Re: [Pdns-users] pdns error sendto
On Mon, Feb 21, 2011 at 02:07:00PM +0800, Liong Kok Foo wrote: > Sorry for my noobness, but could you explain on what you mean by > local packet filter? Do you mean firewall? If yes, then what port do > I look? FYI, I have open port 53 tcp/udp for outgoing and incoming. You probably have iptables on your server itself blocking port 53. Bert ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com http://mailman.powerdns.com/mailman/listinfo/pdns-users
Re: [Pdns-users] Zone transfer MX record issue
On 21/02/2011 3:30 PM, bert hubert wrote: > On Mon, Feb 21, 2011 at 02:15:26PM +0800, p8x wrote: >> zone transfer from the primary PowerDNS seems to mangle the records >> slightly replacing occurrences of the domain with an "@" in some cases. >> This seems to work for all of the records except for the MX record. As >> an example, here is a copy of the domain from the primary server (please >> note: the domain is not actually test.com, a quick sed was done): > Hi 'p8x', > > This is a known bug in the BIND backend of 2.9.22, it is solved in 3.0 which > will be released shortly. > > From the release notes: > Aki Tuomi discovered that the BIND zonefile parser would misrepresent > 'something IN MX 15 @'. Fix in commit 1621. > > http://wiki.powerdns.com/trac/changeset/1621 > > Bert > Hi Bert, Many thanks, I missed that (trying to google for an @ is a nightmare!). Thanks, p8x ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com http://mailman.powerdns.com/mailman/listinfo/pdns-users
Re: [Pdns-users] Zone transfer MX record issue
On Mon, Feb 21, 2011 at 02:15:26PM +0800, p8x wrote: > zone transfer from the primary PowerDNS seems to mangle the records > slightly replacing occurrences of the domain with an "@" in some cases. > This seems to work for all of the records except for the MX record. As > an example, here is a copy of the domain from the primary server (please > note: the domain is not actually test.com, a quick sed was done): Hi 'p8x', This is a known bug in the BIND backend of 2.9.22, it is solved in 3.0 which will be released shortly. >From the release notes: Aki Tuomi discovered that the BIND zonefile parser would misrepresent 'something IN MX 15 @'. Fix in commit 1621. http://wiki.powerdns.com/trac/changeset/1621 Bert ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com http://mailman.powerdns.com/mailman/listinfo/pdns-users
[Pdns-users] Zone transfer MX record issue
Hi all, I have been trying to get a couple of PowerDNS servers working together. As a test I have installed PowerDNS on two different servers - Ubuntu Lucid x64 and Debian 6 32 bit. On the Ubuntu server the version of pdns-server is 2.9.22-3 and on the Debian server the version is 2.9.22-8 (both are from the official package repositories). I have placed the configuration for both servers at the bottom of the email to make it easier to read. I also have tried to switch the role of both servers (eg. make the master the slave and the other way around) to see if that makes any difference, but I get the same result. The issue I am experiencing is when the secondary name server does a zone transfer from the primary PowerDNS seems to mangle the records slightly replacing occurrences of the domain with an "@" in some cases. This seems to work for all of the records except for the MX record. As an example, here is a copy of the domain from the primary server (please note: the domain is not actually test.com, a quick sed was done): $ORIGIN . $TTL 3600 test.com. 86400 IN SOA ns1.test.com. admin.test.com. 2009012803 86400 7200 360 86400 test.com. 86400 IN NS ns1.test.com. test.com. 86400 IN NS ns2.test.com. test.com. 14400 IN A 123.123.123.123 test.com. 14400 IN MX 0 test.com. cpanel.test.com. 14400 IN A 123.123.123.123 ftp.test.com. 14400 IN A 123.123.123.123 localhost.test.com. 14400 IN A 127.0.0.1 mail.test.com. 14400 IN CNAME test.com. webdisk.test.com. 14400 IN A 123.123.123.123 webmail.test.com. 14400 IN A 123.123.123.123 whm.test.com. 14400 IN A 123.123.123.123 www.test.com. 14400 IN CNAME test.com. The zone works fine, and the correct MX is returned: ; <<>> DiG 9.7.0-P1 <<>> @123.123.123.123 MX test.com ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 14273 ;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1 ;; WARNING: recursion requested but not available ;; QUESTION SECTION: ;test.com. IN MX ;; ANSWER SECTION: test.com. 14400 IN MX 0 test.com. ;; ADDITIONAL SECTION: test.com. 14400 IN A 123.123.123.123 ;; Query time: 0 msec ;; SERVER: 123.123.123.123#53(123.123.123.123) ;; WHEN: Mon Feb 21 13:48:13 2011 If I check the zone after the zone transfer, the slave server has got this zone file: ; Written by PowerDNS, don't edit! ; Zone 'test.com' retrieved from master ; at Mon Feb 21 11:39:28 2011 @ 86400 SOA ns1.test.com. admin.test.com. 2009012803 86400 7200 360 86400 @ 14400 A 123.123.123.123 @ 86400 NS ns1.test.com. @ 86400 NS ns2.test.com. @ 14400 MX 0 @ cpanel 14400 A 123.123.123.123 ftp 14400 A 123.123.123.123 localhost 14400 A 127.0.0.1 mail14400 CNAME @ webdisk 14400 A 123.123.123.123 webmail 14400 A 123.123.123.123 whm 14400 A 123.123.123.123 www 14400 CNAME @ The MX line is the one causing the issue - the original MX was just to test.com. and it has replaced it with an @. The other records with an "@" are fine except for the MX. When I do a dig against the secondary name server, the MX record is returned almost literally (with an escape character by the looks): ; <<>> DiG 9.7.2-P3 <<>> @123.123.123.123 MX test.com ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4876 ;; flags: qr aa rd; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0 ;; WARNING: recursion requested but not available ;; QUESTION SECTION: ;test.com. IN MX ;; ANSWER SECTION: test.com. 14400 IN MX 0 \@.test.com. ;; Query time: 1 msec ;; SERVER: 123.123.123.123#53(123.123.123.123) ;; WHEN: Mon Feb 21 13:53:11 2011 ;; MSG SIZE rcvd: 61 I thought it could be the zone transfer itself failing, but zone transfers using dig with an AXFR query seems to spit out the correct records: ; <<>> DiG 9.7.2-P3 <<>> @123.123.123.123 AXFR test.com ; (1 server found) ;; global options: +cmd test.com. 86400 IN SOA ns1.test.com. admin.test.com. 2009012803 86400 7200 360 86400 test.com. 14400 IN A 123.123.123.123 test.com. 86400 IN NS ns1.test.com. test.com. 86400 IN NS ns2.test.com. test.com. 14400 IN MX 0 \@.test.com. cpanel.test.com.14400 IN A 123.123.123.123 ftp.test.com. 14400 IN A 123.123.123.123 localhost.test.com. 14400 IN A 127.0.0.1 mail.test.com. 14400 IN CNAME test.com. webdisk.test.com. 14400 IN A 123.123.123.123 webmail.test.com. 14400 IN A 123.123.123.123 whm.test.com.
Re: [Pdns-users] pdns error sendto
Sorry for my noobness, but could you explain on what you mean by local packet filter? Do you mean firewall? If yes, then what port do I look? FYI, I have open port 53 tcp/udp for outgoing and incoming. Liong Kok Foo On 2/18/2011 4:32 PM, Marc Haber wrote: On Fri, Feb 18, 2011 at 03:46:50PM +0800, Liong Kok Foo wrote: Few days ago my server got hacked into and someone deleted the /boot directory. We had to reformat the server and re-install everything. I manage to get everything back running however pdns is giving out some error. pdns[2873]: Error sending reply with sendto (socket=5): Operation not permitted See whether your local packet filter allows pdns to send out answers. Greetings Marc ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com http://mailman.powerdns.com/mailman/listinfo/pdns-users
Re: [Pdns-users] clarification of powerdns recursor statistics, input for munin-plugin
On Sun, Feb 20, 2011 at 11:21:12AM +0100, Ruben '_cyclops_' d'Arco wrote: > Also, you're from-address doesn't work, so any direct replies would > have failed. Kindly elaborate on that. Greetings Marc -- - Marc Haber | "I don't trust Computers. They | Mailadresse im Header Mannheim, Germany | lose things."Winona Ryder | Fon: *49 621 72739834 Nordisch by Nature | How to make an American Quilt | Fax: *49 3221 2323190 ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com http://mailman.powerdns.com/mailman/listinfo/pdns-users
Re: [Pdns-users] clarification of powerdns recursor statistics, input for munin-plugin
Hi, You're message got through. It was rather long which i think didn't help :-) Also, you're from-address doesn't work, so any direct replies would have failed. I personally run cacti as a graph tool. From the information others have posted here: http://forums.cacti.net/viewtopic.php?t=33395 and the manual: http://doc.powerdns.com/recursor-stats.html I was able to build good stats myself. The manual is missing some keys that you do get back from get-all. But do you really need all those graphs? For me, only cache statistics and reply-speed was interesting. Regards, Ruben On Sun, Feb 20, 2011 at 10:08:36AM +0100, Marc Haber wrote: > Hi, > > On Tue, Feb 15, 2011 at 10:51:19AM +0100, Marc Haber wrote: > > From: Marc Haber > > Subject: clarification of powerdns recursor statistics, input for > > munin-plugin > > To: pdns-users@mailman.powerdns.com > > Date: Tue, 15 Feb 2011 10:51:19 +0100 > > > I have written a "small" (~800 lines of perl) plugin for munin to > > viusalize the statistics written out by the pdns recursor by means of > > rec_control get-all. Example output of the plugin can be downloaded > > for some short period of time from > > http://q.bofh.de/~mh/stuff/munin-pdns-recursor.pdf > > > > Did my Message get through? Was something wrong with the message so > that nobody felt like commenting? > > Greetings > Marc > > -- > - > Marc Haber | "I don't trust Computers. They | Mailadresse im Header > Mannheim, Germany | lose things."Winona Ryder | Fon: *49 621 72739834 > Nordisch by Nature | How to make an American Quilt | Fax: *49 3221 2323190 > ___ > Pdns-users mailing list > Pdns-users@mailman.powerdns.com > http://mailman.powerdns.com/mailman/listinfo/pdns-users ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com http://mailman.powerdns.com/mailman/listinfo/pdns-users
[Pdns-users] injection entries into local recursor cache or importing cache dump during startup
Hi all, I wanted to learn if it is possible to a- injection entries into local recursor cache b- importing cache dump during startup My aims are a- returning local answers for some domain queries b- increase performance with dump the cache before stopping the service and import during startup of recursor process. Best Regards, ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com http://mailman.powerdns.com/mailman/listinfo/pdns-users
Re: [Pdns-users] clarification of powerdns recursor statistics, input for munin-plugin
Hi, On Tue, Feb 15, 2011 at 10:51:19AM +0100, Marc Haber wrote: > From: Marc Haber > Subject: clarification of powerdns recursor statistics, input for > munin-plugin > To: pdns-users@mailman.powerdns.com > Date: Tue, 15 Feb 2011 10:51:19 +0100 > I have written a "small" (~800 lines of perl) plugin for munin to > viusalize the statistics written out by the pdns recursor by means of > rec_control get-all. Example output of the plugin can be downloaded > for some short period of time from > http://q.bofh.de/~mh/stuff/munin-pdns-recursor.pdf Did my Message get through? Was something wrong with the message so that nobody felt like commenting? Greetings Marc -- - Marc Haber | "I don't trust Computers. They | Mailadresse im Header Mannheim, Germany | lose things."Winona Ryder | Fon: *49 621 72739834 Nordisch by Nature | How to make an American Quilt | Fax: *49 3221 2323190 ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com http://mailman.powerdns.com/mailman/listinfo/pdns-users
