From owner-freebsd-questions@FreeBSD.ORG Mon Oct 27 01:22:04 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9F79416A4B3 for ; Mon, 27 Oct 2003 01:22:04 -0800 (PST) Received: from aaanet.ru (tmail.aaanet.ru [80.80.111.232]) by mx1.FreeBSD.org (Postfix) with ESMTP id 87BB443F75 for ; Mon, 27 Oct 2003 01:22:03 -0800 (PST) (envelope-from haba@aaanet.ru) Received: from [80.80.118.115] (helo=ads.x10.com) by aaanet.ru with esmtp (Exim 4.20) id 1AE3ZY-000MAR-SW; Mon, 27 Oct 2003 12:22:01 +0300 X-AntiVirus: Checked by Dr.Web (http://www.drweb.net) Date: Mon, 27 Oct 2003 12:20:32 +0300 From: Vladimir X-Mailer: The Bat! (v2.01) Personal X-Priority: 3 (Normal) Message-ID: <1245107859.20031027122032@aaanet.ru> To: Jens Rehsack In-Reply-To: <3F9BBE2D.2040402@liwing.de> References: <1225931937.20031025184822@aaanet.ru> <3F9AA3D8.9000303@liwing.de> <5714575171.20031026145709@aaanet.ru> <3F9BBE2D.2040402@liwing.de> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit cc: questions@freebsd.org Subject: Re[2]: Bind 9.2.3rc4 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Vladimir List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 27 Oct 2003 09:22:04 -0000 Hi, Jens. >> ? JR> You have 2 lines with defined acl's in your config and allow JR> only for requests matching the one of the list entries. JR> If I were in your situation, I would remove them for testing JR> to see whether it works than or not. I don't have any experience JR> with access control within bind, so I cannot tell you if it's JR> correct. I you ipf to block request not coming from 10.62.10.0/24 or JR> 127.0.0.0/8 to this machine. I remove all acl's and changed all allow- but dig 127.0.0.1 do not work. I removed all allow- but it do not work. :-( >> JR> $ dig 127.0.0.1 >> JR> ; <<>> DiG 8.3 <<>> 127.0.0.1 >> ... >> JR> ;; MSG SIZE sent: 27 rcvd: 102 >> Not working. JR> Try to connect to internet and see if it works fine than. Not working. :-( JR> If it does, either your /etc/resolve.conf is wrong search habanet.local domain habanet.local nameserver 192.168.1.4 Is it right? JR> or your access restriction are. >> JR> As you can see here, my server responds. You should check your logfiles >> JR> to see why your server denied to answer the request. Maybe you have to >> JR> increase the verbosity for it. >> >> How i can do it? JR> named(8) tells you :-) You talking about -d option or about "logging"? >> Maybe something wrong in my configs? >> And why mc start so long? I know that because of named, bucaese when I >> stop it mc start quikly. JR> First assumtion of me is your acl's. If they're not, we'll look JR> deeper :-) Problem not in acl. -- Regards, Vladimir mailto:haba@aaanet.ru