From owner-freebsd-questions Thu Mar 13 06:09:02 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id GAA28343 for questions-outgoing; Thu, 13 Mar 1997 06:09:02 -0800 (PST) Received: from horton.iaces.com (root@horton.iaces.com [204.147.87.98]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id GAA28334 for ; Thu, 13 Mar 1997 06:08:56 -0800 (PST) Received: from horton.iaces.com (proot@localhost.iaces.com [127.0.0.1]) by horton.iaces.com (8.8.5/8.8.4) with SMTP id OAA09747; Thu, 13 Mar 1997 14:08:48 GMT Message-ID: <33280A70.41C67EA6@iaces.com> Date: Thu, 13 Mar 1997 14:08:48 +0000 From: "Paul T. Root" Organization: Interprise ACES X-Mailer: Mozilla 3.01Gold (X11; I; FreeBSD 2.1.7-RELEASE i386) MIME-Version: 1.0 To: Simon Lindgren CC: questions@freebsd.org Subject: Re: Caching-only DNS? References: <3.0.1.32.19970313100203.0080db80@istudio.no> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-questions@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Simon Lindgren wrote: > > My accessprovider (leased line) runs our DNS requirements on his own > servers (we do not run > 'named' or equivalents on our FreeBSD machine). > > Recently, nslookup's have started to fail all the time, with "query > refused" messages. > This happens only when ran from the shell - using telnet etc to domains work. > > I asked them about this, and they said that they've discintinued allowing > "zone transfers" - and > that my server probably asks for a zone transfer upon doing a 'nslookup'. > Another > possibility was that we ran something called "caching-only DNS'. > > How do I disable either? Or is there another solution? Not being able to do > lookups is a major pain. You have to setup you system specifically to run a caching-only server. Ie. create the /etc/namedb/named.boot file that has a line like cache . db.cache Then the db.cache has lines that have the root server (or more probably your ISPs nameserver). In short, you probably aren't doing that. The question is, how are you doing queries with nslookup? Are you using ls? and what is your query type set as. Maybe you want to consider running your own named as a secondary to your ISP. Get the O'Reilly book if you do. Maybe even if you don't. It's a great book for DNS. Paul. -- "The very best, and oldest, computer system built by man is Stonehenge. Built by the Druids, who didn`t die out, but went bankrupt trying to debug the software." --unknown