A few "stupid" things to check: experience really leads the way! 1. DNS nameserver: iptables -L If you see anything saying DROP or DENY either to the ip-range you're talking about or port 53, that's a problem. 2. Make sure that djbdns is setup to respond correctly I've bollixed this on bind9 enough times, you *have* to make sure that your nameserver is allowing client-queries, I'm not sure if djbdns does this by default... if it's currently setup as a caching nameserver, it should. 3. Make sure the "client" /etc/resolv.conf or other nameserver configurations are correctly pointed at modor/shire's internal ip(s). 4. Do a whois on the dommainname and check to make sure that the correct nameserver output is there (whois.opensrs.net is my favorite) 5. Read the nameserver record for the domain and pick an ip that has a name pointed at it and on a machine that isn't on the same network (if you have Comcast/Verizon, choose a machine hosted one Level3's network for example) do a query for that hostname. 6. If all else fails, I'll see if I can duplicate your problem locally and attempt to help you fix it.
> -----Original Message----- > From: Tom Caudron [mailto:[EMAIL PROTECTED] > Sent: Tuesday, November 25, 2003 7:28 AM > To: gentoo-user Listserv > Subject: [gentoo-user] Re: djbdns setup questions > > Joshua said, "when you did your "dig", did you do this locally on the > same LAN or outside, because mine fails." > > I did the dig from within the same LAN, but not on the same machine. > > It's odd, since t looks like packets are finding their way to the dns to > get the info (according to tcpdump on the dns), but they never get it > (according to the results of the ping command on the client). I am at a > loss as to what I should be looking at next. > > One question. When I registered the dns with go-daddy.com I just gave > it a name (mordor.kungfugamers.com) and told it the ip address. The > only reason I gave it a name was because go-daddy insisted. Frankly, an > IP was good enough for me. Should I be doing something with that name > on the server itself? I mean, it's internal name isn't > mordor.kungfugamers.com. If so, what do I do about the fact that I had > to register it with 2 names (mordor.kungfugamers.com and > shire.kungfugamers.com) because go-daddy demanded multiple authoritative > dns's. > > -Tom Caudron > > > -- > [EMAIL PROTECTED] mailing list -- [EMAIL PROTECTED] mailing list
