Can't work BIND out (shoot me please)

15 posts / 0 new
Last post
#1 Sat, 11/03/2012 - 11:33
Xencored

Can't work BIND out (shoot me please)

For the love of god I can't work BIND out even after reading loads about it....

All I am trying to do is use my own nameservers so I can get rid of cloudflare

I tryed to follow this small tut here http://www.virtualmin.com/node/19464#comment-87854

But I can't add a second namesever

[IMG]http://i.imgur.com/33o62.png[/IMG]

is this right? am I even on the right page?

Is there a tut for someone who has never used Bind before?

At the minute I am using cloudflare nameservers the plan was to use my own

ns1.jlrealm.com ns2.jlrealm.com

I have to register these I belive Do I point them to my servers IP?

Many thanks Mike

Sat, 11/03/2012 - 17:55
Locutus

Sorry, I'm out of bullets at the moment. ;)

You probably have to register the IPs of your nameservers at your NIC (network information center) so you can use them. At the NIC, you have to enter ns1.jrealm.com and ns2.jrealm.com as authoritative nameservers.

The easiest way to configure a master and slave nameserver with Virtualmin is using Webmin's DNS Cluster Slave feature. Do you have Webmin on the slave server? If not, you need to enter ns2.jrealm.com in the "Additional manually configured nameserves" box, and create all zones manually on the slave.

If you've never used BIND before, you're in for a somewhat rough ride at first. ;)

Sat, 11/03/2012 - 18:16
Xencored

Hey Locutus, I think Ive registered them with namecheap if thats the right place (where my domains are from)

http://i.imgur.com/2CrpF.png

I do have webmin (i use the virtualmin script to install everything What do you mean slave server? I only have the one server is this a bad idea? (I can't efford one more lol

this is what I have so far

http://i.imgur.com/eYNcC.png

Cheers for the reply!

Sun, 11/04/2012 - 05:01
Locutus

Hey drunkard! ;)

Your setup at Namecheap looks okay, as does your Virtualmin template.

A "slave server" is a secondary (backup) nameserver that pulls zone information from a master to create a duplicate.

The idea is to have at least two nameservers for every zone, for redundancy purposes. Using the same IP for two nameserver host names usually does work from a technical point, but is not really recommended.

Also, some NICs, e.g. DENIC, require you to actually have two different IP addresses in separate /24 networks to register a domain. Using the same IP twice is not possible there. So you need to try it out if it works in your concrete case.

When your setup is complete, good ways to debug possible DNS problems are the website "www.intodns.com" and the command "dig testdomain.com +trace".

Sun, 11/04/2012 - 06:23 (Reply to #4)
Xencored

Haha, hmm how would I get a slave than for my other name server :(

my host offers extra IP's at a very low cost would one of them help out?

yea I have been using intodns

http://www.intodns.com/jlrealm.com

this is my test domain nothing works on it like lol and its pulling in alot of errors about dns too

Sorry again am mega new to this and tbh have no idea what I am trying to do lol

Mike

Sun, 11/04/2012 - 06:57
Locutus

An extra IP would help out, yes, if it is in a different /24 subnet. It would still defeat the "two separate servers per zone" scheme though, but many people are actually doing that.

Otherwise, if you ask nicely, I can offer you to use my secondary nameserver as slave for your domain. :) I have multiple servers in different nets available.

As for the intodns check: It seems your server is not responding to DNS queries.

Is 5.39.78.152 the correct IP? Is BIND running and listening on UDP port 53 for all interfaces? Type netstat -upln | grep :53 to find out. Is any firewall blocking port 53?

The IP is reachable via traceroute.

                                                    Packets               Pings
 Host                                             Loss%   Snt   Last   Avg  Best  Wrst StDev
 1. pandora.tianet.de                              0.0%    36    0.2   0.2   0.1   0.3   0.0
 2. static.161.114.9.176.clients.your-server.de    0.0%    36    0.9   1.9   0.8   5.0   1.2
 3. hos-tr1-juniper1.rz15.hetzner.de               0.0%    35    0.4   0.4   0.3   0.8   0.1
 4. hos-bb2.juniper4.ffm.hetzner.de                0.0%    35    6.1   6.1   5.9   7.7   0.3
 5. ???
 6. rbx-g2-a9.fr.eu                                0.0%    35   15.2  15.2  14.6  16.1   0.4
 7. vss-9b-6k.fr.eu                                0.0%    35  148.8  23.4  14.2 148.8  29.4
 8. ks3265238.kimsufi.com                          0.0%    35   14.3  14.9  14.3  17.5   0.5
Sun, 11/04/2012 - 07:22
Xencored

I belive there on the same subnet :(

Really ? that would be great if it fixes this problem :D I'll send you a beer ^^

(how many server do you have than? :D)

I ran that command and got this Locutus

~# netstat -upln | grep :53
udp        0      0 127.0.0.1:53            0.0.0.0:*                           6090/named
udp6       0      0 ::1:53                  :::*                                6090/named

Cheers!

Sun, 11/04/2012 - 07:29
Locutus

Beer sounds good! :D Or maybe we can make an arrangement, like 1 EUR per month via Paypal for service and support. :)

I myself have two physical servers with VMware ESXi as virtualization host (each running about 10 virtual machines), plus two VMs on colleagues' servers.

Your netstat result seems to indicate that your BIND is listening on localhost only. Netstat should show something like this:

udp        0      0 176.9.191.26:53         0.0.0.0:*                           1075/named
udp        0      0 127.0.0.1:53            0.0.0.0:*                           1075/named

You might want to check Webmin's BIND module and configure your external IP (and localhost) in "Addresses and Topology / Ports and addresses to listen on".

Sun, 11/04/2012 - 07:45
Xencored

Sounds good :D

ive changed it to this

http://i.imgur.com/siLOm.png

does that look right to you?

Cheers

Edit = I guess it's not as Bind will not start

Failed to re-start service : Failed to start BIND : Unknown error

Sun, 11/04/2012 - 07:55
Locutus

You might want to check the syslog, BIND will quite probably have recorded errors there.

Sun, 11/04/2012 - 08:06 (Reply to #10)
Xencored

Sorry for been even more dumber but where is the log file located :/

edit ive found it (in the same place as all the logs )

http://pastebin.com/Na4BN4R6

here it is

Sun, 11/04/2012 - 08:06
Locutus

Hmm, how would you feel about giving me a login to your shell and Webmin, then I could take a look at it myself. :) Might be faster. Do you use an instant messenger?

Sun, 11/04/2012 - 08:07 (Reply to #12)
Xencored

I use msn only

Sun, 11/04/2012 - 08:11
Locutus

MSN is "Windows Live", right? You can message me at "loc2262@hotmail.de".

Sun, 11/04/2012 - 08:18 (Reply to #14)
Xencored

Yea it is ha, I still call it msn from many years ago >.>

Anyway ive added you vodkaholic27@live.co.uk

Cheers

Topic locked