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed) oups.com...
> Can anyone please help me? I haven't been able to figure out what to
> do.
>
> Thank you in advance for your help.
>
> Pradeep
>

Pradeep,

Find where your system has the zone files.
(Perhaps /var/named/chroot/var/named ? )

Example of zone files:

10.0.0
home.org

Now, simply create the journal files like this:
touch 10.0.0.jnl
touch home.org.jnl

chown named 10.0.0.jnl
chown named home.org.jnl

chmod 660 *.jnl

Now restart the DNS daemon:
service named stop
service named start

Enjoy,
Postmaster

Postmaster,

Thank you for your help.

After reading "named" documentation to the end, I discovered a blurb on
SELinux and how it prevents updating /var/named directory by default.
Disabling SELinux solved my problem. As this machine is solely used for
internal DNS and is not exposed to extranet, I guess it is okay to
disable SELinux.

Regards,
Pradeep