Configure a DNS server in ISPConfig 3

I'm trying to setup a DNS server for my domain safe-economy.ru. I created a Zone with a wizard and setup to search DNS server on my IP where I bought the domain. On next day I tested but the dns server didn't answer. In logs I found the message:

Code:

2025-01-27T10:23:16.016371+03:00 isp named[575]: client @0x7f682166e168 109.194.128.4#25220 (safe-economy.ru): query (cache) 'safe-economy.ru/HTTPS/IN' denied (allow-query-cache did not match)
2025-01-27T10:23:16.022494+03:00 isp named[575]: client @0x7f6822d3a168 109.194.128.4#29684 (safe-economy.ru): query (cache) 'safe-economy.ru/A/IN' denied (allow-query-cache did not match)
2025-01-27T10:23:16.022806+03:00 isp named[575]: client @0x7f682166e168 109.194.128.4#37240 (ns1.safe-economy.ru): query (cache) 'ns1.safe-economy.ru/AAAA/IN' denied (allow-query-cache did not match)
2025-01-27T10:23:16.024569+03:00 isp named[575]: client @0x7f682166e168 109.194.128.4#23440 (ns2.safe-economy.ru): query (cache) 'ns2.safe-economy.ru/AAAA/IN' denied (allow-query-cache did not match)
2025-01-27T10:23:16.045566+03:00 isp named[575]: client @0x7f682166e168 109.194.128.4#15520 (safe-economy.ru): query (cache) 'safe-economy.ru/HTTPS/IN' denied (allow-query-cache did not match)
2025-01-27T10:23:16.050455+03:00 isp named[575]: client @0x7f682166e168 109.194.128.4#15765 (ns1.safe-economy.ru): query (cache) 'ns1.safe-economy.ru/AAAA/IN' denied (allow-query-cache did not match)
2025-01-27T10:23:16.052441+03:00 isp named[575]: client @0x7f6822d3a168 109.194.128.4#45812 (safe-economy.ru): query (cache) 'safe-economy.ru/A/IN' denied (allow-query-cache did not match)
2025-01-27T10:23:16.052499+03:00 isp named[575]: client @0x7f682166e168 109.194.128.4#65481 (ns2.safe-economy.ru): query (cache) 'ns2.safe-economy.ru/AAAA/IN' denied (allow-query-cache did not match)
2025-01-27T10:23:16.068371+03:00 isp named[575]: client @0x7f6822d3a168 109.194.128.4#20152 (safe-economy.ru): query (cache) 'safe-economy.ru/HTTPS/IN' denied (allow-query-cache did not match)
2025-01-27T10:23:16.072076+03:00 isp named[575]: client @0x7f6822d3a168 109.194.128.4#26687 (safe-economy.ru): query (cache) 'safe-economy.ru/A/IN' denied (allow-query-cache did not match)
2025-01-27T10:23:16.074287+03:00 isp named[575]: client @0x7f682166e168 109.194.128.4#29225 (ns2.safe-economy.ru): query (cache) 'ns2.safe-economy.ru/AAAA/IN' denied (allow-query-cache did not match)
2025-01-27T10:23:16.079468+03:00 isp named[575]: client @0x7f6822d3a168 109.194.128.4#4638 (ns1.safe-economy.ru): query (cache) 'ns1.safe-economy.ru/AAAA/IN' denied (allow-query-cache did not match)
2025-01-27T10:23:16.097325+03:00 isp named[575]: client @0x7f6822d3a168 109.194.128.4#30424 (safe-economy.ru): query (cache) 'safe-economy.ru/HTTPS/IN' denied (allow-query-cache did not match)
2025-01-27T10:23:16.100387+03:00 isp named[575]: client @0x7f682166e168 109.194.128.4#29131 (safe-economy.ru): query (cache) 'safe-economy.ru/A/IN' denied (allow-query-cache did not match)
2025-01-27T10:23:16.102474+03:00 isp named[575]: client @0x7f6822d3a168 109.194.128.4#61864 (ns2.safe-economy.ru): query (cache) 'ns2.safe-economy.ru/AAAA/IN' denied (allow-query-cache did not match)
2025-01-27T10:23:16.111255+03:00 isp named[575]: client @0x7f682166e168 109.194.128.4#46752 (ns1.safe-economy.ru): query (cache) 'ns1.safe-economy.ru/AAAA/IN' denied (allow-query-cache did not match)
2025-01-27T10:23:16.120795+03:00 isp named[575]: client @0x7f682166e168 109.194.128.4#46118 (safe-economy.ru): query (cache) 'safe-economy.ru/A/IN' denied (allow-query-cache did not match)
2025-01-27T10:23:16.123809+03:00 isp named[575]: client @0x7f6822d3a168 109.194.128.4#39714 (ns2.safe-economy.ru): query (cache) 'ns2.safe-economy.ru/AAAA/IN' denied (allow-query-cache did not match)
2025-01-27T10:23:16.126023+03:00 isp named[575]: client @0x7f6x (allow-query-cache did not match)
2025-01-27T10:23:16.131384+03:00 isp named[575]: client @0x7f682166e168 109.194.128.4#29054 (ns1.safe-economy.ru): query (cache) 'ns1.safe-economy.ru/AAAA/IN' denied (allow-query-cache did not match)

How to fix?

 

You mean like this?

 

Yea please don't use bogon IPs in Public DNS.

 

Спасибо! Да, теперь работает.

 

I have another problem. Now I'm trying to configure DNS server for main domain wdserver.ru, where ISP is working. I set up the records as they are for safe-economy.ru
but nothings works. This time there is nothing in logs except that.
Can't understand what's wrong.

 

The server is behind the NAT and port 53 for udp and tcp are forwarded to VM.
P.S.: I know that you can get real ip from running nslookup or ping, however I'm just hiding it just in case.

 

This is how I delegated

I think that can't be a reason because safe-economy.ru works correctly.

 

Asking Public DNS wdserver.ru seems to work just fine here. What issue are you facing?

 

There is A record for wellart.waydev.wdserver.ru, and there is site there. Before I delegated DNS to my DNS server it worked. Now I can't make it work, not with external IP, not with 127.0.0.1 in A record.

 

Sorry my bad, I didn't pay attention in panic. So I can also use "*.wdserver.ru." to make all sites work on subdomains, right?
Also I have another questions:

1. How should I configure another DNS server for client like waydev.wdserver.ru, so he can manage his records.
2. Can I use DNS to proxy some domains to another VM in local network?

 

This question is still actual for me.

But this is more important for me now. I configured A record to use external IP where ISPConfig is and made a redirect in Vhost subdomain options to another VM in local network.

But this doesn't work fine: sometimes I got redirected to IP instead of domain. Can I redirect somehow on a DNS level?

 

Please help with my problem above.

 

Is the problem still there?

I'm not sure I understand what you mean here, or what you mean by

If you want a domain to go to some host, you enter in DNS the IP of the host for that domain name.