Hello all, I'm having a problem with a chroot bind config from this site http://www.wains.be/index.php/2007/12/13/centos-5-chroot-dns-with-bind/ Basically I have my named.com in /var/named/chroot/etc and it looks like this": // we include the rndckey (copy-paste from rndc.key created earlier) key "rndckey" { algorithm hmac-md5; secret "wouldn't you like to know; }; controls { inet 127.0.0.1 port 953 allow { 127.0.0.1; } keys { "rndckey"; }; #inet xxx.xxx.xxx.xxx allow { any; } keys { "rndckey"; }; }; options { directory "/var/named"; pid-file "/var/run/named/named.pid"; recursion yes; allow-recursion { 127.0.0.1; xxx.xxx.xxx.xxx; }; // these are the opendns servers (optional) forwarders { 208.67.222.222; 208.67.220.220; }; listen-on { 127.0.0.1; xxx.xxx.xxx.xxx; }; /* * If there is a firewall between you and nameservers you want * to talk to, you might need to uncomment the query-source * directive below. Previous versions of BIND always asked * questions using port 53, but BIND 8.1 uses an unprivileged * port by default. */ #query-source address * port 53; // so people can't try to guess what version you're running version "REFUSED"; allow-query { 127.0.0.1; xxx.xxx.xxx.xxx; }; }; server xxx.xxx.xxx.xxx { keys { rndckey; }; }; zone "." IN { type hint; file "named.ca"; // we assume we have a slave dns server with the IP 192.168.254.101 #zone "test.be" IN { # type master; # file "data/test.be.zone"; # allow-update { none; }; # allow-transfer { 192.168.254.101; }; # }; My zone files look like so in /var/named/chroot/var/named/data/my.domain.zone: $ttl 38400 mydomain.com. IN SOA ns.mydomain.com. admin.mydomain.com. ( 200904291437 ; Serial 10800 ; Refresh after 3 hours 3600 ; Retry after 1 hour 604800 ; Expire after 1 week 86400 ) ; Minimum TTL of 1 day mydomain.com. IN NS ns1.mydomain.com. mydomain.com. IN MX 1 mx.mydomain.com. www.mydomain.com. IN A xxx.xxx.xxx.xxx ns1.mydomain.com. IN A xxx.xxx.xxx.xxx ns2.mydomain.com. IN A xxx.xxx.xxx.xxx mx.mydomain.com. IN A xxx.xxx.xxx.xxx mail.mydomain.com. IN CNAME mx.mydomain.com. My problem is with the rndc status command it doesn't show any zones listed. [root@xxxx data]# rndc status number of zones: 0 debug level: 0 xfers running: 0 xfers deferred: 0 soa queries in progress: 0 query logging is OFF recursive clients: 0/1000 tcp clients: 0/100 server is up and running Bind is working and the process is there, doing ps aucx | grep named shows the PID. Is there something I'm missing? I've looked over the conf and can't find a thing. Also, no errors in /var/log/messages. Also, when I query my domains using nslookup www.mydomain.com 127.0.0.1 I can't get a response. I can query sites like google, howtoforge..etc..etc IT seems my zone files aren't loading? But then again I can't tell because I have no errors in the logs. Thanks in advance, any help is appreciated, I'm pulling my hair out.
