From owner-freebsd-questions@FreeBSD.ORG Fri Jun 5 08:53:03 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id BC7361065673 for ; Fri, 5 Jun 2009 08:53:03 +0000 (UTC) (envelope-from wtf.jlaine@gmail.com) Received: from fg-out-1718.google.com (fg-out-1718.google.com [72.14.220.154]) by mx1.freebsd.org (Postfix) with ESMTP id 44D6A8FC0A for ; Fri, 5 Jun 2009 08:53:03 +0000 (UTC) (envelope-from wtf.jlaine@gmail.com) Received: by fg-out-1718.google.com with SMTP id e12so151209fga.12 for ; Fri, 05 Jun 2009 01:52:59 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:received:date:from:to:cc :subject:message-id:mail-followup-to:references:mime-version :content-type:content-disposition:in-reply-to:user-agent :x-operating-system; bh=sXe8uxMJc/UXFcmudBUZC0LHOfnOMKA9UhJJ0HTvibc=; b=jS029N6FyP41UR+vsQr5oEqcPunyQQh3g/Uvikqj9bPS6NZgMsmGi5KKYmDf57SS+j l2el6lvDFVH85kXzuvxtwi1uyBHFqJR5U3HCp3fPFdB9wpQ1XXlgoGoScq7ifKxqo3RT 7xeX3V7YMUIXC1Tf0Nfm6tnQSYn6PNQyYAzhw= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=date:from:to:cc:subject:message-id:mail-followup-to:references :mime-version:content-type:content-disposition:in-reply-to :user-agent:x-operating-system; b=RgTDcsMLORhyyoYt+VRoIDqR7wcxOXfdgqyTpOGyidlSXmBO/qMpSvYFjqBbob0LcV HAp1IuXW4DciHl9Pbyu8ZURNNGQVe05jvTmHVHGH6a+7CXtLelJgS3MKE0kuhgYETddz x1fTUkGrmSZGDs2RQhr0Wtu1mqI9rdINVME8k= Received: by 10.86.1.18 with SMTP id 18mr3669358fga.19.1244191978614; Fri, 05 Jun 2009 01:52:58 -0700 (PDT) Received: from blackmesa ([77.66.153.29]) by mx.google.com with ESMTPS id l19sm1762379fgb.7.2009.06.05.01.52.56 (version=SSLv3 cipher=RC4-MD5); Fri, 05 Jun 2009 01:52:57 -0700 (PDT) Received: by blackmesa (sSMTP sendmail emulation); Fri, 5 Jun 2009 12:52:51 +0400 Date: Fri, 5 Jun 2009 12:52:51 +0400 From: Jeff Laine To: Kirk Strauser Message-ID: <20090605085251.GA37781@free.bsd.loc> Mail-Followup-To: Jeff Laine , Kirk Strauser , freebsd-questions@freebsd.org References: <200906041153.38898.kirk@strauser.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <200906041153.38898.kirk@strauser.com> User-Agent: Mutt/1.4.2.3i X-Operating-System: FreeBSD 7.2-RELEASE i386 Cc: freebsd-questions@freebsd.org Subject: Re: Named ignoring forward-only zones? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 05 Jun 2009 08:53:04 -0000 On Thu, Jun 04, 2009 at 11:53:38AM -0500, Kirk Strauser wrote: > For some reason, BIND 9 (FreeBSD 7.2-RELEASE) isn't properly forwarding > queries. A snippet of named.conf: > > acl clients { > localnets; > localhost; > ::1; > 10.45.12/19; > }; > > view "internal" { > match-clients { clients; }; > zone "5.0.10.in-addr.arpa" { > type forward; > forward only; > forwarders { 10.0.5.16; }; > }; > }; > > > Now, I can query the forwarder directly to get the right answer: > > $ dig +noall +answer -t ptr -x 10.0.5.16 @10.0.5.16 > 16.5.0.10.in-addr.arpa. 86400 IN PTR kanga.honeypot.net. > > But I can't get the same from named: > > $ dig -t ptr -x 10.0.5.16 > > ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56485 > ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 > > ;; QUESTION SECTION: > ;16.5.0.10.in-addr.arpa. IN PTR > > ;; AUTHORITY SECTION: > 10.in-addr.arpa. 10800 IN SOA 10.in-addr.arpa. > nobody.localhost. 42 86400 43200 604800 10800 > > So, why isn't named directing that query to the configured forwarder? I'm > 99.9% certain this has been working recently. Hi, Kirk. I had the similar issue with forward type zones yesterday. Though I'm not quite sure, but it started to work after I put 127.0.0.1 to /etc/resolv.conf on our bind server. My named.conf entries look like this: ... zone "need2.frwd.zone" { type forward; forward only; forwarders { 10.xx.xx.xx; 10.xx.xx.yy; }; }; zone "10.in-addr.arpa" { type forward; forward only; forwarders { 10.xx.xx.xx; 10.xx.xx.yy; }; }; ... -- Best regards, Jeff | "Nobody wants to say how this works. | | Maybe nobody knows ..." | | Xorg.conf(5) |