[brlug-general] BIND 8 under FreeBSD fails to work when set to listen on an interface alias.

Thu, 17 Apr 2003 20:04:43 -0500 

We are working with BIND 8.2.4-REL on a test FreeBSD 4.4-RELEASE box. On 
this box I have two IP addresses assigned to interface rl0 and rl0:1 (the 
alias). So we have:

rl0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
         inet 10.0.0.21 netmask 0xffffff00 broadcast 10.0.0.255
         inet6 fe80::250:baff:fe60:7b83%rl0 prefixlen 64 scopeid 0x1
         inet 10.0.0.13 netmask 0xffffffff broadcast 10.0.0.13
         ether 00:50:ba:60:7b:83
         media: Ethernet autoselect (100baseTX <full-duplex>)
         status: active

If I specify the following in named.conf then everything works:

listen-to { 192.168.1.21; };

However, if I specify the following then I get an error when testing with 
nslookup or dig:

listen-to { 192.168.1.13; };

Here is the error:

$  nslookup - 10.0.0.13
*** Can't find server name for address 10.0.0.13: No response from server
*** Default servers are not available

And yes, named is running:

# ps -ax | grep named
94672  ??  Ss     0:00.05 usr/sbin/named -u bind -g bind -t /usr/jail/named 
-b etc/namedb/named.conf
# sockstat -l4 | grep named
bind     named    96805   20 udp4   10.0.0.13:53          *:*
bind     named    96805   21 tcp4   10.0.0.13:53          *:*
# telnet 10.0.0.13 53
Trying 10.0.0.13...
Connected to 10.0.0.13.
Escape character is '^]'.
^]
telnet> quit
Connection closed.

Also, if I set /etc/resolv.conf to use 10.0.0.13 then most services that 
depend on name resolution begin to fail. In other words, I are pretty sure 
this is a named issue and not nslookup. However, I am very open to being 
corrected on this matter.

Has anyone else stumbled across this issue? What was your solution? I am 
unsure of the actual problem at this point and would appreciate any 
suggestions.

Here is options section of our named.conf:

...
// This works.
options {
         directory "/etc/namedb";

         listen-on { 10.0.0.21; };

         // we have a firewall between us and the Internet, so let's
         // go ahead and define our query source port
         query-source address 10.0.0.21 port 53;
};
...

...
// This does not work;
options {
         directory "/etc/namedb";

         listen-on { 10.0.0.13; };

         // we have a firewall between us and the Internet, so let's
         // go ahead and define our query source port
         query-source address 10.0.0.13 port 53;
};
...

---
Dustin Puryear <[EMAIL PROTECTED]>
Puryear Information Technology
Windows, UNIX, and IT Consulting
http://www.puryear-it.com

Reply via email to