Hello everyone, I have a couple of days with this little problem. I set the primary domain correctly and it works great, but when creating a new domain does not get to do to resolve the DNS. I have to do more to create the domain and dns records in ispconfig? Thank you very much to all.
; <<>> DiG 9.9.5-9+deb8u1-Debian <<>> @localhost pcmntic.es ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 9743 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 3 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;pcmntic.es. IN A ;; ANSWER SECTION: pcmntic.es. 3600 IN A 37.59.101.93 ;; AUTHORITY SECTION: pcmntic.es. 3600 IN NS ns1.pcmntic.es. pcmntic.es. 3600 IN NS ns2.pcmntic.es. ;; ADDITIONAL SECTION: ns1.pcmntic.es. 86400 IN A 37.59.101.93 ns2.pcmntic.es. 86400 IN A 37.59.101.93 ;; Query time: 1 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: Tue Jul 21 11:41:23 CEST 2015 ;; MSG SIZE rcvd: 123
That's good, so your server is responding fine for that domain. This means that all settings that you made in ISPConfig for the domain seem to be correct. next test the DNS with a DNS check tool like intodns.com.
Check if there is a firewall in front of the server or on the server that blocks the connections to BIND and ansure that bind listens on all interfaces (netstat -tap) and not just on localhost.
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name tcp 0 0 *:smtp *:* LISTEN 1036/master tcp 0 0 localhost:953 *:* LISTEN 294/named tcp 0 0 *:imaps *:* LISTEN 897/dovecot tcp 0 0 *op3s *:* LISTEN 897/dovecot tcp 0 0 localhost:10024 *:* LISTEN 1114/amavisd-new (m tcp 0 0 localhost:10025 *:* LISTEN 1036/master tcp 0 0 *:mysql *:* LISTEN 776/mysqld tcp 0 0 *:submission *:* LISTEN 1036/master tcp 0 0 localhost:11211 *:* LISTEN 295/memcached tcp 0 0 *op3 *:* LISTEN 897/dovecot tcp 0 0 *:imap2 *:* LISTEN 897/dovecot tcp 0 0 svr1.pcmntic.es:http 60.173.10.235:x11 SYN_RECV - tcp 0 0 *:urd *:* LISTEN 1036/master tcp 0 0 *:ftp *:* LISTEN 918/pure-ftpd (SERV tcp 0 0 svr1.pcmntic.es:domain *:* LISTEN 294/named tcp 0 0 127.0.0.2:domain *:* LISTEN 294/named tcp 0 0 localhost:domain *:* LISTEN 294/named tcp 0 0 *:ssh *:* LISTEN 292/sshd tcp 0 0 localhost:mysql localhost:40821 ESTABLISHED 776/mysqld tcp 0 0 localhost:40821 localhost:mysql ESTABLISHED 1258/amavisd-new (c tcp 0 0 localhost:mysql localhost:47825 ESTABLISHED 776/mysqld tcp 0 0 svr1.pcmntic.es:ssh 254.75.134.37.dyn:53960 ESTABLISHED 9938/0 tcp 0 0 localhost:47825 localhost:mysql ESTABLISHED 1259/amavisd-new (c tcp6 0 0 [::]:smtp [::]:* LISTEN 1036/master tcp6 0 0 svr1.pcmntic.es:953 [::]:* LISTEN 294/named tcp6 0 0 [::]:https [::]:* LISTEN 624/apache2 tcp6 0 0 [::]:imaps [::]:* LISTEN 897/dovecot tcp6 0 0 [::]op3s [::]:* LISTEN 897/dovecot tcp6 0 0 svr1.pcmntic.es:10024 [::]:* LISTEN 1114/amavisd-new (m tcp6 0 0 [::]:submission [::]:* LISTEN 1036/master tcp6 0 0 [::]op3 [::]:* LISTEN 897/dovecot tcp6 0 0 [::]:imap2 [::]:* LISTEN 897/dovecot tcp6 0 0 [::]:http-alt [::]:* LISTEN 624/apache2 tcp6 0 0 [::]:http [::]:* LISTEN 624/apache2 tcp6 0 0 [::]:urd [::]:* LISTEN 1036/master tcp6 0 0 [::]:tproxy [::]:* LISTEN 624/apache2 tcp6 0 0 [::]:ftp [::]:* LISTEN 918/pure-ftpd (SERV tcp6 0 0 [::]:domain [::]:* LISTEN 294/named tcp6 0 0 [::]:ssh [::]:* LISTEN
where I can see the configuration files manually?It is very strange what is happening to me and I would like to know where the fault. If I see this is beyond me, there is the possibility of hiring a support service right?
The config files are in their default system locations, e.g. the bind files are in /etc/bind/ or /var/lib/named, depending of the Linux distribution that you use. the problem seems to be that bind is listening on localhost only, please edit the named.conf and change it so that it listens on all interfaces. ispconfig just configures the zones, it does not alter the global named.conf file.
options { directory "/var/cache/bind"; // If there is a firewall between you and nameservers you want // to talk to, you may need to fix the firewall to allow multiple // ports to talk. See http://www.kb.cert.org/vuls/id/800113 // If your ISP provided one or more IP addresses for stable // nameservers, you probably want to use them as forwarders. // Uncomment the following block, and insert the addresses replacing // the all-0's placeholder. forwarders { 8.8.8.8; 8.8.4.4; }; //======================================================================== // If BIND logs error messages about the root key being expired, // you will need to update your keys. See https://www.isc.org/bind-keys //======================================================================== dnssec-validation auto; auth-nxdomain no; # conform to RFC1035 listen-on { any; }; listen-on-v6 { any; }; // Do not transfer the zone information to the secondary DNS allow-transfer { none; }; };
