DNS Broken

[__Ian_]

Hi all,

I have configured DNS on my servers as ns.intdns.co.za and ns1.intdns.co.za these are glued via the .co.za registrar. This was working fine, however all of a sudden I am unable to ping or connect to anything on the intdns.co.za domain.

The DNS settings are correct and still enabled on Plesk. It does seem that somehow Plesk is not relating the settings correctly in the bind. I am receiving the following:



dig @localhost intdns.co.za

; <<>> DiG 9.7.0-P1 <<>> @localhost intdns.co.za
; (2 servers found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 26436
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;intdns.co.za. IN A

;; Query time: 0 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Wed Jun 27 12:06:25 2012
;; MSG SIZE rcvd: 30

I'm very concerned as all my domains are using this as their dns server, and if I can't resolve these addresses I'm in real trouble!

Please help!

Many Thanks in advance

Ian

 

[__Ian_]

I also get
** server can't find intdns.co.za: NXDOMAIN

When doing an NSLOOKUP on the plesk server itself.

 

[IgorG]

According to http://co.za/cgi-bin/whois.sh?Domain=intdns.co.za&Enter=Enter domain has two DNS servers:

ns.intdns.co.za
41.86.98.244

ns1.intdns.co.za
41.86.99.68

But domain haven't correct zones on these nameservers:

$ host intdns.co.za 41.86.98.244
Using domain server:
Name: 41.86.98.244
Address: 41.86.98.244#53
Aliases:

Host intdns.co.za not found: 2(SERVFAIL)

$ host intdns.co.za 41.86.99.68
Using domain server:
Name: 41.86.99.68
Address: 41.86.99.68#53
Aliases:

Host intdns.co.za not found: 5(REFUSED)

$ dig @41.86.99.68 intdns.co.za

; <<>> DiG 9.4.2-P2 <<>> @41.86.99.68 intdns.co.za
; (1 server found)
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: REFUSED, id: 9961
;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; WARNING: recursion requested but not available

;; QUESTION SECTION:
;intdns.co.za. IN A

;; Query time: 547 msec
;; SERVER: 41.86.99.68#53(41.86.99.68)
;; WHEN: Thu Jun 28 02:37:05 2012
;; MSG SIZE rcvd: 30

$ dig @41.86.98.244 intdns.co.za

; <<>> DiG 9.4.2-P2 <<>> @41.86.98.244 intdns.co.za
; (1 server found)
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 44168
;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; WARNING: recursion requested but not available

;; QUESTION SECTION:
;intdns.co.za. IN A

;; Query time: 285 msec
;; SERVER: 41.86.98.244#53(41.86.98.244)
;; WHEN: Thu Jun 28 02:37:23 2012
;; MSG SIZE rcvd: 30



I think that you should check zones on these nameservers for this domain. There is no A record at least.

 

[__Ian_]

Hi Igor thanks for your reply.

This is my problem. ns.intdns.co.za is my plesk server, and the ns1.intdns.co.za is a bind9 server that only replicates the primary zones.

I have uploaded a picture to show the dns entries located on the plesk server (ns.intdns.co.za - 41.86.98.244) which shows that I have the A records to point to both ns and ns1 as well as the correct NS records to point to itself.

This was working fine, and I am not 100% sure what I could have changed in order for this to stop working.

Kind Regards,

Ian

 

[__Ian_]

Hi Igor,

I have deleted, and re-added the domain, and this seems to have worked. I just hope it doesn't happen again!

Kind Regards,

Ian

 

[IgorG]

Just in case - look at /var/log/messages for named errors.

 

[__Ian_]

Hi,

If I tail that log file searching for named, I do get the below message a number of times, but it seems to have stopped. I am not sure whether this is a problem or something that I should expect to see?


Jun 28 09:55:32 cp kernel: [90536.591888] type=1503 audit(1340870132.883:260): operation="mknod" pid=1971 parent=1 profile="/usr/sbin/named" requested_mask="c::" denied_mask="c::" fsuid=107 ouid=107 name="/var/named/run-root/var/run/named/session.key"

Many Thanks

Ian

 

[IgorG]

Look at possible error messages related to loading domain zone file there.