BIND DNS SERVER keeps stopping

7 posts / 0 new
Last post
#1 Mon, 11/19/2018 - 13:47
nickjaiani

BIND DNS SERVER keeps stopping

When I start linux everything works, after a few hours of running bind dns server keeps stopping. Than I have to access virtualmin by ip address and start bind dns server manually.

I don't know if it could be because of RAM or not but I increased RAM from 1 GB to 2 GB.

This is my named.run file, sorry if it's not needed.

managed-keys-zone: loaded serial 0 zone 0.in-addr.arpa/IN: loaded serial 0 zone localhost.localdomain/IN: loaded serial 0 zone 1.0.0.127.in-addr.arpa/IN: loaded serial 0 zone localhost/IN: loaded serial 0 zone 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 0 all zones loaded running client 188.166.167.68#43345 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 139.59.137.165#27881 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 46.101.108.28#44714 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 212.47.225.164#38994 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 212.47.225.164#21440 (ns2.gto.ge): query (cache) 'ns2.gto.ge/AAAA/IN' denied client 212.47.225.164#7218 (ns1.gto.ge): query (cache) 'ns1.gto.ge/AAAA/IN' denied client 212.47.225.164#60475 (ns2.gto.ge): query (cache) 'ns2.gto.ge/AAAA/IN' denied client 212.47.225.164#23560 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 212.47.225.164#64926 (ns1.gto.ge): query (cache) 'ns1.gto.ge/AAAA/IN' denied client 212.47.225.164#48077 (ns2.gto.ge): query (cache) 'ns2.gto.ge/AAAA/IN' denied client 212.47.225.164#11561 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 212.47.225.164#42455 (ns1.gto.ge): query (cache) 'ns1.gto.ge/AAAA/IN' denied client 212.47.225.164#59750 (ns2.gto.ge): query (cache) 'ns2.gto.ge/AAAA/IN' denied client 212.47.225.164#56671 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 212.47.225.164#15935 (ns1.gto.ge): query (cache) 'ns1.gto.ge/AAAA/IN' denied client 212.47.225.164#62287 (ns2.gto.ge): query (cache) 'ns2.gto.ge/AAAA/IN' denied client 212.47.225.164#63076 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 212.47.225.164#10711 (ns1.gto.ge): query (cache) 'ns1.gto.ge/AAAA/IN' denied client 212.47.225.164#32101 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 212.47.225.164#36035 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 212.47.225.164#41852 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 212.47.225.164#49751 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 212.47.225.164#60399 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 212.47.225.164#25051 (ns2.gto.ge): query (cache) 'ns2.gto.ge/A/IN' denied client 212.47.225.164#53436 (ns2.gto.ge): query (cache) 'ns2.gto.ge/A/IN' denied client 212.47.225.164#26105 (ns2.gto.ge): query (cache) 'ns2.gto.ge/A/IN' denied client 212.47.225.164#33819 (ns2.gto.ge): query (cache) 'ns2.gto.ge/A/IN' denied client 212.47.225.164#49938 (ns2.gto.ge): query (cache) 'ns2.gto.ge/A/IN' denied client 212.47.225.164#17553 (ns1.gto.ge): query (cache) 'ns1.gto.ge/AAAA/IN' denied client 212.47.225.164#44865 (ns1.gto.ge): query (cache) 'ns1.gto.ge/AAAA/IN' denied client 212.47.225.164#1491 (ns1.gto.ge): query (cache) 'ns1.gto.ge/AAAA/IN' denied client 212.47.225.164#48537 (ns1.gto.ge): query (cache) 'ns1.gto.ge/AAAA/IN' denied client 212.47.225.164#7069 (ns1.gto.ge): query (cache) 'ns1.gto.ge/AAAA/IN' denied client 212.47.225.164#41900 (ns2.gto.ge): query (cache) 'ns2.gto.ge/AAAA/IN' denied client 212.47.225.164#7316 (ns2.gto.ge): query (cache) 'ns2.gto.ge/AAAA/IN' denied client 212.47.225.164#14758 (ns2.gto.ge): query (cache) 'ns2.gto.ge/AAAA/IN' denied client 212.47.225.164#43094 (ns2.gto.ge): query (cache) 'ns2.gto.ge/AAAA/IN' denied client 212.47.225.164#30567 (ns2.gto.ge): query (cache) 'ns2.gto.ge/AAAA/IN' denied client 104.238.146.156#9974 (gto.ge): query (cache) 'gto.ge/A/IN' denied client 104.238.146.156#19774 (ns2.gto.ge): query (cache) 'ns2.gto.ge/A/IN' denied client 104.238.146.156#19657 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 104.238.146.156#47861 (gto.ge): query (cache) 'gto.ge/A/IN' denied client 104.238.146.156#21716 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 104.238.146.156#26857 (gto.ge): query (cache) 'gto.ge/NS/IN' denied client 104.238.146.156#22170 (ns2.gto.ge): query (cache) 'ns2.gto.ge/A/IN' denied client 104.238.146.156#22641 (ns2.gto.ge): query (cache) 'ns2.gto.ge/AAAA/IN' denied client 104.238.146.156#64834 (ns1.gto.ge): query (cache) 'ns1.gto.ge/AAAA/IN' denied client 104.238.146.156#54055 (gto.ge): query (cache) 'gto.ge/A/IN' denied client 104.238.146.156#43824 (ns2.gto.ge): query (cache) 'ns2.gto.ge/A/IN' denied client 104.238.146.156#53637 (gto.ge): query (cache) 'gto.ge/NS/IN' denied client 104.238.146.156#17670 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 104.238.146.156#42783 (ns2.gto.ge): query (cache) 'ns2.gto.ge/AAAA/IN' denied client 104.238.146.156#20701 (ns1.gto.ge): query (cache) 'ns1.gto.ge/AAAA/IN' denied client 104.238.146.156#9199 (gto.ge): query (cache) 'gto.ge/A/IN' denied client 104.238.146.156#23529 (gto.ge): query (cache) 'gto.ge/NS/IN' denied client 104.238.146.156#23819 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 104.238.146.156#59949 (ns2.gto.ge): query (cache) 'ns2.gto.ge/A/IN' denied client 104.238.146.156#15540 (ns2.gto.ge): query (cache) 'ns2.gto.ge/AAAA/IN' denied client 104.238.146.156#33607 (ns1.gto.ge): query (cache) 'ns1.gto.ge/AAAA/IN' denied client 104.238.146.156#28195 (gto.ge): query (cache) 'gto.ge/A/IN' denied client 104.238.146.156#12050 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 104.238.146.156#16328 (gto.ge): query (cache) 'gto.ge/NS/IN' denied client 104.238.146.156#46364 (ns2.gto.ge): query (cache) 'ns2.gto.ge/A/IN' denied client 104.238.146.156#51758 (ns2.gto.ge): query (cache) 'ns2.gto.ge/AAAA/IN' denied client 104.238.146.156#10077 (ns1.gto.ge): query (cache) 'ns1.gto.ge/AAAA/IN' denied client 104.238.146.156#57796 (ns2.gto.ge): query (cache) 'ns2.gto.ge/A/IN' denied client 104.238.146.156#58217 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 104.238.146.156#7827 (gto.ge): query (cache) 'gto.ge/NS/IN' denied client 104.238.146.156#37389 (ns2.gto.ge): query (cache) 'ns2.gto.ge/A/IN' denied client 104.238.146.156#20493 (ns2.gto.ge): query (cache) 'ns2.gto.ge/A/IN' denied client 104.238.146.156#30207 (ns2.gto.ge): query (cache) 'ns2.gto.ge/A/IN' denied client 104.238.146.156#28008 (ns2.gto.ge): query (cache) 'ns2.gto.ge/A/IN' denied client 104.238.146.156#9438 (ns2.gto.ge): query (cache) 'ns2.gto.ge/A/IN' denied client 104.238.146.156#62596 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 104.238.146.156#58705 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 104.238.146.156#31708 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 104.238.146.156#37966 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 104.238.146.156#52917 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 104.238.146.156#22874 (ns1.gto.ge): query (cache) 'ns1.gto.ge/A/IN' denied client 104.238.146.156#7190 (ns1.gto.ge): query (cache) 'ns1.gto.ge/AAAA/IN' denied client 104.238.146.156#47310 (ns1.gto.ge): query (cache) 'ns1.gto.ge/AAAA/IN' denied client 104.238.146.156#46485 (ns1.gto.ge): query (cache) 'ns1.gto.ge/AAAA/IN' denied client 104.238.146.156#14534 (ns1.gto.ge): query (cache) 'ns1.gto.ge/AAAA/IN' denied client 104.238.146.156#44899 (ns2.gto.ge): query (cache) 'ns2.gto.ge/A/IN' denied client 104.238.146.156#56990 (ns2.gto.ge): query (cache) 'ns2.gto.ge/AAAA/IN' denied client 104.238.146.156#38012 (ns2.gto.ge): query (cache) 'ns2.gto.ge/AAAA/IN' denied client 104.238.146.156#4438 (ns2.gto.ge): query (cache) 'ns2.gto.ge/AAAA/IN' denied client 104.238.146.156#63014 (ns2.gto.ge): query (cache) 'ns2.gto.ge/AAAA/IN' denied received control channel command 'stop' shutting down: flushing changes stopping command channel on 127.0.0.1#953 stopping command channel on ::1#953 no longer listening on ::#53 no longer listening on 127.0.0.1#53 no longer listening on 138.68.100.36#53 no longer listening on 10.19.0.5#53 exiting managed-keys-zone: journal file is out of date: removing journal file managed-keys-zone: loaded serial 2 zone 0.in-addr.arpa/IN: loaded serial 0 zone 1.0.0.127.in-addr.arpa/IN: loaded serial 0 zone 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 0 zone localhost.localdomain/IN: loaded serial 0 zone localhost/IN: loaded serial 0 all zones loaded running client 188.166.167.68#20708 (ns2.gto.ge): query (cache) 'ns2.gto.ge/AAAA/IN' denied client 139.59.137.165#44866 (ns2.gto.ge): query (cache) 'ns2.gto.ge/AAAA/IN' denied client 139.59.137.165#18560 (www.gto.ge): query (cache) 'www.gto.ge/A/IN' denied client 46.101.108.28#45125 (www.gto.ge): query (cache) 'www.gto.ge/A/IN' denied client 188.166.167.68#37891 (www.gto.ge): query (cache) 'www.gto.ge/A/IN' denied client 188.166.167.68#15860 (mail.gto.ge): query (cache) 'mail.gto.ge/A/IN' denied client 46.101.108.28#30412 (mail.gto.ge): query (cache) 'mail.gto.ge/A/IN' denied received control channel command 'stop' shutting down: flushing changes stopping command channel on 127.0.0.1#953 stopping command channel on ::1#953 no longer listening on ::#53 no longer listening on 127.0.0.1#53 no longer listening on 138.68.100.36#53 no longer listening on 10.19.0.5#53 exiting managed-keys-zone: loaded serial 2 zone 0.in-addr.arpa/IN: loaded serial 0 zone localhost/IN: loaded serial 0 zone 1.0.0.127.in-addr.arpa/IN: loaded serial 0 zone localhost.localdomain/IN: loaded serial 0 zone gto.ge/IN: loaded serial 1542552585 zone 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 0 all zones loaded running zone gto.ge/IN: sending notifies (serial 1542552585) client 104.131.155.140#53419 (gto.ge): query (cache) 'gto.ge/DS/IN' denied client 104.131.155.140#55819 (gto.ge): query (cache) 'gto.ge/DS/IN' denied client 104.131.155.140#26645 (gto.ge): query (cache) 'gto.ge/DS/IN' denied error (connection refused) resolving '9.2.3.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.0.0.4.6.8.4.0.5.4.1.0.0.a.2.bb.barracudacentral.org/A/IN': 64.235.154.72#53 error (connection refused) resolving '9.2.3.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.0.0.4.6.8.4.0.5.4.1.0.0.a.2.bb.barracudacentral.org/A/IN': 64.235.145.15#53 error (connection refused) resolving 'b.dnspod.com/AAAA/IN': 180.163.8.114#53 received control channel command 'stop' shutting down: flushing changes stopping command channel on 127.0.0.1#953 stopping command channel on ::1#953 no longer listening on ::#53 no longer listening on 127.0.0.1#53 no longer listening on 138.68.100.36#53 no longer listening on 10.19.0.5#53 exiting managed-keys-zone: loaded serial 2 zone 0.in-addr.arpa/IN: loaded serial 0 zone localhost.localdomain/IN: loaded serial 0 zone 1.0.0.127.in-addr.arpa/IN: loaded serial 0 zone localhost/IN: loaded serial 0 zone gto.ge/IN: loaded serial 1542552585 zone 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 0 all zones loaded running zone gto.ge/IN: sending notifies (serial 1542552585) client 52.91.168.199#10455 (www.yahoo.com): query (cache) 'www.yahoo.com/A/IN' denied client 18.210.20.249#19564 (www.yahoo.com): query (cache) 'www.yahoo.com/A/IN' denied client 163.172.217.208#60397 (10): query (cache) '10/A/IN' denied error (unexpected RCODE SERVFAIL) resolving '190.237.194.1.in-addr.arpa/PTR/IN': 219.150.188.243#53 error (unexpected RCODE SERVFAIL) resolving '190.237.194.1.in-addr.arpa/PTR/IN': 219.150.188.243#53 client 163.172.217.208#54829 (10): query (cache) '10/A/IN' denied client 163.172.217.208#56382 (10): query (cache) '10/A/IN' denied validating @0x7efe871f9950: 59.123.in-addr.arpa SOA: got insecure response; parent indicates it should be secure validating @0x7efe871fff20: 59.123.in-addr.arpa SOA: got insecure response; parent indicates it should be secure client 198.108.66.30#51870 (c.afekv.com): query (cache) 'c.afekv.com/A/IN' denied client 71.6.202.205#52394 (qq.com): query (cache) 'qq.com/A/IN' denied error (unexpected RCODE SERVFAIL) resolving '17.62.81.82.in-addr.arpa/PTR/IN': 2001:67c:e0::6#53 error (unexpected RCODE REFUSED) resolving '45.155.153.205.in-addr.arpa/PTR/IN': 74.50.118.178#53 error (connection refused) resolving '45.155.153.205.in-addr.arpa/PTR/IN': 162.223.192.46#53 error (unexpected RCODE REFUSED) resolving '45.155.153.205.in-addr.arpa/PTR/IN': 74.50.118.178#53 error (connection refused) resolving '45.155.153.205.in-addr.arpa/PTR/IN': 162.223.192.46#53 client 74.82.47.10#43378 (dnsscan.shadowserver.org): query (cache) 'dnsscan.shadowserver.org/A/IN' denied managed-keys-zone: loaded serial 2 zone 0.in-addr.arpa/IN: loaded serial 0 zone 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 0 zone gto.ge/IN: loaded serial 1542552585 zone 1.0.0.127.in-addr.arpa/IN: loaded serial 0 zone localhost.localdomain/IN: loaded serial 0 zone localhost/IN: loaded serial 0 all zones loaded running zone gto.ge/IN: sending notifies (serial 1542552585) received control channel command 'stop' shutting down: flushing changes stopping command channel on 127.0.0.1#953 stopping command channel on ::1#953 no longer listening on ::#53 no longer listening on 127.0.0.1#53 no longer listening on 138.68.100.36#53 no longer listening on 10.19.0.5#53 exiting managed-keys-zone: loaded serial 2 zone 0.in-addr.arpa/IN: loaded serial 0 zone 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 0 zone localhost.localdomain/IN: loaded serial 0 zone localhost/IN: loaded serial 0 zone gto.ge/IN: loaded serial 1542552585 zone 1.0.0.127.in-addr.arpa/IN: loaded serial 0 all zones loaded running zone gto.ge/IN: sending notifies (serial 1542552585) client 217.61.96.15#33904 (.): query (cache) './ANY/IN' denied client 134.175.10.59#60980 (.): query (cache) './ANY/IN' denied error (connection refused) resolving 'dns1.merit.net/A/IN': 2001:48a8:6880:73::150#53 client 191.101.35.47#39249 (USADF.GOV): query (cache) 'USADF.GOV/ANY/IN' denied client 185.160.30.252#45463 (.): query (cache) './ANY/IN' denied managed-keys-zone: journal file is out of date: removing journal file managed-keys-zone: loaded serial 3 zone 0.in-addr.arpa/IN: loaded serial 0 zone 1.0.0.127.in-addr.arpa/IN: loaded serial 0 zone 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 0 zone localhost.localdomain/IN: loaded serial 0 zone gto.ge/IN: loaded serial 1542552585 zone localhost/IN: loaded serial 0 all zones loaded running zone gto.ge/IN: sending notifies (serial 1542552585) received control channel command 'stop' shutting down: flushing changes stopping command channel on 127.0.0.1#953 stopping command channel on ::1#953 no longer listening on ::#53 no longer listening on 127.0.0.1#53 no longer listening on 138.68.100.36#53 no longer listening on 10.19.0.5#53 exiting managed-keys-zone: loaded serial 3 zone 0.in-addr.arpa/IN: loaded serial 0 zone 1.0.0.127.in-addr.arpa/IN: loaded serial 0 zone 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 0 zone gto.ge/IN: loaded serial 1542552585 zone localhost.localdomain/IN: loaded serial 0 zone localhost/IN: loaded serial 0 all zones loaded running zone gto.ge/IN: sending notifies (serial 1542552585)

Mon, 11/19/2018 - 14:13
nazcar

it are sending a stop to that daemon, it may be that your server is closing services when there is a saturation of ram or cpu automatically

received control channel command 'stop' shutting down: flushing changes stopping command channel on 127.0.0.1#953 stopping command channel on ::1#953 no longer listening on ::#53 no longer listening on 127.0.0.1#53 no longer listening on 138.68.100.36#53 no longer listening on 10.19.0.5#53 exiting managed-keys-zone: loaded serial 3 zone 0.in-addr.arpa/IN: loaded serial 0 zone 1.0.0.127.in-addr.arpa/IN: loaded serial 0 zone 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 0 zone gto.ge/IN: loaded serial 1542552585 zone localhost.localdomain/IN: loaded serial 0 zone localhost/IN: loaded serial 0

a part is being sent a serial to the domains registered in that BIND not valid

AKa Nazcar

Mon, 11/19/2018 - 14:17 (Reply to #2)
nickjaiani

I just found out this is a reason bind dns server is shutting down: Nov 19 16:40:31 gto systemd: named.service: control process exited, code=exited status=1 Nov 19 16:40:31 gto systemd: Unit named.service entered failed state. Nov 19 16:40:31 gto systemd: named.service failed. can it be because of ram or cpu? I already increased ram, should I increase vCPU from 1 to 2?

Mon, 11/19/2018 - 17:28
andreychek

Howdy,

What output do you see if you run the command "dmesg | tail -30"?

If you're seeing RAM related issues, you may see some "OOM" related messages in that output.

-Eric

Mon, 11/19/2018 - 23:57 (Reply to #4)
nickjaiani

There is nothing like OOM, but I found some stuff with OOM in log files. So I increased RAM and CPU

Wed, 11/06/2019 - 00:42
shrutiba

[root@server1 ~]# service named restart Redirecting to /bin/systemctl restart named.service Job for named.service failed because the control process exited with error code. See "systemctl status named.service" and "journalctl -xe" for details. [root@server1 ~]# systemctl status named.service ● named.service - Berkeley Internet Name Domain (DNS) Loaded: loaded (/usr/lib/systemd/system/named.service; enabled; vendor preset: disabled) Active: failed (Result: exit-code) since Mon 2019-10-28 00:47:47 CET; 11s ago Process: 3950 ExecStartPre=/bin/bash -c if [ ! "$DISABLE_ZONE_CHECKING" == "yes" ]; lotterysambadtodays then /usr/sbin/named-checkconf -z "$NAMEDCONF"; else echo "Checking of zone files is disabled"; fi (code=exited, status=1/FAILURE)

Oct 28 00:47:47 server1.newagexa.co systemd[1]: Starting Berkeley Internet N.... Oct 28 00:47:47 server1.newagexa.co bash[3950]: /etc/named.conf:88: unknown ...' Oct 28 00:47:47 server1.newagexa.co systemd[1]: named.service: control proce...1 Oct 28 00:47:47 server1.newagexa.co systemd[1]: Failed to start Berkeley Int.... Oct 28 00:47:47 server1.newagexa.co systemd[1]: Unit named.service entered f.... Oct 28 00:47:47 server1.newagexa.co systemd[1]: named.service failed. Hint: Some lines were ellipsized, use -l to show in full.

Wed, 11/06/2019 - 03:31
Jfro

@shrubita

Please read forum guidelines, versions and so?

Did it look like same issue? So Bind stop after a while and at CLI you can start Bind then?

Memory ?

And so more details needed i guess.

I can't help you but you have to do some more work / writing to get support for your case. ( lot of details are missing)

Topic locked