Re: Dns bind9 not foward

To: Enrico Farabollini <enrico.farabollini@libero.it>
Cc: debian-user@lists.debian.org
Subject: Re: Dns bind9 not foward
From: Joris Dobbelsteen <joris@familiedobbelsteen.nl>
Date: Sat, 06 Sep 2008 18:19:15 +0200
Message-id: <[🔎] 48C2AD83.8030904@familiedobbelsteen.nl>
In-reply-to: <[🔎] 48BC6A95.20901@libero.it>
References: <[🔎] 48BC6A95.20901@libero.it>

I would kick out the hint zone and replace it with what is below.

You can remove your other forward operation. I would especially remove"forward first".


zone "." {
	type forward;
	forward only;
	forwarders { 192.168.10.11; 195.241.77.55; 195.241.77.58; };	
};

This worked for me (Bind 9.5 on Win2k3).

- Joris

Enrico Farabollini wrote, On 2-Sep-2008 0:20:

I'm trying to install a Dns with bind9, whenever you do:
dig www.microsoft.com returns:

deb-dns:~# dig www.microsoft.com

; <<>> DiG 9.5.0-P2 <<>> www.microsoft.com
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 7936
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;www.microsoft.com.             IN      A

;; Query time: 284 msec
;; SERVER: 192.168.1.4#53(192.168.1.4)
;; WHEN: Tue Sep  2 00:13:31 2008
;; MSG SIZE  rcvd: 35


instead doing

deb-dns:~# dig microsoft.com

; <<>> DiG 9.5.0-P2 <<>> microsoft.com
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 44813
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 5, ADDITIONAL: 5

;; QUESTION SECTION:
;microsoft.com.                 IN      A

;; ANSWER SECTION:
microsoft.com.          2600    IN      A       207.46.197.32
microsoft.com.          2600    IN      A       207.46.232.182

;; AUTHORITY SECTION:
microsoft.com.          163137  IN      NS      ns3.msft.net.
microsoft.com.          163137  IN      NS      ns1.msft.net.
microsoft.com.          163137  IN      NS      ns5.msft.net.
microsoft.com.          163137  IN      NS      ns4.msft.net.
microsoft.com.          163137  IN      NS      ns2.msft.net.

;; ADDITIONAL SECTION:
ns1.msft.net.           146875  IN      A       207.68.160.190
ns2.msft.net.           146875  IN      A       65.54.240.126
ns3.msft.net.           146875  IN      A       213.199.161.77
ns4.msft.net.           146875  IN      A       207.46.66.126
ns5.msft.net.           146875  IN      A       65.55.238.126

;; Query time: 0 msec
;; SERVER: 192.168.1.4#53(192.168.1.4)
;; WHEN: Tue Sep  2 00:18:14 2008
;; MSG SIZE  rcvd: 241


the only thing set when the server for the foward to external dns

options {
   directory "/var/cache/bind";

   // If there is a firewall between you and nameservers you want
   // to talk to, you may need to fix the firewall to allow multiple
   // ports to talk.  See http://www.kb.cert.org/vuls/id/800113

   // If your ISP provided one or more IP addresses for stable

// nameservers, you probably want to use them as forwarders. //Uncomment the following block, and insert the addresses replacing

   // the all-0's placeholder.

   forward first;
       forwarders {
           208.67.222.222;
           208.67.220.220;
};


   auth-nxdomain no;    # conform to RFC1035
   listen-on-v6 { any; };
};


Best regards

ps
I attach the configuration files

Reply to:

Follow-Ups:
- Re: Dns bind9 not forward
  - From: Enrico Farabollini <enrico.farabollini@libero.it>

References:
- Dns bind9 not foward
  - From: Enrico Farabollini <enrico.farabollini@libero.it>

Prev by Date: debian is amazing
Next by Date: Re: Getting DHCP logs OUT of syslog
Previous by thread: Dns bind9 not foward
Next by thread: Re: Dns bind9 not forward
Index(es):
- Date
- Thread