homepage Welcome to WebmasterWorld Guest from 54.237.54.83
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Become a Pro Member

Home / Forums Index / WebmasterWorld / Webmaster General
Forum Library, Charter, Moderators: phranque & physics

Webmaster General Forum

    
DNS SOA Authority issue
Need my own DNS, not sure what to set for nameservers
trillianjedi




msg:3722819
 10:14 am on Aug 14, 2008 (gmt 0)

Hi all,

I need to run a DNS server (not actually for internet DNS specifically - using it for something else, but it's based on DNS).

I've installed pDNS on a new server just deployed and I have a sub-domain that I want this server to be the DNS authority for.

The domain : example.com is registered via 123-reg and uses their nameservers (ns.123-reg and ns2.123-reg).

My server (which mydns.example.com resolves to under the 123-reg nameservers) is running pDNS bound to port 53 and has been told it's authoritative for mydns.example.com by way of an SOA record.

I have a NAPTR record for testing purposes whose name is test.mydns.example.com and that's populated in the pDNS database.

From the local machine, I can't get to it:-


dig test.mydns.example.com ANY 127.0.0.1
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8238
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;test.mydns.example.com. IN ANY

;; AUTHORITY SECTION:
example.com.10752INSOAns.hosteurope.com. hostmaster.example.com. 2008081307 86400 3600 1209600 86400

;; Query time: 1 msec
;; SERVER: 209.20.72.4#53(209.20.72.4)
;; WHEN: Thu Aug 14 09:43:27 2008
;; MSG SIZE rcvd: 128

; <<>> DiG 9.3.4-P1.1 <<>> test.mydns.example.com ANY 127.0.0.1
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 23215
;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;127.0.0.1.INA

;; Query time: 0 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Thu Aug 14 09:43:27 2008
;; MSG SIZE rcvd: 27

If I read this correctly, it appears that the 123-reg nameservers are saying "we're the authority for that" (by SOA record) rather than my local machine claiming the authority.

I have put into my nameserver entries at 123-reg my own IP address for this server. But it's there only as the third one.

Any thoughts on where my config is incorrect?

Do I need to setup nameservers for this domain such that my own nameserver is first in the nameserver list?

Thanks for any guidance.

 

Romeo




msg:3722849
 11:41 am on Aug 14, 2008 (gmt 0)

Hi Trillianjedi,

... that my own nameserver is first in the nameserver list?

The order of the NS records does not matter.

You have to be sure to have delegated your sub-zone in the main zone properly by adding
; a delegation record
mydns.example.com. IN NS ns.example.com.
; and a 'glue' record
ns.example.com. IN A [IP-Address]

In the zone file of the mydns subdomain, be sure to define the authoritative SOA and NS entries accordingly:
mydns.example.com. SOA ns.example.com. ...
and a
mydns.example.com. IN NS ns.example.com.

Kind regards,
R.

[edited by: Romeo at 11:47 am (utc) on Aug. 14, 2008]

trillianjedi




msg:3722952
 2:34 pm on Aug 14, 2008 (gmt 0)

OK, thanks Romeo - sounds then like I'm missing some records. Will try adding the delegation and glue records accordingly.

Will report back...

trillianjedi




msg:3722975
 3:03 pm on Aug 14, 2008 (gmt 0)

Still not working. What I now have is:-

1. SOA record in my dns server for mydns.example.com
2. A delegation record for mydns.example.com to ns.example.com
3. An A record for ns.example.com to the IP of my sever

All three are on my server. The main nameservers for example.com are still with 123-reg.

To step back one pace, I cannot actually ping mydns.example.com from my server (I added my IP address as a name server in /etc/resolv.conf and rebooted networking).

Any other thoughts as to what's wrong? The server still appears to be going out to ns.hosteurope.com for DNS lookups rather than checking the localhost DNS service.

Thanks,

TJ

Global Options:
 top home search open messages active posts  
 

Home / Forums Index / WebmasterWorld / Webmaster General
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
© Webmaster World 1996-2014 all rights reserved