The default GeoIP directory in the provided AppArmor configuration is different from yours: https://salsa.debian.org/dns-team/bind9/-/blob/debian/9.18/debian/extras/apparmor.d/usr.sbin.named?ref_type=heads
-- Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel obligated to reply outside your normal working hours.
Hi, my env is VPS, qemu
VM.
See attached file for
full config and full log.
it's debian 12 amd64.
Then systemd.
Herman Jacques Roger BRULE <[email protected]>
Main developer of Supercopier/Ultracopier/CatchChallenger, server management
IT, OS, technologies, research & development, security and business department
On 9/23/25 00:46, Ondřej Surý wrote:
Hi, you should start by describing your environment and sending
here a redacted (with named-checkconf -px) config file.
There’s a little help you can get with just few lines from
the log. It could be chroot, it could be AppArmor, it could be
selinux, it could be permissions higher in the tree, it could
be that you are checking the file on a different server than
bind is running. All these things are possible.
Ondrej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be
different. Please do not feel obligated to reply outside
your normal working hours.
Hi,
I don't found
how check this. And how disable this?
Herman Jacques Roger BRULE <[email protected]>
Main developer of Supercopier/Ultracopier/CatchChallenger, server management
IT, OS, technologies, research & development, security and business department
On 9/22/25 21:00, Mark
Andrews wrote:
If you are running chroot then you need the files in the
chroot area.
22-Sep-2025 12:03:58.792
set maximum open files to
18446744073709551615: success
22-Sep-2025 12:03:58.792
looking for GeoIP2 databases in
'/usr/share/geoip'
22-Sep-2025 12:03:58.796
unable to open GeoIP2 database
'/usr/share/geoip/GeoIP2-Country.mmdb' (status
1)
22-Sep-2025 12:03:58.800
unable to open GeoIP2 database
'/usr/share/geoip/GeoLite2-Country.mmdb'
(status 1)
22-Sep-2025 12:03:58.800
unable to open GeoIP2 database
'/usr/share/geoip/GeoIP2-City.mmdb' (status 1)
22-Sep-2025 12:03:58.800
unable to open GeoIP2 database
'/usr/share/geoip/GeoLite2-City.mmdb' (status
1)
22-Sep-2025 12:03:58.800
unable to open GeoIP2 database
'/usr/share/geoip/GeoIP2-ASN.mmdb' (status 1)
22-Sep-2025 12:03:58.800
unable to open GeoIP2 database
'/usr/share/geoip/GeoLite2-ASN.mmdb' (status
1)
22-Sep-2025 12:03:58.800
unable to open GeoIP2 database
'/usr/share/geoip/GeoIP2-ISP.mmdb' (status 1)
22-Sep-2025 12:03:58.800
unable to open GeoIP2 database
'/usr/share/geoip/GeoIP2-Domain.mmdb' (status
1)
root@vps-50e17238:~# ls
-l /usr/share/geoip/GeoIP2-Country.mmdb
-rw-r--r-- 1 bind bind
9791801 Sep 14 20:08
/usr/share/geoip/GeoIP2-Country.mmdb
exist and it's acesible via unix user.
and then with:
22-Sep-2025 12:03:58.812
/etc/bind/named.conf.default-zones:2: no
GeoIP2 database installed which can answer
queries of type 'country'
What I can
do? any kind of chroot?
--
Herman Jacques Roger BRULE <[email protected]>
Main developer of Supercopier/Ultracopier/CatchChallenger, server management
IT, OS, technologies, research & development, security and business department
--
Visit https://lists.isc.org/mailman/listinfo/bind-users
to unsubscribe from this list.
--
Visit
https://lists.isc.org/mailman/listinfo/bind-users to
unsubscribe from this list.
<conf.txt>
|
