Date: Fri, 15 Dec 2006 08:25:41 -0500 From: "Chad Gross" <avatar4d@gmail.com> To: "Tek Bahadur Limbu" <teklimbu@wlink.com.np> Cc: freebsd-questions@freebsd.org, ccowart@rescomp.berkeley.edu Subject: Re: Local DNS Caching not caching on external interface Message-ID: <17489c7a0612150525v28657c0aib64d14a9b9daf30d@mail.gmail.com> In-Reply-To: <20061215134128.d3b94153.teklimbu@wlink.com.np> References: <20061214145735.658f44b4.teklimbu@wlink.com.np> <20061214090811.GE18145@rescomp.berkeley.edu> <20061214175501.04c4bcb2.teklimbu@wlink.com.np> <17489c7a0612140534l475bc427l28292e5de8adb098@mail.gmail.com> <20061215134128.d3b94153.teklimbu@wlink.com.np>
next in thread | previous in thread | raw e-mail | index | archive | help
On 12/15/06, Tek Bahadur Limbu <teklimbu@wlink.com.np> wrote:
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On Thu, 14 Dec 2006 08:34:11 -0500
> "Chad Gross" <avatar4d@gmail.com> wrote:
>
> > On 12/14/06, Tek Bahadur Limbu <teklimbu@wlink.com.np> wrote:
> > >
> > > -----BEGIN PGP SIGNED MESSAGE-----
> > > Hash: SHA1
> > >
> > > On Thu, 14 Dec 2006 01:08:11 -0800
> > > Christopher Cowart <ccowart@rescomp.berkeley.edu> wrote:
> > >
> > > > On 14:57 Thu 14 Dec , Tek Bahadur Limbu wrote:
> > > > > Dear All,
> > > > >
> > > > > I am very new to Bind and FreeBSD.
> > > > >
> > > > > I have just configured a Local DNS server using the built-in
> > > > > Bind 9.3.1 on a FreeBSD 5.4 machine.
> > > > >
> > > > > My problem is that the machine can cache queries on the
> > > > > localhost and loop back (127.0.0.1) interface only.
> > > > >
> > > > > I have a public static IP on this machine too and I can't seem
> > > > > to query the caching name server from my local network.
> > > > >
> > > > > In Linux, this is no problem. I just can't seem to get Bind to
> > > > > work as in my local network. It works only on the loopback
> > > > > interface.
> > > >
> > > > The default /etc/namedb/named.conf configuration file for BIND
> > > > says:
> > > >
> > > > | // If named is being used only as a local resolver, this is a
> > > > | safe default. // For named to be accessible to the network,
> > > > | comment this option, specify // the proper IP address, or
> > > > | delete this option. listen-on { 127.0.0.1; };
> > > >
> > > > It looks like if you comment out that option, it will listen on *
> > > > by default. You could also add the other IP address on which you
> > > > want named to listen.
> > > >
> > > > --
> > > > Chris Cowart
> > > > Network and Infrastructure Systems Administrator
> > > > RSSP-IT, UC Berkeley
> > > > "May all your pushes be popped"
> > > >
> > >
> > > Dear Chris,
> > >
> > > Thank you for your help. I did comment and added my public static IP
> > > like the following:
> > >
> > >
> > > listen-on { 202.x.x.x; }; # My Static IP
> > >
> > > Now when I do from my local PC:
> > >
> > > dig yahoo.com @202.x.x.x , I can do DNS lookups.
> > >
> > > But when I try doing that from another computer on my network, I
> > > can't do any DNS lookups.
> > >
> > >
> > > Is that anything that I miss?
> > >
> > >
> > > - --
> > >
> > >
> > > With best regards and good wishes,
> > >
> > > Yours sincerely,
> > >
> > > Tek Bahadur Limbu
> > >
> > > (TAG/TDG Group)
> > > Jwl Systems Department
> > >
> > > Worldlink Communications Pvt. Ltd.
> > >
> > > Jawalakhel, Nepal
> > > -----BEGIN PGP SIGNATURE-----
> > > Version: GnuPG v1.4.2.2 (FreeBSD)
> > >
> > > iD8DBQFFgT8ZVrOl+eVhOvYRAn8OAJwOOC6+C8mnY+YBP+1GxG2uDTfWpgCfTFr1
> > > 168ArGMkI0+9Qj/MpzFbmUo=
> > > =p9RV
> > > -----END PGP SIGNATURE-----
> > > _______________________________________________
> >
> >
> >
> > You have to tell the other machines on your network to use the IP of
> > the local DNS server for domain name resolution. If you are using
> > DHCP you can configure your DHCP server to give this information with
> > the IP. Otherwise you must manually do it, which will be different
> > between operating systems.
> >
> > HINT: In FreeBSD add the IP of the DNS server to /etc/resolve.conf
> >
> > Chad
> >
>
>
> Dear Chad,
>
> I just get the following logs while troubleshooting with tcpdump.
>
> local nameserver IP: 202.102.5.100
> network PC IP: 202.102.5.50
>
> When I do a nslookup of yahoo and google from network PC using the
> local caching nameserver, I only get this on the caching nameserver.
>
> 13:23:58.707604 IP 202.102.5.50.44778 > 202.102.5.100.53: 56955+ A?
> google.com. (28)
> 13:23:32.899379 IP 202.102.5.50.40229 > 202.102.5.100.53: 47636+ A?
> yahoo.com. (27)
>
>
> Note: Please note that the above Static IPs are just arbitrary values.
>
> Can you please shed some light on this issue?
>
> - --
>
>
> With best regards and good wishes,
>
> Yours sincerely,
>
> Tek Bahadur Limbu
>
> (TAG/TDG Group)
> Jwl Systems Department
>
> Worldlink Communications Pvt. Ltd.
>
> Jawalakhel, Nepal
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.2.2 (FreeBSD)
>
> iD8DBQFFglUsVrOl+eVhOvYRAsmMAJ9sb0fGdKiPp89CszMg5dXkvteojQCfdk0e
> fW0ofW8HJYq4RZXuROX7zPw=
> =5Ieg
> -----END PGP SIGNATURE-----
>
Tek,
Can you please post your Bind configuration files?
Have you done a tcpdump or wireshark capture on both machines while issuing
the resolution request? Could you please do that as well and post the
results?
Chad
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?17489c7a0612150525v28657c0aib64d14a9b9daf30d>