From owner-freebsd-questions@FreeBSD.ORG Mon Dec 1 10:44:52 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2C5C716A4CE for ; Mon, 1 Dec 2003 10:44:52 -0800 (PST) Received: from shaft.techsupport.co.uk (shaft.techsupport.co.uk [212.250.77.214]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9218A43FE1 for ; Mon, 1 Dec 2003 10:44:50 -0800 (PST) (envelope-from setantae@submonkey.net) Received: from cpc2-cdif3-6-0-cust204.cdif.cable.ntl.com ([81.103.67.204] helo=shrike.submonkey.net ident=mailnull) by shaft.techsupport.co.uk with esmtp (TLSv1:DHE-RSA-AES256-SHA:256) (Exim 4.24; FreeBSD) id 1AQt2O-0004wj-TW; Mon, 01 Dec 2003 18:44:49 +0000 Received: from setantae by shrike.submonkey.net with local (Exim 4.24; FreeBSD 4.9) id 1AQt2M-0000e5-Br; Mon, 01 Dec 2003 18:44:46 +0000 Date: Mon, 1 Dec 2003 18:44:46 +0000 From: Ceri Davies To: Stacey Roberts Message-ID: <20031201184446.GA2357@submonkey.net> Mail-Followup-To: Ceri Davies , Stacey Roberts , freebsd-questions@FreeBSD.ORG References: <20031129161813.GG44778@crom.vickiandstacey.com> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="x+6KMIRAuhnl3hBn" Content-Disposition: inline In-Reply-To: <20031129161813.GG44778@crom.vickiandstacey.com> X-PGP: finger ceri@FreeBSD.org User-Agent: Mutt/1.5.4i Sender: Ceri Davies cc: freebsd-questions@FreeBSD.ORG Subject: Re: Named errors - running BIND in sandbox X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 01 Dec 2003 18:44:52 -0000 --x+6KMIRAuhnl3hBn Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sat, Nov 29, 2003 at 04:18:13PM +0000, Stacey Roberts wrote: > Hello, > I know that I've asked this in the past, but after a > fresh reinstall of the machine on my local network that provided > (amongst other services) DNS to all other machines (FreeBSD, Solaris, > WIn2K & WinXP Pro), I find that I am not having much success setting up > BIND in a sandbox. > > The box is running FreeBSD-4.9Stable (after initially installing > 4.8-Rel) after cvsup of sources. > > Basically, the errors I get on start up is here: > /etc/namedb/etc # tail /var/log/messages > Nov 29 15:42:39 Demon named[226]: 'masters' statement present for master = zone 'vickiandstacey.com' > Nov 29 15:42:39 Demon named[226]: zone 'vickiandstacey.com' did not valid= ate, skipping > zone "vickiandstacey.com" { > type master; > file "master/vickiandstacey.com.db"; > allow-transfer { 192.168.1.0/24; }; > masters { > 192.168.1.8; > }; > }; You have declared the zone as type master, but also included a masters statement. If this machine is the master, then remove the masters statement, otherwise, declare it as type slave. > Nov 29 15:42:39 Demon named[226]: bind(dfd=3D20, [192.168.1.8].53): Addre= ss already in use > Nov 29 15:42:39 Demon named[226]: deleting interface [192.168.1.8].53 > Nov 29 15:42:39 Demon named[226]: bind(dfd=3D20, [127.0.0.1].53): Address= already in use > Nov 29 15:42:39 Demon named[226]: deleting interface [127.0.0.1].53 named was already running when you tried starting it this time. > Nov 29 15:42:39 Demon named[234]: can't exec /bin/named-xfer: No such fil= e or directory You didn't show the contents of the bin directory below, but I assume it's empty; copy /usr/libexec/named-xfer in there (make sure it's statically linked, which is the default in 4.9-RELEASE). > Nov 29 15:43:47 Demon named-xfer[240]: [192.168.1.8] not authoritative fo= r 1.168.192.in-addr.arpa, SOA query got rcode 0, aa 0, ancount 0, aucount 13 Now, I'm taking a big guess here. You didn't have 1.168.192.in-addr.arpa in the named.conf before you started named this time, but now you do. Since you declared it as a slave zone (which looks to be incorrect), named tried to transfer it =66rom itself, which it couldn't do as it wasn't loaded before. > What I had prior to installing, I would get "Demon.vickiandstacey.com" > returned as the Default Server, not localhost as above. It is now listed second in your resolv.conf. > Secondly, the address 82.68.31.177 is the real IP address of Demon (I > have a block of 8) that is translated to 192.168.1.8, the internal IP > address of Demon. So I'd have hoped that trying to set server to Demon, > would have resulted in "Address: 192.168.1.8" instead of the machine's > real IP address. Since the zone vickiandstacey.com didn't load, this server wasn't authoritative for that zone, and so went to the forwarder you have listed and asked there; that server then gave the public IP. --=20 --x+6KMIRAuhnl3hBn Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (FreeBSD) iD8DBQE/y4weocfcwTS3JF8RAjTCAKCdT65ix0W3SF19D9Lwfsic9TyqzQCeMu2l 08f2H0hpuDCWuhkDPNtxWqY= =VRvg -----END PGP SIGNATURE----- --x+6KMIRAuhnl3hBn--