Hello all,

I have configure a LAN dns server but I get an error when i check configurations as below

No Error

Mats:/var/chroot/bind9/etc/bind# named-checkzone vun.lan. db.vun.lan
zone vun.lan/IN: loaded serial 20090521
OK
Mats:/var/chroot/bind9/etc/bind#

Error

Mats:/var/chroot/bind9/etc/bind# named-checkzone vun.lan. db.1.168.192.in-addr.arpa
zone vun.lan/IN: NS 'Mats.vun.lan' has no address records (A or AAAA)
zone vun.lan/IN: loaded serial 20090521
OK
Mats:/var/chroot/bind9/etc/bind#


How can I get ride of that error, below are my zone files

zone.vun.lan

Mats:/var/chroot/bind9/etc/bind# cat db.vun.lan
$TTL 172800
@ IN SOA Mats.vun.lan. info.vun.lan. (
20090521; serial-no
36000; refresh, seconds
18000; retry, seconds
518400; expiry, seconds
172800; minimum-TTL, seconds
)
@ IN NS Mats.vun.lan.
@ IN MX 10 Mats.vun.lan.

Mats.vun.lan. IN A 192.168.1.43

www IN A 192.168.1.43

Mats:/var/chroot/bind9/etc/bind#

REVERSE ZONE

Mats:/var/chroot/bind9/etc/bind# cat db.1.168.192.in-addr.arpa
$TTL 172800
@ IN SOA Mats.vun.lan. info.vun.lan. (
20090521; serial-no
36000; refresh, seconds
18000; retry, seconds
518400; expiry, seconds
172800; minimum-TTL, seconds
)
@ IN NS Mats.vun.lan.

192.168.1.43 IN PTR Mats.vun.lan.
Mats:/var/chroot/bind9/etc/bind#


Any assistance randered will be highly appreciated.

THanks

Yusuf

You need only to write the last dotted quad from the address. Therefore, the above PTR entry can also be written as follows:

Thanks Harry, Unfortunately i still get teh same error after making the change.

Mats:/var/chroot/bind9/etc/bind# named-checkzone vun.lan. db.1.168.192.in-addr.arpa
zone vun.lan/IN: NS 'Mats.vun.lan' has no address records (A or AAAA)
zone vun.lan/IN: loaded serial 20090521
OK
Mats:/var/chroot/bind9/etc/bind#

WHen I dig, I also get this below

Mats:/var/chroot/bind9/etc/bind# dig vun.lan

; <<>> DiG 9.5.1-P1 <<>> vun.lan
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18267
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;vun.lan. IN A

;; AUTHORITY SECTION:
. 10800 IN SOA A.ROOT-SERVERS.NET. NSTLD.VERISIGN-GRS.COM. 2009052200 1800 900 604800 86400

;; Query time: 1987 msec
;; SERVER: 196.0.3.70#53(196.0.3.70)
;; WHEN: Fri May 22 10:49:59 2009
;; MSG SIZE rcvd: 100

Mats:/var/chroot/bind9/etc/bind#


Mats:/var/chroot/bind9/etc/bind# dig 192.168.1.43

; <<>> DiG 9.5.1-P1 <<>> 192.168.1.43
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26249
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;192.168.1.43. IN A

;; AUTHORITY SECTION:
. 10800 IN SOA A.ROOT-SERVERS.NET. NSTLD.VERISIGN-GRS.COM. 2009052200 1800 900 604800 86400

;; Query time: 4646 msec
;; SERVER: 196.0.3.70#53(196.0.3.70)
;; WHEN: Fri May 22 10:50:29 2009
;; MSG SIZE rcvd: 105

Mats:/var/chroot/bind9/etc/bind#

Hi,

If you want to resolve ip addresses with dig you need to add the -x option:
Now about the error you get you should post at least the part of named.conf, where you define the reverse zone, in order to be able to help you.

Hello Bathory, I have dont it with -x but still i dont get answer which means i have a problem which am currently failing to find.

Mats:/home/ssu# dig -x 192.168.1.43

; <<>> DiG 9.5.1-P1 <<>> -x 192.168.1.43
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 29850
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;43.1.168.192.in-addr.arpa. IN PTR

;; Query time: 1 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Fri May 22 12:33:52 2009
;; MSG SIZE rcvd: 43

Mats:/home/ssu#

Could you please post named.conf, because the reverse zone definition is wrong.
It should be something like 1.168.192.in-addr.arpa

yusuf i have the same problem. i cant dig my domain. Can you please post your /etc/named.conf file and /etc/resolv.conf file. Have you entered the IPs of you ISP.

Below -;

Mats:/var/chroot/bind9/etc/bind# ls
db.0 db.empty named.conf zones.rfc1918
db.1.168.192.in-addr.arpa db.local named.conf.local
db.127 db.root named.conf.options
db.255 db.vun.lan rndc.key
Mats:/var/chroot/bind9/etc/bind#

Mats:/var/chroot/bind9/etc/bind# cat named.conf.local
//
// Do any local configuration here
//

// Consider adding the 1918 zones here, if they are not used in your
// organization
//include "/etc/bind/zones.rfc1918";

zone "vun.lan" {
type master;
file "db.vun.lan";
};

zone "1.168.192.in-addr.arpa" {
type master;
file "db.1.168.192.in-addr.arpa";
};

Mats:/var/chroot/bind9/etc/bind#

Mats:/var/chroot/bind9/etc/bind# cat named.conf.options
options {
directory "/var/cache/bind";
// listen-on port 53 {192.168.1.43;}
allow-query {192.168.1.0/24;127.0.0.1;};

// If there is a firewall between you and nameservers you want
// to talk to, you may need to fix the firewall to allow multiple
// ports to talk. See http://www.kb.cert.org/vuls/id/800113

// If your ISP provided one or more IP addresses for stable
// nameservers, you probably want to use them as forwarders.
// Uncomment the following block, and insert the addresses replacing
// the all-0's placeholder.

forwarders {
196.0.3.70;
}; this is my isp DNS ip

auth-nxdomain no; # conform to RFC1035
listen-on-v6 { any; };
};

Mats:/var/chroot/bind9/etc/bind#

Mats:/var/chroot/bind9/etc/bind# cat /etc/resolv.conf
# Dynamic resolv.conf(5) file for glibc resolver(3) generated by resolvconf(8)
# DO NOT EDIT THIS FILE BY HAND -- YOUR CHANGES WILL BE OVERWRITTEN
nameserver 127.0.0.1
Mats:/var/chroot/bind9/etc/bind#

NOTE - I am configuring DNS server for my LAN so its sitting on my LAN network - 192.168.1.0/24

You should add the $ORIGIN in the zone file db.1.168.192.in-addr.arpa,
In bold the thing you need to add/change

Now i get

Mats:/var/chroot/bind9/etc/bind# named-checkzone vun.lan db.1.168.192.in-addr.arpa
db.1.168.192.in-addr.arpa:3: ignoring out-of-zone data (1.168.192.in-addr.arpa)
db.1.168.192.in-addr.arpa:11: ignoring out-of-zone data (43.1.168.192.in-addr.arpa)
zone vun.lan/IN: has 0 SOA records
zone vun.lan/IN: has no NS records
Mats:/var/chroot/bind9/etc/bind#

BELOW is HOW MY ZONES LOOK LIKE

Mats:/var/chroot/bind9/etc/bind# cat db.vun.lan
$TTL 86400
@ IN SOA Mats.vun.lan. info.vun.lan. (
20090522; serial-no
36000; refresh, seconds
18000; retry, seconds
518400; expiry, seconds
172800; minimum-TTL, seconds
)
;
@ IN NS Mats.vun.lan.
;
@ IN MX 10 Mats.vun.lan.
;
@ IN A 192.168.1.43
Mats IN A 192.168.1.43


Mats:/var/chroot/bind9/etc/bind#

Mats:/var/chroot/bind9/etc/bind# cat db.1.168.192.in-addr.arpa
$TTL 86400
$ORIGIN 1.168.192.in-addr.arpa.
@ IN SOA Mats.vun.lan. info.vun.lan. (
20090522; serial-no
36000; refresh, seconds
18000; retry, seconds
518400; expiry, seconds
172800; minimum-TTL, seconds
)
IN NS Mats.vun.lan.
43 IN PTR vun.lan.

Mats:/var/chroot/bind9/etc/bind#

You have used the wrong name for the reverse zone. Run this to check:
Did you try using dig?

Yes I have tried using -x but i dont get answer.

Mats:/var/chroot/bind9/etc/bind# dig -x 192.168.1.43

; <<>> DiG 9.5.1-P1 <<>> -x 192.168.1.43
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 52766
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;43.1.168.192.in-addr.arpa. IN PTR

;; Query time: 0 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Fri May 22 16:52:42 2009
;; MSG SIZE rcvd: 43

Mats:/var/chroot/bind9/etc/bind#

What is the output of: