From owner-freebsd-questions@FreeBSD.ORG Tue Jan 31 13:28:32 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D26F816A420 for ; Tue, 31 Jan 2006 13:28:32 +0000 (GMT) (envelope-from cswiger@mac.com) Received: from pi.codefab.com (pi.codefab.com [199.103.21.227]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6E70D43D58 for ; Tue, 31 Jan 2006 13:28:32 +0000 (GMT) (envelope-from cswiger@mac.com) Received: from localhost (localhost [127.0.0.1]) by pi.codefab.com (Postfix) with ESMTP id B0BF15CEA; Tue, 31 Jan 2006 08:28:31 -0500 (EST) Received: from pi.codefab.com ([127.0.0.1]) by localhost (pi.codefab.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 69728-01; Tue, 31 Jan 2006 08:28:29 -0500 (EST) Received: from [192.168.1.3] (pool-68-161-67-226.ny325.east.verizon.net [68.161.67.226]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by pi.codefab.com (Postfix) with ESMTP id C4EA65C44; Tue, 31 Jan 2006 08:28:28 -0500 (EST) Message-ID: <43DF6607.2090009@mac.com> Date: Tue, 31 Jan 2006 08:28:39 -0500 From: Chuck Swiger Organization: The Courts of Chaos User-Agent: Thunderbird 1.5 (Windows/20051201) MIME-Version: 1.0 To: Brad Gilmer References: <20060131003745.GA15655@gilmer.org> In-Reply-To: <20060131003745.GA15655@gilmer.org> X-Enigmail-Version: 0.94.0.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Virus-Scanned: amavisd-new at codefab.com Cc: freebsd-questions@freebsd.org Subject: Re: DNS nslint error messages X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 31 Jan 2006 13:28:32 -0000 Brad Gilmer wrote: > I am running freebsd 5.4-STABLE on an IBM e-series 330 server. I have recently started playing with DNS and have been largely successful. However, nslint reports the following errors: > > nslint: missing "a": localhost. -> 127.0.0.1 > nslint: missing "a": localhost.org. -> 0.0.0.1 The first message means you're missing a localhost forward domain. Normally this won't matter, because you have a localhost entry in /etc/hosts, but you could add a localhost domain to named.conf which contains: ; ; BIND data file for local loopback interface ; $TTL 604800 @ IN SOA localhost. root.localhost. ( 1 ; Serial 604800 ; Refresh 86400 ; Retry 2419200 ; Expire 604800 ) ; Default TTL @ NS localhost. @ A 127.0.0.1 The second one recommends adding a line like: localhost IN A 127.0.0.1 ... to your gilmer.org zone, using no "." at the end, to create a localhost.EXAMPLE.COM entry. > If I add the line: > > localhost. IN A 127.0.0.1 > > to my zone file, the first nslint error message goes away, but I then see the following message in my /var/log/messages file upon named startup: > > Jan 30 18:58:55 gilmer named[15485]: master/gilmer.org:16: ignoring out-of-zone data (localhost) > > So which is correct? named is correctly ignoring a forward A record which is out of zone. > Should I insert the A record in the zone file and ignore the nslint message, or should I leave it out and ignore the named message? Is there something else improperly configured on my system? > > What about the second nslint message above? Why am I getting a complaint about 0.0.0.1? > > My /etc/namedb/master/gilmer.org file looks like this: > $TTL 3600 > > gilmer.org. IN SOA ns1.gilmer.org. admin.gilmer.org. ( > 20060126 ; Serial > 3600 ; Refresh > 900 ; Retry > 3600000 ; Expire > 3600 ) ; Minimum > > ;DNS Servers > @ IN NS @ This should be: @ IN NS ns1.gilmer.org. ...and you ought to list at least one other NS record which points to a different nameserver. Note also that you only need to provide the "IN" column in the SOA record, it will default from there. So this: @ NS ns2.gilmer.org. ...should be OK, too. -- -Chuck