Re: What is --- WRONG --- with my network?
On Sat, May 07, 2005 at 05:56:16AM -0500, Fafa Hafiz Krantz wrote: > > Hello Alex (and Jan)! > > > It could be that type slave files need to go in the subdirectory slave > > and type master files need to go in the subdirectory master. > > named doesn't give me any errors. > As I previously stated, my setup has been running flawlessly for months. Read the manual and run it with debug information. > > Check you /var/log/messages for errors about this. > > That what I find strange too. > /var/log/messages doesn't contain anything but the snort initialization! > And /var/named/var/log is totally empty. > > Here is my security run though. Maybe PF is denying something by default? No. A firewall can stop DNS request from passing though, but it doesn't stop named from running. > Even though I removed it from rc.conf at one time, and problems still > persisted, > there might have been something evil lurking in the back. I've had this > problem > with IPFW, where I'd have to compile an option into my kernel for it not to > block everything. I think you just have configuration problem. -- Alex ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: What is --- WRONG --- with my network?
Hello Alex (and Jan)! > It could be that type slave files need to go in the subdirectory slave > and type master files need to go in the subdirectory master. named doesn't give me any errors. As I previously stated, my setup has been running flawlessly for months. > Check you /var/log/messages for errors about this. That what I find strange too. /var/log/messages doesn't contain anything but the snort initialization! And /var/named/var/log is totally empty. Here is my security run though. Maybe PF is denying something by default? Even though I removed it from rc.conf at one time, and problems still persisted, there might have been something evil lurking in the back. I've had this problem with IPFW, where I'd have to compile an option into my kernel for it not to block everything. ninja.example.com pf denied packets: > block drop log all [ Evaluations: 184912 Packets: 5453 Bytes: 536087 States: > 0 ] Mail in local queue: -Queue ID- --Size-- Arrival Time -Sender/Recipient--- 4E3A5154544 Fri May 6 15:09:27 [EMAIL PROTECTED] (host London-com.mr.Outblaze.com[205.158.62.33] said: 450 <[EMAIL PROTECTED]>: No thank you rejected: Domain not found (in reply to RCPT TO command)) [EMAIL PROTECTED] I've put all relevant configuration (kernel, rc, pf, named etc.) into: http://home.faeldryn.org/~mujahid/problem.tgz Thanks guys! -- Fafa Hafiz Krantz Research Designer @ http://www.home.no/barbershop Enlightened @ http://www.home.no/barbershop/smart/sharon.pdf -- ___ Sign-up for Ads Free at Mail.com http://promo.mail.com/adsfreejump.htm ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: What is --- WRONG --- with my network?
Hey!
> Offlist because this sounds like a general networking thing rather than
> anything fbsd-specific.
Alright. But just incase though ...
> Name resolution of nextgentel.{com,net} looks ok from here, if those IP
> addresses are accurate. When you say your nameserver is broken, what
> exactly do you mean by that? What's the evidence?
I know this sounds very strange;
but I mean that everything depending on my nameserver doesn't work.
I cannot visit http://www.example.com although apache2 is running.
I cannot receive e-mails to [EMAIL PROTECTED] although postfix is running.
I cannot SSH to ninja.example.com although my sshd is running.
I cannot FTP to ninja.example.com although the internal ftpd is running.
That's for the incoming.
For the outgoing, I can browse the WWW and make SSH/FTP connections
to certain sites (sites which don't try to resolve my IP).
Thanks, Jan.
--
Fafa Hafiz Krantz
Research Designer @ http://www.home.no/barbershop
Enlightened @ http://www.home.no/barbershop/smart/sharon.pdf
--
___
Sign-up for Ads Free at Mail.com
http://promo.mail.com/adsfreejump.htm
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: What is --- WRONG --- with my network?
On Fri, May 06, 2005 at 08:20:54AM -0500, Fafa Hafiz Krantz wrote:
>
> > Unfortunately, you appear to be preemptively rejecting the most obvious
> > advice, and implicitly asking that people start troubleshooting "from
> > the middle". Was your machine up without reboot for months? If so,
> > there's no guarantee that the state of named.conf actually reflects the
> > state of the previously running named prior to a reboot (alas, I've seen
> > this all too often).
>
> No, I had been rooting it quite often since I was testing PF.
>
> > Can you begin by posting your fully-functional named.conf and
> > resolv.conf? And possibly describing exactly what you mean by "my
> > nameserver is dysfunctional"? Do you mean that you cannot resolve
> > addresses from your host? Does dig work against your local nameserver
> > instance? Can you see any of the root servers with dig? Is named just
> > refusing to start? ... and so on.
>
> # cat /var/named/etc/namedb/named.conf
> #
>
>options {
> directory "/etc/namedb";
> pid-file "/var/run/named/pid";
>};
I also have:
dump-file "/var/dump/named_dump.db";
statistics-file "/var/stats/named.stats";
>
>zone "." {
> type hint;
> file "named.root";
>};
>
>zone "domain.com" {
> type master;
> file "db.domain.com";
> allow-transfer { 209.98.223.41; };
>};
>
>zone "3.0.7.5.0.0.4.0.8.1.6.0.1.0.0.2.ip6.arpa" {
> type master;
> file "db.terrabionic.com.rev";
> allow-transfer { 209.98.223.41; };
>};
>
>zone "terrabionic.lan" {
> type master;
> file "db.terrabionic.lan";
>};
>
>zone "187.168.192.in-addr.arpa" {
> type master;
> file "db.terrabionic.lan.rev";
>};
>
>zone "0.0.127.in-addr.arpa" {
> type master;
> file "db.localhost.rev";
>};
It could be that type slave files need to go in the subdirectory slave
and type master files need to go in the subdirectory master. I have
this:
/*
zone "example.com" {
type slave;
file "slave/example.com";
masters {
192.168.1.1;
};
};
zone "0.168.192.in-addr.arpa" {
type slave;
file "slave/0.168.192.in-addr.arpa";
masters {
192.168.1.1;
};
};
*/
Check you /var/log/messages for errors about this.
--
Alex
Please copy the original recipients, otherwise I may not read your reply.
WWW: http://www.kruijff.org/alex/FreeBSD/
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: What is --- WRONG --- with my network?
On Fri, May 06, 2005 at 07:37:19AM -0500, Fafa Hafiz Krantz wrote: > > Hello boys! > > I just spent a few days doing a make world and kernel. > My machine is terribly slow. Yet, my network problem hasn't > gone away. This shows that it wasn't an asynchronisation > between my world and kernel. I've also compiled io and mem > into my new kernel. > > Here is my problem description: > > * My nameserver setup is disfunctional. > * My web, mail and fileserver is disfunctional. > * I cannot SSH and FTP into certain servers. > * I cannot ping my IP from the outside. > * My ISP controls the PTR of my reverse DNS lookup. >This fails to resolve too. What error messages can you see afther you have reboot in /var/log/messages? (My gut feeling says its a named related problem) -- Alex Please copy the original recipients, otherwise I may not read your reply. WWW: http://www.kruijff.org/alex/FreeBSD/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: What is --- WRONG --- with my network?
> Unfortunately, you appear to be preemptively rejecting the most obvious
> advice, and implicitly asking that people start troubleshooting "from
> the middle". Was your machine up without reboot for months? If so,
> there's no guarantee that the state of named.conf actually reflects the
> state of the previously running named prior to a reboot (alas, I've seen
> this all too often).
No, I had been rooting it quite often since I was testing PF.
> Can you begin by posting your fully-functional named.conf and
> resolv.conf? And possibly describing exactly what you mean by "my
> nameserver is dysfunctional"? Do you mean that you cannot resolve
> addresses from your host? Does dig work against your local nameserver
> instance? Can you see any of the root servers with dig? Is named just
> refusing to start? ... and so on.
# cat /var/named/etc/namedb/named.conf
#
options {
directory "/etc/namedb";
pid-file "/var/run/named/pid";
};
zone "." {
type hint;
file "named.root";
};
zone "domain.com" {
type master;
file "db.domain.com";
allow-transfer { 209.98.223.41; };
};
zone "3.0.7.5.0.0.4.0.8.1.6.0.1.0.0.2.ip6.arpa" {
type master;
file "db.terrabionic.com.rev";
allow-transfer { 209.98.223.41; };
};
zone "terrabionic.lan" {
type master;
file "db.terrabionic.lan";
};
zone "187.168.192.in-addr.arpa" {
type master;
file "db.terrabionic.lan.rev";
};
zone "0.0.127.in-addr.arpa" {
type master;
file "db.localhost.rev";
};
# cat /etc/resolv.conf
#
domain terrabionic.com
nameserver 217.13.4.21
nameserver 217.13.7.136
> You'll probably have to be more explicit about "certain servers", too.
> Are they on-site? Off-site? If the latter, and the issue only appears
> with a subset of ssh servers, this may well be indicative of DNS
> problems again, since sshds can be configured to be more or less picky
> about the name resolution of their clients.
They were off-site FTP servers, some inside Norway and some outside. I'm
guessing it is those who check for reverse before they grant access.
--
Fafa Hafiz Krantz
Research Designer @ http://www.home.no/barbershop
Enlightened @ http://www.home.no/barbershop/smart/sharon.pdf
--
___
Sign-up for Ads Free at Mail.com
http://promo.mail.com/adsfreejump.htm
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: What is --- WRONG --- with my network?
On Fri, 6 May 2005, Fafa Hafiz Krantz wrote: > > Hello boys! > > I just spent a few days doing a make world and kernel. > My machine is terribly slow. Yet, my network problem hasn't > gone away. This shows that it wasn't an asynchronisation > between my world and kernel. I've also compiled io and mem > into my new kernel. > > Here is my problem description: > > * My nameserver setup is disfunctional. > * My web, mail and fileserver is disfunctional. > * I cannot SSH and FTP into certain servers. > * I cannot ping my IP from the outside. > * My ISP controls the PTR of my reverse DNS lookup. >This fails to resolve too. > > PF is disabled. > > My configuration has been running flawlessly for the past > few months before this strange happening occured. I know for > a fact that this is not related to a misconfigured rc.conf > or named.conf. Maybe it is my ISP? Unfortunately, you appear to be preemptively rejecting the most obvious advice, and implicitly asking that people start troubleshooting "from the middle". Was your machine up without reboot for months? If so, there's no guarantee that the state of named.conf actually reflects the state of the previously running named prior to a reboot (alas, I've seen this all too often). Can you begin by posting your fully-functional named.conf and resolv.conf? And possibly describing exactly what you mean by "my nameserver is dysfunctional"? Do you mean that you cannot resolve addresses from your host? Does dig work against your local nameserver instance? Can you see any of the root servers with dig? Is named just refusing to start? ... and so on. You'll probably have to be more explicit about "certain servers", too. Are they on-site? Off-site? If the latter, and the issue only appears with a subset of ssh servers, this may well be indicative of DNS problems again, since sshds can be configured to be more or less picky about the name resolution of their clients. Have you tried to resolve the PTR record for your IP address from offsite? If this is failing, it's possibly the root cause of a lot of your problems, and you'd need to raise it with your ISP. Cheers, jan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
What is --- WRONG --- with my network?
Hello boys! I just spent a few days doing a make world and kernel. My machine is terribly slow. Yet, my network problem hasn't gone away. This shows that it wasn't an asynchronisation between my world and kernel. I've also compiled io and mem into my new kernel. Here is my problem description: * My nameserver setup is disfunctional. * My web, mail and fileserver is disfunctional. * I cannot SSH and FTP into certain servers. * I cannot ping my IP from the outside. * My ISP controls the PTR of my reverse DNS lookup. This fails to resolve too. PF is disabled. My configuration has been running flawlessly for the past few months before this strange happening occured. I know for a fact that this is not related to a misconfigured rc.conf or named.conf. Maybe it is my ISP? # dmesg # Copyright (c) 1992-2005 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. FreeBSD 5.4-STABLE #0: Thu May 5 22:54:49 CEST 2005 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/NINJA Timecounter "i8254" frequency 1193182 Hz quality 0 CPU: Pentium/P54C (119.75-MHz 586-class CPU) Origin = "GenuineIntel" Id = 0x52c Stepping = 12 Features=0x1bf real memory = 100663296 (96 MB) avail memory = 93036544 (88 MB) Intel Pentium detected, installing workaround for F00F bug npx0: on motherboard npx0: INT 16 interface cpu0 on motherboard pcib0: pcibus 0 on motherboard pci0: on pcib0 isab0: at device 7.0 on pci0 isa0: on isab0 pci0: at device 8.0 (no driver attached) lnc0: port 0xff80-0xff9f irq 10 at device 11.0 on pci0 lnc0: Attaching PCNet/PCI Ethernet adapter lnc0: Ethernet address: 00:00:4b:30:1e:94 lnc0: if_start running deferred for Giant lnc0: PCnet-PCI pci0: at device 17.0 (no driver attached) pci0: at device 19.0 (no driver attached) orm0: at iomem 0xed000-0xedfff,0xc-0xc7fff on isa0 ata0 at port 0x3f6,0x1f0-0x1f7 irq 14 on isa0 ata1 at port 0x376,0x170-0x177 irq 15 on isa0 atkbdc0: at port 0x64,0x60 on isa0 atkbd0: irq 1 on atkbdc0 kbd0 at atkbd0 fdc0: at port 0x3f0-0x3f5 irq 6 drq 2 on isa0 fd0: <1440-KB 3.5" drive> on fdc0 drive 0 sc0: at flags 0x100 on isa0 sc0: VGA <16 virtual consoles, flags=0x300> sio0 at port 0x3f8-0x3ff irq 4 flags 0x10 on isa0 sio0: type 16550A sio1: configured irq 3 not in bitmap of probed irqs 0 sio1: port may not be enabled vga0: at port 0x3c0-0x3df iomem 0xa-0xb on isa0 ep0: <3Com 3C509B-Combo EtherLink III (PnP)> at port 0x210-0x21f irq 3 on isa0 ep0: Ethernet address: 00:a0:24:1b:2b:a6 unknown: can't assign resources (port) psmcpnp0: irq resource info is missing; assuming irq 12 unknown: can't assign resources (port) unknown: can't assign resources (port) unknown: can't assign resources (port) unknown: can't assign resources (port) Timecounter "TSC" frequency 119753009 Hz quality 800 Timecounters tick every 10.000 msec ad0: 38166MB [77545/16/63] at ata0-master PIO4 Mounting root from ufs:/dev/ad0s1a pflog0: promiscuous mode enabled pflog0: promiscuous mode disabled lnc0: promiscuous mode enabled # ifconfig # lnc0: flags=108943 mtu 1500 inet 213.18X.XXX.70 netmask 0xff00 broadcast 213.187.XXX.XX inet6 fe80::200:4bff:fe30:1e94%lnc0 prefixlen 64 scopeid 0x1 ether 00:00:4b:30:1e:94 ep0: flags=8843 mtu 1500 inet 192.168.187.1 netmask 0xff00 broadcast 192.168.187.255 inet6 fe80::2a0:24ff:fe1b:2ba6%ep0 prefixlen 64 scopeid 0x2 ether 00:a0:24:1b:2b:a6 media: Ethernet 10baseT/UTP pflog0: flags=0<> mtu 33208 lo0: flags=8049 mtu 16384 inet 127.0.0.1 netmask 0xff00 inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x4 # netstat -rn # netstat: kvm not available Routing tables rt_tables: symbol not in namelist After the make world and make kernel, it now works: # netstat -rn # Routing tables Internet: DestinationGatewayFlagsRefs Use Netif Expire default213.18X.XXX.69 UGS 0 3011 lnc0 127.0.0.1 127.0.0.1 UH 04lo0 192.168.187link#2 UC 00ep0 192.168.187.2 00:11:85:df:7d:9b UHLW0 3050ep0731 213.18X.XXXlink#1 UC 00 lnc0 213.18X.XXX.69 00:90:d0:f4:d8:01 UHLW10 lnc0569 Somebody please assist me. This is a medical emergency! Tank you. -- Fafa Hafiz Krantz Research Designer @ http://www.home.no/barbershop Enlightened @ http://www.home.no/barbershop/smart/sharon.pdf -- ___ Sign-up for Ads Free at Mail.com http://promo.mail.com/ad
Re: What is *** WRONG *** with my network?
Fafa Diliha Romanova wrote: > # netstat -rn > # > netstat: kvm not available > Routing tables > rt_tables: symbol not in namelist If it isn't in the kernel config, you may need: # kldload mem to get this to work. Rob. __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: What is *** WRONG *** with my network?
On 5/2/05, Fafa Diliha Romanova <[EMAIL PROTECTED]> wrote: > Hello. > > Something is terribly wrong here: > > 1. My name server setup is disfunctional. > 2. My web, mail and fileserver is disfunctional. > 3. I cannot SSH and FTP into certain servers. > 4. I cannot ping my IP from the outside. > 5. All this despite PF being disabled. > > My configuration has been running flawlessly for > the past few months before these strange errors > hit me three days ago. > > I know for a fact that this is not related to a > misconfigured rc.conf, pf.conf or named.conf. > I haven't run a makeworld lately, nor have I > upgraded any ports. > > # uname -rs > # > FreeBSD 5.4-STABLE > > # ifconfig > # > lnc0: flags=108943 mtu 1500 > inet 213.187.XXX.XX netmask 0xff00 broadcast 213.187.XXX.XX > inet6 fe80::200:4bff:fe30:1e94%lnc0 prefixlen 64 scopeid 0x1 > ether 00:00:4b:30:1e:94 > ep0: flags=8843 mtu 1500 > inet 192.168.187.1 netmask 0xff00 broadcast 192.168.187.255 > inet6 fe80::2a0:24ff:fe1b:2ba6%ep0 prefixlen 64 scopeid 0x2 > ether 00:a0:24:1b:2b:a6 > media: Ethernet 10baseT/UTP > pflog0: flags=0<> mtu 33208 > lo0: flags=8049 mtu 16384 > inet 127.0.0.1 netmask 0xff00 > inet6 ::1 prefixlen 128 > inet6 fe80::1%lo0 prefixlen 64 scopeid 0x4 > > # netstat -rn > # > netstat: kvm not available > Routing tables > rt_tables: symbol not in namelist Is your base system and kernel in sync? Try cvsup'ing your base system then buildworld, buildkernel, installkernel, installworld. Chris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: What is *** WRONG *** with my network?
Thank you Jerry! I'll get right on the building! > These are signs of a kernel that is out of sync with the rest of "world". > You said you didn't run a makeworld recently, but what about rebuilding > the kernel? -- Fafa Hafiz Krantz Senior Designer @ http://www.home.no/barbershop Truth @ http://www.home.no/barbershop/smart/sharon.pdf -- ___ Sign-up for Ads Free at Mail.com http://promo.mail.com/adsfreejump.htm ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: What is *** WRONG *** with my network?
These are signs of a kernel that is out of sync with the rest of "world". You said you didn't run a makeworld recently, but what about rebuilding the kernel? > # netstat -rn > # > netstat: kvm not available > Routing tables > rt_tables: symbol not in namelist Jerry http://www.syslog.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
What is *** WRONG *** with my network?
Hello. Something is terribly wrong here: 1. My name server setup is disfunctional. 2. My web, mail and fileserver is disfunctional. 3. I cannot SSH and FTP into certain servers. 4. I cannot ping my IP from the outside. 5. All this despite PF being disabled. My configuration has been running flawlessly for the past few months before these strange errors hit me three days ago. I know for a fact that this is not related to a misconfigured rc.conf, pf.conf or named.conf. I haven't run a makeworld lately, nor have I upgraded any ports. # uname -rs # FreeBSD 5.4-STABLE # ifconfig # lnc0: flags=108943 mtu 1500 inet 213.187.XXX.XX netmask 0xff00 broadcast 213.187.XXX.XX inet6 fe80::200:4bff:fe30:1e94%lnc0 prefixlen 64 scopeid 0x1 ether 00:00:4b:30:1e:94 ep0: flags=8843 mtu 1500 inet 192.168.187.1 netmask 0xff00 broadcast 192.168.187.255 inet6 fe80::2a0:24ff:fe1b:2ba6%ep0 prefixlen 64 scopeid 0x2 ether 00:a0:24:1b:2b:a6 media: Ethernet 10baseT/UTP pflog0: flags=0<> mtu 33208 lo0: flags=8049 mtu 16384 inet 127.0.0.1 netmask 0xff00 inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x4 # netstat -rn # netstat: kvm not available Routing tables rt_tables: symbol not in namelist Somebody please assist me. This is a medical emergency! Thank you. -- Fafa -- ___ Sign-up for Ads Free at Mail.com http://promo.mail.com/adsfreejump.htm ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
