From owner-freebsd-questions  Wed Sep 17 00:40:02 1997
Return-Path: <owner-freebsd-questions>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.7/8.8.7) id AAA26335
          for questions-outgoing; Wed, 17 Sep 1997 00:40:02 -0700 (PDT)
Received: from counterintelligence.ml.org (mdean.vip.best.com [206.86.94.101])
          by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id AAA26278
          for <questions@FreeBSD.ORG>; Wed, 17 Sep 1997 00:39:59 -0700 (PDT)
Received: from localhost (jamil@localhost)
	by counterintelligence.ml.org (8.8.7/8.8.5) with SMTP id AAA00397;
	Wed, 17 Sep 1997 00:38:51 -0700 (PDT)
Date: Wed, 17 Sep 1997 00:38:51 -0700 (PDT)
From: "Jamil J. Weatherbee" <jamil@counterintelligence.ml.org>
To: Greg Lehey <grog@lemis.com>
cc: questions@FreeBSD.ORG
Subject: Re: NAMESERVER Setup Problems
In-Reply-To: <19970917120642.56857@lemis.com>
Message-ID: <Pine.BSF.3.96.970917002923.354A-100000@counterintelligence.ml.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk



Cool, I think I read that somewhere about not wanting to point certain
things to CNAMES (like MX records). Anyway that fixed the problem with the
secondary server not being able to load the zone files from the primary,
as for the reverses not coming up --- the stuff is there and seems to
work. but ls acroal.com still doesn't return, oh well at least the
secondary works.


On Wed, 17 Sep 1997, Greg Lehey wrote:

> On Tue, Sep 16, 1997 at 07:27:39PM -0700, Jamil J. Weatherbee wrote:
> >
> > I am setting up a secondary nameserver for my domain (acroal.com) the
> > secondary name server is on a sco machine, but that is immaterial.
> > The problem is that under freebsd (which runs the primary nameserver for
> > my domain i get a "Query refused message when attempting to list the whole
> > domain (get the zone file)"
> >
> > example:
> >
> >> nslookup - 209.76.130.130
> > Default Server: shellx.acroal.com
> > Address: 209.76.130.130
> >
> >> ls acroal.com
> > [shellx.acroal.com]
> > *** Can't list domain acroal.com: Query refused
> 
> Aha.  That makes more sense.
> 
> > that is the problem -- how do I allow a query at least for the secondary
> > servers
> 
> Well, I can't be sure, but while prodding around, I saw at least two
> configuration errors, one of which might be causing your problem.
> 
> 1.  Your name server RR points to a CNAME.  This is a no-no (though
>     don't ask me why), and it causes requests to be refused.  Give it
>     an IP address instead.
> 
>     > 209.76.130.130
>     Server:  shellx.acroal.com
>     Address:  209.76.130.130
> 
> 2.  You don't have any reverse mapping installed:
> 
>     > 209.76.130.130
>     Server:  shellx.acroal.com
>     Address:  209.76.130.130
> 
>     *** shellx.acroal.com can't find 209.76.130.130: Non-existent host/domain
> 
> Fix those first, and see if that fixes your problem.  Please let me
> know either way.
> 
> Greg
>