I have assumed:
server1.example.com has IP 192.168.0.152
server2.example.com has IP 192.168.0.254
(Is www an alias to server2?, any way i've kept the setting for this as is in
all the files)
SERVFAIL indicates error in config file for the particular entry. NXDOMAIN
denotes entry not found in this domain.
@ indicates the domain in named.conf. so @ here indicates "example.com". as
you can see, there is no entry for server2.example.com. you'll find the result
for "nslookup example.com"
Supposedly Correct Forward Zone file
=============================================================================
$TTL 86400
$ORIGIN example.com.
@ 1D IN SOA server2 root.server2 (
43 ; serial
3H ; refresh
15M ; retry
1W ; expiry
1D ) ; minimum
1D IN NS server2.example.com.
localhost 1D IN A 127.0.0.1
server2 1D IN A 192.168.0.152
server1 1D IN A 192.168.0.254
www IN A 192.168.0.152
@ IN MX 10 server1.example.com.
server1 IN MX 10 server1.example.com.
===============================================================================
The reverse zone file and reverse zone config in /etc/named.conf also contains
problems.
Supposedly correct reverse zone file
=========================================================
$TTL 86400
@ IN SOA server2.example.com.
root.server2.example.com. (
1997022700 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS server2.example.com.
152 IN PTR server2.example.com.
254 IN PTR server1
=========================================================
Corrected entry in /etc/named.conf
========================================================
zone "0.168.192.in-addr.arpa" {
type master;
file "192.168.0.152.zone";
};
========================================================
In the DNS server, change the /etc/resolv.conf to:
==============================
search example.com
nameserver 127.0.0.1
===============================
check whether a firewall is blocking port 53:
use iptables -nL
if you see a lot of DENY, use iptables -F to open all ports temporarily. test
your DNS from other systems. then create the firewall to accept UDP requests to
port 53. (be sure to up your firealll. iptables -F opens all ports.)
For better understanding see the chapter "Setting up the network" in my Grid
computing tutorial at :
http://santanu-sinha.front.ru/grid_doc/index.html
Note: there may be some typo/spelling mistakes/wrong ip-name bindings in the
above files. i could not test these.
good luck and let me know if it worked.
-santanu
(If any help required,call me up at 2465-8725 after 10:30PM)
_________________________________________________________________
Powered by http://www.emailpinoy.com - Your 2 GB mailbox is waiting!
If this e-mail is a spam report it to us and we will delete this user's account
ASP.
--
To unsubscribe, send mail to [EMAIL PROTECTED] with the body
"unsubscribe ilug-cal" and an empty subject line.
FAQ: http://www.ilug-cal.org/node.php?id=3
