Cannot create A record issue
I can't seem to create an extra A record that works. I've created A records for ns1 and mail and they work if I do a bind lookup, but nothing else works. I did a lot of research before reaching out here. This is my zone file. Remote.example.com never works...This is Bind9 running on Ubuntu server. Main zone file ; $TTL604800 @ IN SOA ns1.example.com. root.example.com. ( 10; Serial 604800 ; Refresh 86400 ; Retry 2419200 ; Expire 604800 ) ; Negative Cache TTL ; @ IN NS ns1.example.com. @INMX 10mail.example.com. ; IN A 69.62.x.x ; IN ::1 ;IN SPF v=spf1 ptr -all ; IN TXT v=spf1 ptr -all ns1 INA 69.62.x.x mail INA 69.62.x.x www INA 69.62.x.x remoteIN A 69.62.x.x Rev lookup: ; BIND reverse data file for local loopback interface ; $TTL604800 @ IN SOA ns1.example.com. example.com. ( 1 ; Serial 604800 ; Refresh 86400 ; Retry 2419200 ; Expire 604800 ) ; Negative Cache TTL ; @ IN NS ns1. 215 IN PTR ns1.example.com. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Cannot create A record issue
Are you sure BIND is loading the zone file? Are you remembering to update the SOA / serial? Are you restarting BIND after making changes? If you make a change (and update the SOA), if you do: dig soa example.com do you see the new serial #? W On Feb 20, 2013, at 12:40 PM, Jsilliman jsilli...@gmail.com wrote: I can't seem to create an extra A record that works. I've created A records for ns1 and mail and they work if I do a bind lookup, but nothing else works. I did a lot of research before reaching out here. This is my zone file. Remote.example.com never works...This is Bind9 running on Ubuntu server. Main zone file ; $TTL604800 @ IN SOA ns1.example.com. root.example.com. ( 10; Serial 604800 ; Refresh 86400 ; Retry 2419200 ; Expire 604800 ) ; Negative Cache TTL ; @ IN NS ns1.example.com. @INMX 10mail.example.com. ; IN A 69.62.x.x ; IN ::1 ;IN SPF v=spf1 ptr -all ; IN TXT v=spf1 ptr -all ns1 INA 69.62.x.x mail INA 69.62.x.x www INA 69.62.x.x remoteIN A 69.62.x.x Rev lookup: ; BIND reverse data file for local loopback interface ; $TTL604800 @ IN SOA ns1.example.com. example.com. ( 1 ; Serial 604800 ; Refresh 86400 ; Retry 2419200 ; Expire 604800 ) ; Negative Cache TTL ; @ IN NS ns1. 215 IN PTR ns1.example.com. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users -- Go on, prove me wrong. Destroy the fabric of the universe. See if I care. -- Terry Prachett ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Cannot create A record issue
Just to cover all the bases, you're doing your lookup directly against your server, correct? Easy to accidentally query a different nameserver and not see what you're expecting. Otherwise I'd second Warren's suggestion to double-check your serial number. John On 02/20/2013 12:40 PM, Jsilliman wrote: I can't seem to create an extra A record that works. I've created A records for ns1 and mail and they work if I do a bind lookup, but nothing else works. I did a lot of research before reaching out here. This is my zone file. Remote.example.com never works...This is Bind9 running on Ubuntu server. Main zone file ; $TTL604800 @ IN SOA ns1.example.com. root.example.com. ( 10; Serial 604800 ; Refresh 86400 ; Retry 2419200 ; Expire 604800 ) ; Negative Cache TTL ; @ IN NS ns1.example.com. @INMX 10mail.example.com. ; IN A 69.62.x.x ; IN ::1 ;IN SPF v=spf1 ptr -all ; IN TXT v=spf1 ptr -all ns1 INA 69.62.x.x mail INA 69.62.x.x www INA 69.62.x.x remoteIN A 69.62.x.x Rev lookup: ; BIND reverse data file for local loopback interface ; $TTL604800 @ IN SOA ns1.example.com. example.com. ( 1 ; Serial 604800 ; Refresh 86400 ; Retry 2419200 ; Expire 604800 ) ; Negative Cache TTL ; @ IN NS ns1. 215 IN PTR ns1.example.com. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Cannot create A record issue
The serial number gets updated in the logs, but not when I do a dig. (21 vs 3-old) example.com. 603817 IN SOA ns1.example.com. root.localhost. 3 604800 86400 2419200 604800 Feb 20 10:26:08 server1 named[15739]: reloading configuration succeeded Feb 20 10:26:08 server1 named[15739]: reloading zones succeeded Feb 20 10:26:08 server1 named[15739]: zone example.com/IN: loaded serial 21 On Wed, Feb 20, 2013 at 10:26 AM, John Miller johnm...@brandeis.edu wrote: Just to cover all the bases, you're doing your lookup directly against your server, correct? Easy to accidentally query a different nameserver and not see what you're expecting. Otherwise I'd second Warren's suggestion to double-check your serial number. John On 02/20/2013 12:40 PM, Jsilliman wrote: I can't seem to create an extra A record that works. I've created A records for ns1 and mail and they work if I do a bind lookup, but nothing else works. I did a lot of research before reaching out here. This is my zone file. Remote.example.com never works...This is Bind9 running on Ubuntu server. Main zone file ; $TTL604800 @ IN SOA ns1.example.com. root.example.com. ( 10; Serial 604800 ; Refresh 86400 ; Retry 2419200 ; Expire 604800 ) ; Negative Cache TTL ; @ IN NS ns1.example.com. @INMX 10mail.example.com. ; IN A 69.62.x.x ; IN ::1 ;IN SPF v=spf1 ptr -all ; IN TXT v=spf1 ptr -all ns1 INA 69.62.x.x mail INA 69.62.x.x www INA 69.62.x.x remoteIN A 69.62.x.x Rev lookup: ; BIND reverse data file for local loopback interface ; $TTL604800 @ IN SOA ns1.example.com. example.com. ( 1 ; Serial 604800 ; Refresh 86400 ; Retry 2419200 ; Expire 604800 ) ; Negative Cache TTL ; @ IN NS ns1. 215 IN PTR ns1.example.com. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Cannot create A record issue
On Feb 20, 2013, at 1:30 PM, Jsilliman jsilli...@gmail.com wrote: The serial number gets updated in the logs, but not when I do a dig. Do you have more than one copy of BIND running? AlanC -- Alan Clegg | +1-919-355-8851 | a...@clegg.com ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Cannot create A record issue
No, I think it's only loaded once, but port 53 is listening on localhost tun0 interface for Openvpn 69.62.x.x 15739 ?Ssl0:04 /usr/sbin/named -u bind On Wed, Feb 20, 2013 at 10:31 AM, Alan Clegg a...@clegg.com wrote: On Feb 20, 2013, at 1:30 PM, Jsilliman jsilli...@gmail.com wrote: The serial number gets updated in the logs, but not when I do a dig. Do you have more than one copy of BIND running? AlanC -- Alan Clegg | +1-919-355-8851 | a...@clegg.com ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Cannot create A record issue
Jsilliman wrote on 02/20/2013 01:44:20 PM: No, I think it's only loaded once, but port 53 is listening on Try ps aux |grep named to prove it. Confidentiality Notice: This electronic message and any attachments may contain confidential or privileged information, and is intended only for the individual or entity identified above as the addressee. If you are not the addressee (or the employee or agent responsible to deliver it to the addressee), or if this message has been addressed to you in error, you are hereby notified that you may not copy, forward, disclose or use any part of this message or any attachments. Please notify the sender immediately by return e-mail or telephone and delete this message from your system. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Cannot create A record issue
Jsilliman jsilli...@gmail.com wrote: The serial number gets updated in the logs, but not when I do a dig. (21 vs 3-old) Did you dig @localhost or is dig querying some recursive server elsewhere? What does /etc/resolv.conf contain? Tony. -- f.anthony.n.finch d...@dotat.at http://dotat.at/ Forties, Cromarty: East, veering southeast, 4 or 5, occasionally 6 at first. Rough, becoming slight or moderate. Showers, rain at first. Moderate or good, occasionally poor at first. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Cannot create A record issue
And as was stated before, cat /etc/resolv.conf and let's see where your dig is actually going... -- Alan Clegg | +1-919-355-8851 | a...@clegg.com ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Cannot create A record issue
Ubuntu does not use that: root@:/etc/bind# cat /etc/resolv.conf # Dynamic resolv.conf(5) file for glibc resolver(3) generated by resolvconf(8) # DO NOT EDIT THIS FILE BY HAND -- YOUR CHANGES WILL BE OVERWRITTEN On Wed, Feb 20, 2013 at 10:56 AM, Alan Clegg a...@clegg.com wrote: And as was stated before, cat /etc/resolv.conf and let's see where your dig is actually going... -- Alan Clegg | +1-919-355-8851 | a...@clegg.com ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Cannot create A record issue
On Feb 20, 2013, at 1:57 PM, Jsilliman jsilli...@gmail.com wrote: Ubuntu does not use that: root@:/etc/bind# cat /etc/resolv.conf # Dynamic resolv.conf(5) file for glibc resolver(3) generated by resolvconf(8) # DO NOT EDIT THIS FILE BY HAND -- YOUR CHANGES WILL BE OVERWRITTEN Actually, it does. It's telling you not to edit it by hand. Can you please provide us with the full output of the dig that you are saying does not provide the correct information? AlanC -- Alan Clegg | +1-919-355-8851 | a...@clegg.com ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Cannot create A record issue
-Original Message- From: Jsilliman jsilli...@gmail.com Date: Wednesday, February 20, 2013 1:57 PM To: Alan Clegg a...@clegg.com Cc: bind-users@lists.isc.org bind-users@lists.isc.org Subject: Re: Cannot create A record issue Ubuntu does not use that: root@:/etc/bind# cat /etc/resolv.conf # Dynamic resolv.conf(5) file for glibc resolver(3) generated by resolvconf(8) # DO NOT EDIT THIS FILE BY HAND -- YOUR CHANGES WILL BE OVERWRITTEN Doh, so know enough about your distro to figure out where to look. In this case ``man resolvconf`` would likely be useful for you to read. Also, you don't need to cat resolv.conf at all...just include full dig output. That will show the name server used: OPS:54 f...@bar.baz:~$ dig google.com snip ;; SERVER: a.b.c.d#53(a.b.c.d) ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Cannot create A record issue
Check this out: dig @localhost 69.62.x.x 10800 IN SOA a.root-servers.net. nstld.verisign-grs.com. Shouldn't this be going to my local server for SOA ? The issue is that when I create a new A record, such as, remote.example.com, I cannot do a dig on that record, only mx and ns records. On Wed, Feb 20, 2013 at 11:00 AM, Alan Clegg a...@clegg.com wrote: On Feb 20, 2013, at 1:57 PM, Jsilliman jsilli...@gmail.com wrote: Ubuntu does not use that: root@:/etc/bind# cat /etc/resolv.conf # Dynamic resolv.conf(5) file for glibc resolver(3) generated by resolvconf(8) # DO NOT EDIT THIS FILE BY HAND -- YOUR CHANGES WILL BE OVERWRITTEN Actually, it does. It's telling you not to edit it by hand. Can you please provide us with the full output of the dig that you are saying does not provide the correct information? AlanC -- Alan Clegg | +1-919-355-8851 | a...@clegg.com ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Cannot create A record issue
On Feb 20, 2013, at 2:06 PM, Jsilliman jsilli...@gmail.com wrote: Check this out: dig @localhost 69.62.x.x 10800 IN SOA a.root-servers.net. nstld.verisign-grs.com. Shouldn't this be going to my local server for SOA ? The issue is that when I create a new A record, such as, remote.example.com, I cannot do a dig on that record, only mx and ns records. You are using dig wrong.try dig @localhost -x 69.62.x.x This, in addition, is unrelated to the question that you originally asked. Can you please provide FULL, un-edited, non-condensed output that shows the missing A record? AlanC -- Alan Clegg | +1-919-355-8851 | a...@clegg.com ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Cannot create A record issue
I just changed the domain name in output. If I do a dig on dig example.com ** Returns nothing. I have to actually dig on ns1.example.com, www..., or mail... I am trying to add an A record (remote.example.com), and have it work... root@server1:/etc/bind# dig remote.example.com ; DiG 9.8.1-P1 remote.example.com ;; global options: +cmd ;; Got answer: ;; -HEADER- opcode: QUERY, status: NXDOMAIN, id: 2650 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;remote.example.com. IN A ;; AUTHORITY SECTION: example.com. 9267IN SOA ns1.example.com. root.localhost. 3 604800 86400 2419200 604800 ;; Query time: 1 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: Wed Feb 20 11:13:45 2013 ;; MSG SIZE rcvd: 91 On Wed, Feb 20, 2013 at 11:09 AM, Alan Clegg a...@clegg.com wrote: On Feb 20, 2013, at 2:06 PM, Jsilliman jsilli...@gmail.com wrote: Check this out: dig @localhost 69.62.x.x 10800 IN SOA a.root-servers.net. nstld.verisign-grs.com. Shouldn't this be going to my local server for SOA ? The issue is that when I create a new A record, such as, remote.example.com, I cannot do a dig on that record, only mx and ns records. You are using dig wrong.try dig @localhost -x 69.62.x.x This, in addition, is unrelated to the question that you originally asked. Can you please provide FULL, un-edited, non-condensed output that shows the missing A record? AlanC -- Alan Clegg | +1-919-355-8851 | a...@clegg.com ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Cannot create A record issue
On Feb 20, 2013, at 2:17 PM, Jsilliman jsilli...@gmail.com wrote: I just changed the domain name in output. If I do a dig on dig example.com ** Returns nothing. I have to actually dig on ns1.example.com, www..., or mail... I am trying to add an A record (remote.example.com), and have it work... root@server1:/etc/bind# dig remote.example.com ; DiG 9.8.1-P1 remote.example.com ;; global options: +cmd ;; Got answer: ;; -HEADER- opcode: QUERY, status: NXDOMAIN, id: 2650 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;remote.example.com. IN A ;; AUTHORITY SECTION: example.com. 9267IN SOA ns1.example.com. root.localhost. 3 604800 86400 2419200 604800 ;; Query time: 1 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: Wed Feb 20 11:13:45 2013 ;; MSG SIZE rcvd: 91 The serial number in the above is 3 -- the serial in the other examples was 10… So, BIND is not picking up the changes you've made since #3… If you run named-checkzone zonename filename does it give any errors? Does rndc work? If you run rndc reload zone does it fix things? Is there anything logged about not being able to read the file? or syntax errors? If you restart BIND ? W On Wed, Feb 20, 2013 at 11:09 AM, Alan Clegg a...@clegg.com wrote: On Feb 20, 2013, at 2:06 PM, Jsilliman jsilli...@gmail.com wrote: Check this out: dig @localhost 69.62.x.x 10800 IN SOA a.root-servers.net. nstld.verisign-grs.com. Shouldn't this be going to my local server for SOA ? The issue is that when I create a new A record, such as, remote.example.com, I cannot do a dig on that record, only mx and ns records. You are using dig wrong.try dig @localhost -x 69.62.x.x This, in addition, is unrelated to the question that you originally asked. Can you please provide FULL, un-edited, non-condensed output that shows the missing A record? AlanC -- Alan Clegg | +1-919-355-8851 | a...@clegg.com ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users -- I had no shoes and wept. Then I met a man who had no feet. So I said, Hey man, got any shoes you're not using? ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Cannot create A record issue
Thanks, I found the issue. I had a typo in named.conf for the zone file name. Doh On Wed, Feb 20, 2013 at 11:29 AM, Warren Kumari war...@kumari.net wrote: On Feb 20, 2013, at 2:17 PM, Jsilliman jsilli...@gmail.com wrote: I just changed the domain name in output. If I do a dig on dig example.com ** Returns nothing. I have to actually dig on ns1.example.com, www..., or mail... I am trying to add an A record (remote.example.com), and have it work... root@server1:/etc/bind# dig remote.example.com ; DiG 9.8.1-P1 remote.example.com ;; global options: +cmd ;; Got answer: ;; -HEADER- opcode: QUERY, status: NXDOMAIN, id: 2650 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;remote.example.com. IN A ;; AUTHORITY SECTION: example.com. 9267IN SOA ns1.example.com. root.localhost. 3 604800 86400 2419200 604800 ;; Query time: 1 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: Wed Feb 20 11:13:45 2013 ;; MSG SIZE rcvd: 91 The serial number in the above is 3 -- the serial in the other examples was 10… So, BIND is not picking up the changes you've made since #3… If you run named-checkzone zonename filename does it give any errors? Does rndc work? If you run rndc reload zone does it fix things? Is there anything logged about not being able to read the file? or syntax errors? If you restart BIND ? W On Wed, Feb 20, 2013 at 11:09 AM, Alan Clegg a...@clegg.com wrote: On Feb 20, 2013, at 2:06 PM, Jsilliman jsilli...@gmail.com wrote: Check this out: dig @localhost 69.62.x.x 10800 IN SOA a.root-servers.net. nstld.verisign-grs.com. Shouldn't this be going to my local server for SOA ? The issue is that when I create a new A record, such as, remote.example.com, I cannot do a dig on that record, only mx and ns records. You are using dig wrong.try dig @localhost -x 69.62.x.x This, in addition, is unrelated to the question that you originally asked. Can you please provide FULL, un-edited, non-condensed output that shows the missing A record? AlanC -- Alan Clegg | +1-919-355-8851 | a...@clegg.com ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users -- I had no shoes and wept. Then I met a man who had no feet. So I said, Hey man, got any shoes you're not using? ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
