Hi, I have bind -9.6.1-0.3.b1.fc11.i586 on fedora core 11. On 2 servers named ns0.mydomain.uk.net and ns1.mydomain.uk.net. I have the following named.conf in /etc on ns0.mydomain.uk.net : Code: // // named.conf // // Provided by Red Hat bind package to configure the ISC BIND named(8) DNSrschall // server as a caching only nameserver (as a localhost DNS resolver only). // // See /usr/share/doc/bind*/sample/ for example named configuration files. // options { listen-on port 53 { 127.0.0.1; }; listen-on-v6 port 53 { ::1; }; directory "/var/named"; dump-file "/var/named/data/cache_dump.db"; statistics-file "/var/named/data/named_stats.txt"; memstatistics-file "/var/named/data/named_mem_stats.txt"; allow-query { localhost; }; recursion yes; dnssec-enable yes; dnssec-validation yes; dnssec-lookaside . trust-anchor dlv.isc.org.; }; logging { channel default_debug { file "data/named.run"; severity dynamic; }; }; zone "." IN { type hint; file "named.ca"; }; zone "mydomain.uk.net" IN { type master; file "mydomain.uk.net.zone"; allow-update { none; }; allow-transfer { 82.174.237.219; }; }; include "/etc/named.rfc1912.zones"; include "/etc/named.dnssec.keys"; include "/etc/pki/dnssec-keys/dlv/dlv.isc.org.conf"; The mydomain.uk.net.zone file in /var/named on ns0.mydomain.uk.net is : Code: $TTL 86400 $ORIGIN mydomain.uk.net. @ IN SOA ns0.mydomain.uk.net. admin.mydomain.uk.net. ( 2004042601 ; serial 21600 ; refresh 3600 ; retry 604800 ; expire 86400 ) ; minimum IN NS ns0.mydomain.uk.net. IN NS ns1.mydomain.uk.net. IN MX 10 mail.mydomain.uk.net. IN A 82.174.237.220 ns0 IN A 82.174.237.218 ns1 IN A 82.174.237.219 www IN A 82.174.237.220 ftp IN A 82.174.237.220 mail IN A 82.174.237.220 The named.conf on ns1.mydomain.uk.net is : Code: // // named.conf // // Provided by Red Hat bind package to configure the ISC BIND named(8) DNSI have configured /etc/named.conf on ns0.mydomain.uk.net, it is : // server as a caching only nameserver (as a localhost DNS resolver only). // // See /usr/share/doc/bind*/sample/ for example named configuration files. // options { listen-on port 53 { 127.0.0.1; }; listen-on-v6 port 53 { ::1; }; directory "/var/named"; dump-file "/var/named/data/cache_dump.db"; statistics-file "/var/named/data/named_stats.txt"; memstatistics-file "/var/named/data/named_mem_stats.txt"; allow-query { localhost; }; recursion yes; dnssec-enable yes; dnssec-validation yes; dnssec-lookaside . trust-anchor dlv.isc.org.; }; logging { channel default_debug { file "data/named.run"; severity dynamic; }; }; zone "." IN { type hint; file "named.ca"; }; zone "mydomain.uk.net" IN { type slave; masters { 82.174.237.218; }; }; include "/etc/named.rfc1912.zones"; include "/etc/named.dnssec.keys"; include "/etc/pki/dnssec-keys/dlv/dlv.isc.org.conf"; The first problem I am having is that when run rndc reload on ns0.mydomain.uk.net, then go into /var/named on ns1.mydomain.uk.net, the copy of the zone file mydomain.uk.net.zone is not there. I can ping all of the ips with no problems, but as soon as I attempt to ping using the domain, I get the old ip address. I can access my web server via a browser using the ip address, but cannot using the domain name. I have set the port UDP 53 for ns0 & ns1.mydomain.co.uk in my routers firewall and enabled DNS for both servers on the firewall GUI in Fedora, but the domain is still not resolving. I have tried using Webmin and still have the same problem. Please help.
What do the dns logs tell on both sides, while trying? if the remote site tells nothing you might also try a tcpdump to see whether traffic is blocked or not. Keep in mind that you need 53/tcp for zonetransfers. I'd not use "ping" to resolve anything more than that I'd try dig or nslookup. And especially on a windowsclient I'd flush the dns cache while trying the lookup with ipconfig /flushdns also something like dig yourdomain.tld +trace might help to check whether the tld-NIC's server has the necessary delegation info on where to redirect the request to do the lookup. Or your directly query both of your servers: dig www.mydomain.uk.net @82.174.237.218 dig www.mydomain.uk.net @82.174.237.219 Maybe the following sites might help you while debugging: http://www.robtex.com/dns/mydomain.uk.net.html#records http://www.intodns.com/mydomain.uk.net
What's the output of netstat -tap on the master? Any errors in the logs on the slave? Did you set up glue records? ( http://en.wikipedia.org/wiki/Domain_Name_System#Circular_dependencies_and_glue_records )
