Re: Need Help with BIND9
Dude!! Thanks!! On 2021-06-15 12:58, Lyle Giese wrote: Yep, that fixed it. Lyle On 6/15/21 2:23 PM, techli...@phpcoderusa.com wrote: Thank you for your help!! The zone file is the one I tool from Plesk when I had keiththewebguy.com parked there. All I did was change the IP addresses. I assume what you want me to do is add keiththewebguy.com to the two records making: ns1.keiththewebguy.com. 86400 IN A 98.191.108.149 keiththewebguy.com. 86400 IN NS ns1.keiththewebguy.com. keiththewebguy.com. 86400 IN NS ns2.keiththewebguy.com. From what I have read the SOA - "@ IN SOA ns1.keiththewebguy.com. ..." the ns1.keiththewebguy.com. should be the FQDN? That is the box host name plus the domain correct? Thanks!! On 2021-06-15 07:35, Matus UHLAR - fantomas wrote: On 15.06.21 09:14, Lyle Giese wrote: I think I stumbled upon a problem with the zone records for keiththewebguy.com. It could be the root issue you are having. If I run dig ns +trace keiththewebguy.com I got the following for the last record from your name servers: ns1.keiththewebguy.com. 86400 IN A 98.191.108.149 keiththewebguy.com. 86400 IN NS ns1. keiththewebguy.com. 86400 IN NS ns2. this is the problem. OP's NS records point to nonexistent hosts, and these are authoritative, so after each nameserver fetches them, it uses them and fails. Most probably it's the "ns1" and "ns2" in zone end with "." which means that current $ORIGIN (apparently keiththewebguy.com) is not appended to them. -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Depression is merely anger without enthusiasm. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Need Help with BIND9
Yep, that fixed it. Lyle On 6/15/21 2:23 PM, techli...@phpcoderusa.com wrote: Thank you for your help!! The zone file is the one I tool from Plesk when I had keiththewebguy.com parked there. All I did was change the IP addresses. I assume what you want me to do is add keiththewebguy.com to the two records making: ns1.keiththewebguy.com. 86400 IN A 98.191.108.149 keiththewebguy.com. 86400 IN NS ns1.keiththewebguy.com. keiththewebguy.com. 86400 IN NS ns2.keiththewebguy.com. From what I have read the SOA - "@ IN SOA ns1.keiththewebguy.com. ..." the ns1.keiththewebguy.com. should be the FQDN? That is the box host name plus the domain correct? Thanks!! On 2021-06-15 07:35, Matus UHLAR - fantomas wrote: On 15.06.21 09:14, Lyle Giese wrote: I think I stumbled upon a problem with the zone records for keiththewebguy.com. It could be the root issue you are having. If I run dig ns +trace keiththewebguy.com I got the following for the last record from your name servers: ns1.keiththewebguy.com. 86400 IN A 98.191.108.149 keiththewebguy.com. 86400 IN NS ns1. keiththewebguy.com. 86400 IN NS ns2. this is the problem. OP's NS records point to nonexistent hosts, and these are authoritative, so after each nameserver fetches them, it uses them and fails. Most probably it's the "ns1" and "ns2" in zone end with "." which means that current $ORIGIN (apparently keiththewebguy.com) is not appended to them. -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Depression is merely anger without enthusiasm. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Need Help with BIND9
Thank you for your help!! The zone file is the one I tool from Plesk when I had keiththewebguy.com parked there. All I did was change the IP addresses. I assume what you want me to do is add keiththewebguy.com to the two records making: ns1.keiththewebguy.com. 86400 IN A 98.191.108.149 keiththewebguy.com. 86400 IN NS ns1.keiththewebguy.com. keiththewebguy.com. 86400 IN NS ns2.keiththewebguy.com. From what I have read the SOA - "@ IN SOA ns1.keiththewebguy.com. ..." the ns1.keiththewebguy.com. should be the FQDN? That is the box host name plus the domain correct? Thanks!! On 2021-06-15 07:35, Matus UHLAR - fantomas wrote: On 15.06.21 09:14, Lyle Giese wrote: I think I stumbled upon a problem with the zone records for keiththewebguy.com. It could be the root issue you are having. If I run dig ns +trace keiththewebguy.com I got the following for the last record from your name servers: ns1.keiththewebguy.com. 86400 IN A 98.191.108.149 keiththewebguy.com. 86400 IN NS ns1. keiththewebguy.com. 86400 IN NS ns2. this is the problem. OP's NS records point to nonexistent hosts, and these are authoritative, so after each nameserver fetches them, it uses them and fails. Most probably it's the "ns1" and "ns2" in zone end with "." which means that current $ORIGIN (apparently keiththewebguy.com) is not appended to them. -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Depression is merely anger without enthusiasm. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Need Help with BIND9
On 15.06.21 09:14, Lyle Giese wrote: I think I stumbled upon a problem with the zone records for keiththewebguy.com. It could be the root issue you are having. If I run dig ns +trace keiththewebguy.com I got the following for the last record from your name servers: ns1.keiththewebguy.com. 86400 IN A 98.191.108.149 keiththewebguy.com. 86400 IN NS ns1. keiththewebguy.com. 86400 IN NS ns2. this is the problem. OP's NS records point to nonexistent hosts, and these are authoritative, so after each nameserver fetches them, it uses them and fails. Most probably it's the "ns1" and "ns2" in zone end with "." which means that current $ORIGIN (apparently keiththewebguy.com) is not appended to them. -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Depression is merely anger without enthusiasm. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Need Help with BIND9
I think I stumbled upon a problem with the zone records for keiththewebguy.com. It could be the root issue you are having. If I run dig ns +trace keiththewebguy.com I got the following for the last record from your name servers: ns1.keiththewebguy.com. 86400 IN A 98.191.108.149 keiththewebguy.com. 86400 IN NS ns1. keiththewebguy.com. 86400 IN NS ns2. ;; Received 129 bytes from 98.191.108.149#53(ns2.keiththewebguy.com) in 84 ms If I run the same query for any other domain I get a fully qualified host name for the name servers(ie ns1.keiththewebguy.com not ns1. ). Lyle Giese LCR Computer Services, Inc. On 6/15/21 9:04 AM, techli...@phpcoderusa.com wrote: On 2021-06-15 01:38, Reindl Harald wrote: Am 15.06.21 um 10:31 schrieb Reindl Harald: Am 14.06.21 um 22:37 schrieb techli...@phpcoderusa.com: keiththewebguy.com [1]. does not actually have the two nameservers required though that is not the problem. (ns1 and ns2 have same IP) I have a VPS that runs Plesk and there is only one name server so for every domain I have hosted on that VPS the domains have the same name server for both host names (at the register) I think some call these glue records. we know that already and it's wrong you can't have proper DNS with only one nameserver you can't have proper DNS with two nameservers in the same network or on the same line if you can't provide the minimum of *two* completly independent nameservers you can't host DNS - it's that easy https://www.iana.org/help/nameserver-requirements Minimum number of name servers There must be at least two NS records listed in a delegation, and the hosts must not resolve to the same IP address. Thanks!! ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Need Help with BIND9
On 2021-06-15 01:38, Reindl Harald wrote: Am 15.06.21 um 10:31 schrieb Reindl Harald: Am 14.06.21 um 22:37 schrieb techli...@phpcoderusa.com: keiththewebguy.com [1]. does not actually have the two nameservers required though that is not the problem. (ns1 and ns2 have same IP) I have a VPS that runs Plesk and there is only one name server so for every domain I have hosted on that VPS the domains have the same name server for both host names (at the register) I think some call these glue records. we know that already and it's wrong you can't have proper DNS with only one nameserver you can't have proper DNS with two nameservers in the same network or on the same line if you can't provide the minimum of *two* completly independent nameservers you can't host DNS - it's that easy https://www.iana.org/help/nameserver-requirements Minimum number of name servers There must be at least two NS records listed in a delegation, and the hosts must not resolve to the same IP address. Thanks!! ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Need Help with BIND9
On 2021-06-15 01:31, Reindl Harald wrote: Am 14.06.21 um 22:37 schrieb techli...@phpcoderusa.com: keiththewebguy.com [1]. does not actually have the two nameservers required though that is not the problem. (ns1 and ns2 have same IP) I have a VPS that runs Plesk and there is only one name server so for every domain I have hosted on that VPS the domains have the same name server for both host names (at the register) I think some call these glue records. we know that already and it's wrong I would not argue that with you. you can't have proper DNS with only one nameserver you can't have proper DNS with two nameservers in the same network or on the same line if you can't provide the minimum of *two* completly independent nameservers you can't host DNS - it's that easy I would submit to you that a lot of people are running one name server for their websites. One name server seems to be the norm for Plesk. I think ISOPConfig and Webmin probably configure themselves in the same way. [harry@srv-rhsoft:~]$ nslookup ns1.thelounge.net 8.8.8.8 Server: 8.8.8.8 Address:8.8.8.8#53 Non-authoritative answer: Name: ns1.thelounge.net Address: 85.124.176.242 [harry@srv-rhsoft:~]$ nslookup ns2.thelounge.net 8.8.8.8 Server: 8.8.8.8 Address:8.8.8.8#53 Non-authoritative answer: Name: ns2.thelounge.net Address: 91.118.73.16 Thank You So Much For Your Feedback!! ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Need Help with BIND9
Thank you for your help!! On 2021-06-15 00:39, Matus UHLAR - fantomas wrote: On 11.06.21 18:19, Sten Carlsen wrote: From my place I resolve both to: 98.191.108.149 keiththewebguy.com. does not actually have the two nameservers required though that is not the problem. (ns1 and ns2 have same IP) BIND seems to work ok but your local settings probably don't point your hosts to the right NS. On 14.06.21 14:26, techli...@phpcoderusa.com wrote: I do have the same IP in both "glue" records. GoDaddy calls them host records. those might be different records, haven't checked godaddy's dictionary. Server was probably off. Thank you for your help!! it's apparently down again. Since this is a test server I turn it and my internet connection off over night. I'll leave it on for now. some registrars provide you with their own nameservers that don't go down, why don't you use those? I understand. That would be easier. I am trying to learn BIND and after that I am going to learn Postfix and Dovecot mail. I am doing this for learning. Thanks!! -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Linux IS user friendly, it's just selective who its friends are... ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Need Help with BIND9
Am 15.06.21 um 10:31 schrieb Reindl Harald: Am 14.06.21 um 22:37 schrieb techli...@phpcoderusa.com: keiththewebguy.com [1]. does not actually have the two nameservers required though that is not the problem. (ns1 and ns2 have same IP) I have a VPS that runs Plesk and there is only one name server so for every domain I have hosted on that VPS the domains have the same name server for both host names (at the register) I think some call these glue records. we know that already and it's wrong you can't have proper DNS with only one nameserver you can't have proper DNS with two nameservers in the same network or on the same line if you can't provide the minimum of *two* completly independent nameservers you can't host DNS - it's that easy https://www.iana.org/help/nameserver-requirements Minimum number of name servers There must be at least two NS records listed in a delegation, and the hosts must not resolve to the same IP address. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Need Help with BIND9
Am 14.06.21 um 22:37 schrieb techli...@phpcoderusa.com: keiththewebguy.com [1]. does not actually have the two nameservers required though that is not the problem. (ns1 and ns2 have same IP) I have a VPS that runs Plesk and there is only one name server so for every domain I have hosted on that VPS the domains have the same name server for both host names (at the register) I think some call these glue records. we know that already and it's wrong you can't have proper DNS with only one nameserver you can't have proper DNS with two nameservers in the same network or on the same line if you can't provide the minimum of *two* completly independent nameservers you can't host DNS - it's that easy [harry@srv-rhsoft:~]$ nslookup ns1.thelounge.net 8.8.8.8 Server: 8.8.8.8 Address:8.8.8.8#53 Non-authoritative answer: Name: ns1.thelounge.net Address: 85.124.176.242 [harry@srv-rhsoft:~]$ nslookup ns2.thelounge.net 8.8.8.8 Server: 8.8.8.8 Address:8.8.8.8#53 Non-authoritative answer: Name: ns2.thelounge.net Address: 91.118.73.16 ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Need Help with BIND9
On 11.06.21 18:19, Sten Carlsen wrote: From my place I resolve both to: 98.191.108.149 keiththewebguy.com. does not actually have the two nameservers required though that is not the problem. (ns1 and ns2 have same IP) BIND seems to work ok but your local settings probably don't point your hosts to the right NS. On 14.06.21 14:26, techli...@phpcoderusa.com wrote: I do have the same IP in both "glue" records. GoDaddy calls them host records. those might be different records, haven't checked godaddy's dictionary. Server was probably off. Thank you for your help!! it's apparently down again. some registrars provide you with their own nameservers that don't go down, why don't you use those? -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Linux IS user friendly, it's just selective who its friends are... ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Need Help with BIND9
On 2021-06-12 05:30, Matus UHLAR - fantomas wrote: On 11.06.21 18:19, Sten Carlsen wrote: From my place I resolve both to: 98.191.108.149 keiththewebguy.com. does not actually have the two nameservers required though that is not the problem. (ns1 and ns2 have same IP) BIND seems to work ok but your local settings probably don't point your hosts to the right NS. I do have the same IP in both "glue" records. GoDaddy calls them host records. looks like you have registered domain on two servers, but failed to provided the servers' IPs. "glue records" is what your domain needs KEITHTHEWEBGUY.COM. 172800 IN NS NS1.KEITHTHEWEBGUY.COM. KEITHTHEWEBGUY.COM. 172800 IN NS ns2.KEITHTHEWEBGUY.COM. CK0POJMG874LJREF7EFN8430QVIT8BSM.COM. 86400 IN NSEC3 1 1 0 - CK0Q1GIN43N1ARRC9OSM6QPQR81H5M9A NS SOA RRSIG DNSKEY NSEC3PARAM CK0POJMG874LJREF7EFN8430QVIT8BSM.COM. 86400 IN RRSIG NSEC3 8 2 86400 20210617042404 20210610031404 54714 com. X4G7euDX4ox5altSUvf+DfLyijD3A+97OxtkehYEGpUotSvAXXYdriAO rWhfqctrjb7pjNyMApY2lbkuHeqXHACUq26uunHKCoFbLkQ1l56mK2sW mX8qmzImJOaTysXQlH9pJggtlsjvT5+dA+wojtVxlQc7+uq2245G0q0i Nf8JseTw9JzSK66G4IOzl8Z9iQ6KXCKhIKFT4kQXeZP1rA== AG1GER7HG6VFFKTUSO2FO8IDL76AC4B7.COM. 86400 IN NSEC3 1 1 0 - AG1HFAOR0D4AHNGRNHE5M02CMA12RRD4 NS DS RRSIG AG1GER7HG6VFFKTUSO2FO8IDL76AC4B7.COM. 86400 IN RRSIG NSEC3 8 2 86400 20210618044614 20210611033614 54714 com. Z0rbk8cLOj6ZOZRiW74uGgP5rPtdtr0gtKXhxgyVBcmBUjZ2WZcskJ5H YYK6D9KZJYhEvIdvIF+AVBDbyY/7BaRegq44a3Z0pSNlD+nk2fJMqlbA sj+9FkyADAp20dojAXPP+RxoCo2e9hz9XW/S0OKrVxv5NtXqvBOUnahr 7hQOtJCD7uJeb2XLNAHGdOeleIJQhn3E/1CGApoSTxJTaw== couldn't get address for 'NS1.KEITHTHEWEBGUY.COM': failure couldn't get address for 'ns2.KEITHTHEWEBGUY.COM': failure dig: couldn't get address for 'NS1.KEITHTHEWEBGUY.COM': no more Server was probably off. Thank you for your help!! -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. The 3 biggets disasters: Hiroshima 45, Tschernobyl 86, Windows 95 ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Need Help with BIND9
Thank You Mr. Haywood!! On 2021-06-12 05:11, G.W. Haywood via bind-users wrote: Hi there, On Sat, 12 Jun 2021, techli...@phpcoderusa.com wrote: Re: Need Help with BIND9 ... The two domains I am working with on my SOHO home server are 1) keiththewebguy.com and 2) phpcodetest.com. I setup keiththewebguy.com first and configured BIND9 for it on the same server. To try to troubleshoot I configured phpcodetest.com on the same box, however it uses Zoneedit for DNS. phpcodetest.com works as expected. keiththewebguy.com does not work which uses my local BIND9. I've tried everything I can think of. I've tested the config files, run dig, and verified port 53 is open. I took the zone file for keiththewebguy.com from my VPS that runs Plesk and previously hosted keiththewebguy.com. I forgot to change the IP addresses in the zone to my SOHO box and the website on my VPS was accessible. When I changed the IP addresses in the zone file to my SOHO box the website quit working. I assumed this meant I had an Apache issue and that is when I added phpcodetest.com to test Apache. I've checked apache several times... And I just checked it again. Your problem statement is extremely vague and it seems to be telling me that you do not understand how the parts you're working with all fit together into a functioning whole. You need to remedy that, or you'll be flailing around quite unnecessarily in a fog of technical terms and untested and/or broken configurations. You might also need to work on your fault-finding skills, but they might not be the, er, root of the issue. I appreciate your observations. Do you have the book "DNS and BIND"? Old, but still very relevant. No, however I did find part of that book and I am about 3/4 though chapter 4. I'm learning a lot. https://www.oreilly.com/library/view/dns-and-bind/0596100574/ch04.html I started with the Ubuntu 20.04lts manual and I thought that would be enough. ... If you need any additional information let me know. There might be loads of it, but for now I think probably your best bet is to do some reading. Agree. The Web client (browser) needs to request its configured resolver (*may* be BIND) to supply an IP address which is associated with a domain name so it can send HTTP requests (packets) to the Web server (*may* be Apache) at that IP address. To answer the queries from the Web client, the resolver needs to make queries of its own from a name server which *may* also be BIND - not necessarily the same instance. In its turn, the resolver has to find IP addresses for name servers which will answer its queries. The routes all need to be set up so *both* that the clients can talk to all the servers at the IP addresses involved in the conversations *and* that the DNS and Web servers can reply to the requesting clients. You can see this happen, in nauseating detail if required, with a tool like Wireshark. It's a good way to watch the traffic flowing (or not flowing, as the case may be) and I recommend that you spend some quality time doing just that. Note that the terms 'server' and 'client' can be misleading. A server can become a client of another server when it needs information which it intends to return to a client of its own. In my little description above for example, the resolver acts as a server when it serves an IP address to the browser, but as a client when it asks a name server for the IP address to serve to the client. So it's sometimes best to look at the level of the individual request to decide what is acting as a server, and what is acting as a client. I see a nameserver response only for phpcodetest.com: $ dig keiththewebguy.com | grep ANSWER ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1 $ dig +short phpcodetest.com 98.191.108.149 I wouldn't run a port scan without your permission, but at the moment there seems to be no response from 98.191.108.149 to ping and HTTP(S) (which might mean that you've switched off the box for the night...:) Run a scan if you like. I'd like to hear your feedback. Currently I am using an old laptop as a server so I can learn. I turn it off at night. It is on right now. $ ping 98.191.108.149 PING 98.191.108.149 (98.191.108.149) 56(84) bytes of data. ^C --- 98.191.108.149 ping statistics --- 8 packets transmitted, 0 received, 100% packet loss, time 159ms $ telnet 98.191.108.149 80 Trying 98.191.108.149... telnet: Unable to connect to remote host: Connection timed out $ telnet 98.191.108.149 443 Trying 98.191.108.149... telnet: Unable to connect to remote host: Connection timed out The server was probably turned off. Thank you for your help!! HTH -- 73, Ged. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software
Re: Need Help with BIND9
I recently ran into mxtoolbox.com Thanks Paul!! On 2021-06-11 15:53, Paul Kosinski via bind-users wrote: The site mxtoolbox.com has a suite of tools to check your DNS, email and Web servers from the outside. They're easy to use and might turn up something. On Fri, 11 Jun 2021 09:10:32 -0700 techli...@phpcoderusa.com wrote: Hi, The two domains I am working with on my SOHO home server are 1) keiththewebguy.com and 2) phpcodetest.com. I setup keiththewebguy.com first and configured BIND9 for it on the same server. To try to troubleshoot I configured phpcodetest.com on the same box, however it uses Zoneedit for DNS. phpcodetest.com works as expected. keiththewebguy.com does not work which uses my local BIND9. I've tried everything I can think of. I've tested the config files, run dig, and verified port 53 is open. I took the zone file for keiththewebguy.com from my VPS that runs Plesk and previously hosted keiththewebguy.com. I forgot to change the IP addresses in the zone to my SOHO box and the website on my VPS was accessible. When I changed the IP addresses in the zone file to my SOHO box the website quit working. I assumed this meant I had an Apache issue and that is when I added phpcodetest.com to test Apache. I've checked apache several times... And I just checked it again. The server I am using is an old i3 laptop that I upgraded with a SSD. It has 4GB RAM. I am using Ubuntu 20.04lts and BIND9. My connection is a commercial/business Internet connection provided by my cable company for home office usage. This connection does not block ports. I followed the Ubuntu 20.04 server manual to configure BIND9 and I have searched the Internet for more information. If you need any additional information let me know. Thank you for your help!! ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Need Help with BIND9
Thank you for your response. On 2021-06-11 09:19, Sten Carlsen wrote: From my place I resolve both to: 98.191.108.149 keiththewebguy.com [1]. does not actually have the two nameservers required though that is not the problem. (ns1 and ns2 have same IP) I have a VPS that runs Plesk and there is only one name server so for every domain I have hosted on that VPS the domains have the same name server for both host names (at the register) I think some call these glue records. BIND seems to work ok but your local settings probably don't point your hosts to the right NS. I found a really good reference and am going though it and am learning a lot. After I read it I'm going to start over with a fresh install of everything. Or maybe I'll try to troubleshoot. -- Best regards Sten Carlsen -- Aoccdrnig to rseerach at Cmabrigde Uinervtisy, it deosn't mttaer in waht oredr the ltteers in a wrod are, the olny iprmoatnt tihng is taht the frist and lsat lteter be at the rghit pclae. The rset can be a ttoal mses and you can slitl raed it wotihut porbelm. Tihs is bcuseae the hmuan mnid deos not raed ervey lteter by istlef, but the wrod as a wlohe. Amzanig, huh? -- On 11 Jun 2021, at 18.15, Marki wrote: A thing you probably missed is checking the log files. What do they contain when it "isn't working"? What is the actual problem anyway?___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users Links: -- [1] http://keiththewebguy.com ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Need Help with BIND9
Am 12.06.21 um 14:30 schrieb Matus UHLAR - fantomas: On 11.06.21 18:19, Sten Carlsen wrote: From my place I resolve both to: 98.191.108.149 keiththewebguy.com. does not actually have the two nameservers required though that is not the problem. (ns1 and ns2 have same IP) BIND seems to work ok but your local settings probably don't point your hosts to the right NS. looks like you have registered domain on two servers, but failed to provided the servers' IPs. "glue records" is what your domain needs KEITHTHEWEBGUY.COM. 172800 IN NS NS1.KEITHTHEWEBGUY.COM. KEITHTHEWEBGUY.COM. 172800 IN NS ns2.KEITHTHEWEBGUY.COM. couldn't get address for 'NS1.KEITHTHEWEBGUY.COM': failure couldn't get address for 'ns2.KEITHTHEWEBGUY.COM': failure dig: couldn't get address for 'NS1.KEITHTHEWEBGUY.COM': no more besides that it's not even clar if that zones are meant to be public and/or both public nameservers are really pointing to the machine with named in question anyways: https://intodns.com/ don't run public servers before doing the basic homework --- this is a NO-GO - they need to be different machines which shouldn't live on the same network at all but never be the same machine Domain NS records Nameserver records returned by the parent servers are: ns1.keiththewebguy.com. ['98.191.108.149'] [TTL=172800] ns2.keiththewebguy.com. ['98.191.108.149'] [TTL=172800] a.gtld-servers.net was kind enough to give us that information. --- and *that* is why you need *at least* two independent nameservers for a domain Mismatched NS records WARNING: One or more of your nameservers did not return any of your NS records. Error DNS servers responded ERROR: One or more of your nameservers did not respond: The ones that did not respond are: 98.191.108.149 --- Multiple Nameservers ERROR: Looks like you have less than 2 nameservers. According to RFC2182 section 5 you must have at least 3 nameservers, and no more than 7. Having 2 nameservers is also ok by me. --- Missing nameservers reported by your nameservers You should already know that your NS records at your nameservers are missing, so here it is again: ns1.keiththewebguy.com. ns2.keiththewebguy.com. --- SOA Error SOA record No valid SOA record came back! MX Error MX Records Oh well, I did not detect any MX records so you probably don't have any and if you know you should have then they may be missing at your nameservers! WWW Error WWW A Record ERROR: I could not get any A records for www.keiththewebguy.com! (I only do a cache request, if you recently added a WWW A record, it might not show up here.) ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Need Help with BIND9
On 11.06.21 18:19, Sten Carlsen wrote: From my place I resolve both to: 98.191.108.149 keiththewebguy.com. does not actually have the two nameservers required though that is not the problem. (ns1 and ns2 have same IP) BIND seems to work ok but your local settings probably don't point your hosts to the right NS. looks like you have registered domain on two servers, but failed to provided the servers' IPs. "glue records" is what your domain needs KEITHTHEWEBGUY.COM. 172800 IN NS NS1.KEITHTHEWEBGUY.COM. KEITHTHEWEBGUY.COM. 172800 IN NS ns2.KEITHTHEWEBGUY.COM. CK0POJMG874LJREF7EFN8430QVIT8BSM.COM. 86400 IN NSEC3 1 1 0 - CK0Q1GIN43N1ARRC9OSM6QPQR81H5M9A NS SOA RRSIG DNSKEY NSEC3PARAM CK0POJMG874LJREF7EFN8430QVIT8BSM.COM. 86400 IN RRSIG NSEC3 8 2 86400 20210617042404 20210610031404 54714 com. X4G7euDX4ox5altSUvf+DfLyijD3A+97OxtkehYEGpUotSvAXXYdriAO rWhfqctrjb7pjNyMApY2lbkuHeqXHACUq26uunHKCoFbLkQ1l56mK2sW mX8qmzImJOaTysXQlH9pJggtlsjvT5+dA+wojtVxlQc7+uq2245G0q0i Nf8JseTw9JzSK66G4IOzl8Z9iQ6KXCKhIKFT4kQXeZP1rA== AG1GER7HG6VFFKTUSO2FO8IDL76AC4B7.COM. 86400 IN NSEC3 1 1 0 - AG1HFAOR0D4AHNGRNHE5M02CMA12RRD4 NS DS RRSIG AG1GER7HG6VFFKTUSO2FO8IDL76AC4B7.COM. 86400 IN RRSIG NSEC3 8 2 86400 20210618044614 20210611033614 54714 com. Z0rbk8cLOj6ZOZRiW74uGgP5rPtdtr0gtKXhxgyVBcmBUjZ2WZcskJ5H YYK6D9KZJYhEvIdvIF+AVBDbyY/7BaRegq44a3Z0pSNlD+nk2fJMqlbA sj+9FkyADAp20dojAXPP+RxoCo2e9hz9XW/S0OKrVxv5NtXqvBOUnahr 7hQOtJCD7uJeb2XLNAHGdOeleIJQhn3E/1CGApoSTxJTaw== couldn't get address for 'NS1.KEITHTHEWEBGUY.COM': failure couldn't get address for 'ns2.KEITHTHEWEBGUY.COM': failure dig: couldn't get address for 'NS1.KEITHTHEWEBGUY.COM': no more -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. The 3 biggets disasters: Hiroshima 45, Tschernobyl 86, Windows 95 ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Need Help with BIND9
Hi there, On Sat, 12 Jun 2021, techli...@phpcoderusa.com wrote: Re: Need Help with BIND9 ... The two domains I am working with on my SOHO home server are 1) keiththewebguy.com and 2) phpcodetest.com. I setup keiththewebguy.com first and configured BIND9 for it on the same server. To try to troubleshoot I configured phpcodetest.com on the same box, however it uses Zoneedit for DNS. phpcodetest.com works as expected. keiththewebguy.com does not work which uses my local BIND9. I've tried everything I can think of. I've tested the config files, run dig, and verified port 53 is open. I took the zone file for keiththewebguy.com from my VPS that runs Plesk and previously hosted keiththewebguy.com. I forgot to change the IP addresses in the zone to my SOHO box and the website on my VPS was accessible. When I changed the IP addresses in the zone file to my SOHO box the website quit working. I assumed this meant I had an Apache issue and that is when I added phpcodetest.com to test Apache. I've checked apache several times... And I just checked it again. Your problem statement is extremely vague and it seems to be telling me that you do not understand how the parts you're working with all fit together into a functioning whole. You need to remedy that, or you'll be flailing around quite unnecessarily in a fog of technical terms and untested and/or broken configurations. You might also need to work on your fault-finding skills, but they might not be the, er, root of the issue. Do you have the book "DNS and BIND"? Old, but still very relevant. ... If you need any additional information let me know. There might be loads of it, but for now I think probably your best bet is to do some reading. The Web client (browser) needs to request its configured resolver (*may* be BIND) to supply an IP address which is associated with a domain name so it can send HTTP requests (packets) to the Web server (*may* be Apache) at that IP address. To answer the queries from the Web client, the resolver needs to make queries of its own from a name server which *may* also be BIND - not necessarily the same instance. In its turn, the resolver has to find IP addresses for name servers which will answer its queries. The routes all need to be set up so *both* that the clients can talk to all the servers at the IP addresses involved in the conversations *and* that the DNS and Web servers can reply to the requesting clients. You can see this happen, in nauseating detail if required, with a tool like Wireshark. It's a good way to watch the traffic flowing (or not flowing, as the case may be) and I recommend that you spend some quality time doing just that. Note that the terms 'server' and 'client' can be misleading. A server can become a client of another server when it needs information which it intends to return to a client of its own. In my little description above for example, the resolver acts as a server when it serves an IP address to the browser, but as a client when it asks a name server for the IP address to serve to the client. So it's sometimes best to look at the level of the individual request to decide what is acting as a server, and what is acting as a client. I see a nameserver response only for phpcodetest.com: $ dig keiththewebguy.com | grep ANSWER ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1 $ dig +short phpcodetest.com 98.191.108.149 I wouldn't run a port scan without your permission, but at the moment there seems to be no response from 98.191.108.149 to ping and HTTP(S) (which might mean that you've switched off the box for the night...:) $ ping 98.191.108.149 PING 98.191.108.149 (98.191.108.149) 56(84) bytes of data. ^C --- 98.191.108.149 ping statistics --- 8 packets transmitted, 0 received, 100% packet loss, time 159ms $ telnet 98.191.108.149 80 Trying 98.191.108.149... telnet: Unable to connect to remote host: Connection timed out $ telnet 98.191.108.149 443 Trying 98.191.108.149... telnet: Unable to connect to remote host: Connection timed out HTH -- 73, Ged. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Need Help with BIND9
The site mxtoolbox.com has a suite of tools to check your DNS, email and Web servers from the outside. They're easy to use and might turn up something. On Fri, 11 Jun 2021 09:10:32 -0700 techli...@phpcoderusa.com wrote: > Hi, > > The two domains I am working with on my SOHO home server are 1) > keiththewebguy.com and 2) phpcodetest.com. > > I setup keiththewebguy.com first and configured BIND9 for it on the same > server. > > To try to troubleshoot I configured phpcodetest.com on the same box, > however it uses Zoneedit for DNS. phpcodetest.com works as expected. > > keiththewebguy.com does not work which uses my local BIND9. > > I've tried everything I can think of. I've tested the config files, run > dig, and verified port 53 is open. > > I took the zone file for keiththewebguy.com from my VPS that runs Plesk > and previously hosted keiththewebguy.com. I forgot to change the IP > addresses in the zone to my SOHO box and the website on my VPS was > accessible. When I changed the IP addresses in the zone file to my SOHO > box the website quit working. > > I assumed this meant I had an Apache issue and that is when I added > phpcodetest.com to test Apache. I've checked apache several times... > And I just checked it again. > > The server I am using is an old i3 laptop that I upgraded with a SSD. > It has 4GB RAM. > > I am using Ubuntu 20.04lts and BIND9. > > My connection is a commercial/business Internet connection provided by > my cable company for home office usage. This connection does not block > ports. > > I followed the Ubuntu 20.04 server manual to configure BIND9 and I have > searched the Internet for more information. > > If you need any additional information let me know. > > Thank you for your help!! ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Need Help with BIND9
From my place I resolve both to: 98.191.108.149 keiththewebguy.com. does not actually have the two nameservers required though that is not the problem. (ns1 and ns2 have same IP) BIND seems to work ok but your local settings probably don't point your hosts to the right NS. -- Best regards Sten Carlsen -- Aoccdrnig to rseerach at Cmabrigde Uinervtisy, it deosn't mttaer in waht oredr the ltteers in a wrod are, the olny iprmoatnt tihng is taht the frist and lsat lteter be at the rghit pclae. The rset can be a ttoal mses and you can slitl raed it wotihut porbelm. Tihs is bcuseae the hmuan mnid deos not raed ervey lteter by istlef, but the wrod as a wlohe. Amzanig, huh? -- > On 11 Jun 2021, at 18.15, Marki wrote: > > A thing you probably missed is checking the log files. What do they contain > when it "isn't working"? What is the actual problem > anyway?___ > Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe > from this list > > ISC funds the development of this software with paid support subscriptions. > Contact us at https://www.isc.org/contact/ for more information. > > > bind-users mailing list > bind-users@lists.isc.org > https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Need Help with BIND9
A thing you probably missed is checking the log files. What do they contain when it "isn't working"? What is the actual problem anyway?___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Need Help with BIND9
Hi, The two domains I am working with on my SOHO home server are 1) keiththewebguy.com and 2) phpcodetest.com. I setup keiththewebguy.com first and configured BIND9 for it on the same server. To try to troubleshoot I configured phpcodetest.com on the same box, however it uses Zoneedit for DNS. phpcodetest.com works as expected. keiththewebguy.com does not work which uses my local BIND9. I've tried everything I can think of. I've tested the config files, run dig, and verified port 53 is open. I took the zone file for keiththewebguy.com from my VPS that runs Plesk and previously hosted keiththewebguy.com. I forgot to change the IP addresses in the zone to my SOHO box and the website on my VPS was accessible. When I changed the IP addresses in the zone file to my SOHO box the website quit working. I assumed this meant I had an Apache issue and that is when I added phpcodetest.com to test Apache. I've checked apache several times... And I just checked it again. The server I am using is an old i3 laptop that I upgraded with a SSD. It has 4GB RAM. I am using Ubuntu 20.04lts and BIND9. My connection is a commercial/business Internet connection provided by my cable company for home office usage. This connection does not block ports. I followed the Ubuntu 20.04 server manual to configure BIND9 and I have searched the Internet for more information. If you need any additional information let me know. Thank you for your help!! ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
