On Thu, Jan 13, 2000 at 12:58:18AM +0200, Chris Knipe wrote:
Hi Chris,
Thank you for the help.
You have very nicely explained things below.
To restate my problem in brief.
My lan connection does not resolve
unless named is up on the ppp interface also
"which is very strange".
Please have a look at my setup below and let me know what you think.
I can send you all my config files to you personally if you do not mind.
> >The DNS will clean up after 1 hour if there is no access
> >unless the interface-interval has been set to some different value.
> >/var/log/messages
> >Jan 11 22:49:00 narada named[6706]: deleting interface [172.16.1.1].53
> >(this is my ppp connection)
> I have not followed the entire thread about this subject, but let me try
> clear up some aspects about this - at least as far as your dns goes.
This is my setup: narada.col7.metta.lk 172.16.1.*
| \------- domain name
\----------------- hostname
|.3 win98 Machine
_________ _________ |.4 win98 Machine
<-ppp-to-internet-- | Modem | ---| Linux6.0|-lancard--|
------userlogin---> |17.16.1.1| | |172.16.1.2|.5 win98 Machine
--------- --------- |.6 win98 Machine
|.7 win98 Machine
|.8 win98 Machine
> First off, lets assume your ethernet card has IP Address x.x.x.x
> Your named.conf:
> ~~~~~~~~~~~~~~~~
> options {
> listen-on port 53 { x.x.x.x; };
> query-source address * port 53;
> };
named.conf:
~~~~~~~~~~~
options {
directory "/var/named";
interface-interval 5;
listen-on port 53 { 172.16.1.2; };
query-source address * port 53;
forward only;
forwarders {};
};
When I include these two lines I get this error
when a user login via modem to get mail
Jan 18 10:36:03 narada named[11882]: refused query on non-query socket from
[172.16.1.1].1074
Jan 18 10:36:23 narada last message repeated 3 times
Jan 18 10:36:31 narada named[11882]: ns_req: no address for root server
The DNS hangs on for some time and then finally resolves
Jan 18 10:37:30 narada pppd[11885]: Connection terminated.
Jan 18 10:37:30 narada pppd[11885]: Connect time 1.9 minutes.
Jan 18 10:37:30 narada pppd[11885]: Sent 6697 bytes, received 6460 bytes.
Jan 18 10:37:30 narada pppd[11885]: Exit.
What normally take 0.5 minutes takes 1.9 -2.5 min.
> listen-on binds named to listen to that specific IP Address. You ONLY need
> one interface, you ONLY need to bind it to your ethernet card (to allow
> yourself, aswell as your computers on your network to do dns queries).
Most of my users are pop accounts.
I run a small freemail domain giving free pop accounts in Sri Lanka.
So I suppose I also have to listen on 172.16.1.1 (my modem).
> No manual / automatic adding and deleting of interfaces.
"named" will "by default" delete the interface of the modem (172.16.1.1)
as it scans once every hour for interfaces up and deletes interfaces that
are not up.
> Restarting the
> name server, also clears your cache, which will in return delay performance
> as far as your dns server and its lookups go. In my books, the only time I
> restart my DNS server is when my system reboots... :)
to get "named" to listen on the modem again
I put ndc reload in the file /etc/ppp/ppp-on.local
I do not need to resolve any domains other than my own domain
"col7.metta.lk" as I do not use the Internet on this connection.
This is only for mail and "qmail" requires that the dns is working.
> >Jan 12 08:58:00 narada named[11503]: Ready to answer queries.
> >Jan 12 08:58:00 narada named[11503]: sysquery: sendto([0.0.0.0].0): Invalid argument
>
> ^^^^^^^^^^^^^^^^^^ This is DEFINATELY something arb which you have
> misconfigured in your named.conf. The ].0) says that bind is trying to
> do queries to the root servers on port 0!!!! (The root server that is
> queried also has an IP off 0.0.0.0 which is DEFINATELY not right!!), NOT
> standard, NOT allowed. This is DEFINATELY an missing, or mis-configures
> query-source option in named.conf. The query-source option listen above,
> basically tells named to do its queries to the root servers on IP Address *
> (Any IP Address that it can use to reach the servers - mostly, this will be
> your ppp assigned IP address which bind will detect automatically). The port,
> specified which UDP and TDP port to use to make the query with - port 53 being
> standard for DNS traffic.
forward only;
forwarders {};
This is very likely what give this error.
I do not require to resolve any outside domains and this will give an error,
BUT it will stop named trying to use the root servers
and will make named resolve faster.
> So it *should* look like this:
> Jan 13 00:50:49 darkwing named[514]: ns_forw: sendto([192.36.148.17].53): Network is
>unreachable
> ns_forw: sendto([192.36.148.17].53): Network is unreachable
> ^ ^ ^ ^ ^
> | | | | \- Network unreachable because I
> | | | | am offline.
> | | | \------- Queries on port 53
> | | \------------------ IP Address of the ROOT Server
> | | which will be queried.
> | \---------------------------- DNS Query where sent to an
> | remote server.
> \-------------------------------------- Query was forwarded.
Thank you for this very nice explanation.
below you find the messages from a modem login by the user dhammavihari
Best Regards
Jacob
Jan 18 10:35:49 narada pppd[11885]: user dhammavihari logged in
Jan 18 10:35:49 narada kernel: PPP BSD Compression module registered
Jan 18 10:35:50 narada kernel: PPP Deflate Compression module registered
Jan 18 10:35:50 narada pppd[11885]: local IP address 172.16.1.1
Jan 18 10:35:50 narada pppd[11885]: remote IP address 10.0.0.3
Jan 18 10:35:50 narada pppd[11885]: CCP terminated by peer
Jan 18 10:35:50 narada pppd[11885]: Compression disabled by peer.
Jan 18 10:35:51 narada named[11882]: reloading nameserver
Jan 18 10:35:51 narada named[11882]: Ready to answer queries.
Jan 18 10:35:51 narada named[11882]: ns_req: no address for root server
Jan 18 10:36:03 narada named[11882]: ns_req: no address for root server
Jan 18 10:36:03 narada named[11882]: refused query on non-query socket from
[172.16.1.1].1074
Jan 18 10:36:23 narada last message repeated 3 times
Jan 18 10:36:31 narada named[11882]: ns_req: no address for root server
Jan 18 10:36:46 narada named[11882]: ns_req: no address for root server
Jan 18 10:36:46 narada named[11882]: refused query on non-query socket from
[172.16.1.1].1074
Jan 18 10:37:06 narada last message repeated 3 times
Jan 18 10:37:29 narada pppd[11885]: LCP terminated by peer
Jan 18 10:37:30 narada pppd[11885]: Hangup (SIGHUP)
Jan 18 10:37:30 narada pppd[11885]: Modem hangup
Jan 18 10:37:30 narada PAM_pwdb[11885]: (ppp) session closed for user dhammavihari
Jan 18 10:37:30 narada pppd[11885]: Connection terminated.
Jan 18 10:37:30 narada pppd[11885]: Connect time 1.9 minutes.
Jan 18 10:37:30 narada pppd[11885]: Sent 6697 bytes, received 6460 bytes.
Jan 18 10:37:30 narada pppd[11885]: Exit.
--
A saying of the Buddha from http://metta.lk/
--------------------------------------------
A man long absent and returned safe from afar, his kinsmen, friends, and well-wishers
welcome on his arrival.
Random Dhammapada Verse 219
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
