Can you ping the server from that other Linux? Did you follow the troubleshooting instructions in the Setting up name service -tutorial? Is there a firewall between the hosts blocking name service port?
yes i can ping from other linux on ispconfig my firewall: port 53 TCP and UDP open i have add line allow-query { any; }; in /etc/bind/named.conf.options for have no error in place of Refused but ovh said me that was problems with Dns servers for the moment i have created my DNS zone on dashboard ovh i try to explain My actually server is on ispconfig with only one host All services are OK Hostname server look like ip123.ip-54-37-123.eu. On my DNS my domain was registred i have add A panel.mydomain.fr 123.45.67.89 (ip of first VM master new ispconfig) and A mx1.mydomain.fr 98.76.54.123 (ip of my second VM mail server new ispconfig) on my dashboard OVH for additionals IP i have change my dns reverse for panel.mydomain.fr and mx1.mydomain.fr => OK on my first VM hostname is panel panel.mydomain.fr on my second hostname is mx1 mx1.mydomain.fr i can ping my 2 VMs from outside I have just add on my VMs /etc/resolv.conf 8.8.8.8 and 8.8.4.4 if i want to go out from VMs I have create one website on my new ispconfig mydomain.fr in my zone DNS i have created like this: i have add A panel.mydomain.fr 123.45.67.89 (ip of first VM master new ispconfig) after screenshot my servers are like OK and communicate together after this i have change my DNS servers on my dashboard OVH of my domain for link my new dns server i don't know why is not functionaly, it's same config for DNS that my actually server. i will check a new time tonight and send result who was send by zonemaster.net
when your dns server is doing the dns for the domain it's on itself then you need to provide glue records for the dns servers with your domain registrar. ie: you can't tell dns to use panel.mydomain.fr for dns when it needs to lookup panel.mydomain.fr to find panel.mydomain.fr
result of dig for my domain.fr: root@ip107:~# dig @192.168.100.10 mydomain.fr ; <<>> DiG 9.10.3-P4-Debian <<>> @192.168.100.10 mydomain.fr ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 19084 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 1232 ;; QUESTION SECTION: ;mydomain.fr. IN A ;; ANSWER SECTION: mydomain.fr. 3600 IN A 192.168.100.10 ;; Query time: 1 msec ;; SERVER: 192.168.100.10#53(192.168.100.10) ;; WHEN: Thu Feb 09 19:37:50 UTC 2023 ;; MSG SIZE rcvd: 59 i have no authority
if i test command host on my server it's ok, same result if i run this command this other linux root@panel:~# host mx1.mydomain.fr 192.168.100.10 Using domain server: Name: 192.168.100.10 Address: 192.168.100.10#53 Aliases: mx1.mydomain.fr has address 192.168.100.20
it would be easier to check things and provide help if we knew what the actual domain was.. for dns / email issues there's no benefit in keeping the domain secret now, especially has all that information would need to be publicly available for both dns and mail to work anyway.
my 2 cents is to avoid webmail on the mail server, and to install roundcube on a standard website running on the web server. More easy to update, more safe (no Web service to expose from mail server).
i have changed just now my DNS server on OVH for my domain, they will be actived in few minutes So here's my setup: Actually server for all services : ip107.ip-54-37-126.eu / 54.37.126.107 New servers : panel.pixelatwork.fr / 178.32.115.59 and mx1.pixelatwork.fr / 178.32.121.218 One website Zone DNS For mail.pixelatwork.fr i have keep actually server because i have many mails boxes whith this server for other domain, i will changed it since it's ok for mx1.pixelatwork.fr sorry if my explains are not good, i'm french and my english is so bad If you want more informations i will here all day long. Thank you all for your help.
for the moment : dns111.ovh.net. ns111.ovh.net. because i have replace with my zone DNS on OVH dashboard waiting for my server to work I have changed this day my servers DNS to panel.pixelatwork.fr and sdns2.ovh.net
When i want to add Secondary DNS on ovh dashboard In my zone DNS on ispconfig i have add this field on my actually server i can add this, it'ok but on new server, impossible.
You have several mistakes in the zone you created, according to the screenshots in #31. Any fully qualified domain name in DNS must end with a dot, and several of these dots behind pixelatwork.fr are missing. Please see the detailed tutorial from @Taleman on how to set up DNS records: https://www.howtoforge.com/tutorial/setting-up-your-own-name-service-with-ispconfig/
when i run a dig from my old server to new server: root@ip107:~# dig @178.32.115.59 pixelatwork.fr ; <<>> DiG 9.10.3-P4-Debian <<>> @178.32.115.59 pixelatwork.fr ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 18252 ;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1 ;; WARNING: recursion requested but not available ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 1232 ;; QUESTION SECTION: ;pixelatwork.fr. IN A ;; ANSWER SECTION: pixelatwork.fr. 3600 IN A 178.32.115.59 ;; Query time: 0 msec ;; SERVER: 178.32.115.59#53(178.32.115.59) ;; WHEN: Sat Feb 11 12:12:20 UTC 2023 ;; MSG SIZE rcvd: 59 i have remove allow-query { any; }; in /etc/bind/named.conf.options and i have restart named server for the moment i have not authority, it's possible i must just wait ?
This is likely a fault in the query tool you are using or in the way you queried the system and not on your server, as systems installed by the auto-installer are, by default, no open resolvers. Most likely you used that tool to query for the zone you added or for its IP and your system must respond for that and this is not an open resolver. This means you do not want that your system responds to zones that you added to it, or in other words, you don't want to run a DNS server, as any DNS server must be allowed to be queried by other systems to respond to zones. If you want a working server, you must undo this change. What you can add there in addition is something like: allow-recursion { 127.0.0.1; }; but normally, your system should limit recursion already, unless you manually altered other BIND config files. Have you considered that renting a ready-installed system somewhere might be better and outsourcing admin work and DNS record management? Running a system connected to the internet also includes the responsibility for you that you must be able to do this safely and that you have the required knowledge. maybe try learning this first in a local network behind a router by setting up some virtual machines to build up admin knowledge, or take some courses?
I added this line to test because I have a result: refused on my dig command By default this line does not exist in the file
Thank you all for your help Ispconfig is ok, server mail is good, DNS OK But i have a little problem with FTP, i have created new user ftp for my website. In Filezilla : Status: Connecting to 178.32.115.59:21... Status: Connection established, waiting for welcome message... Status: Initializing TLS... Status: TLS connection established. Status: Logged in Status: Retrieving directory listing... Command: PWD Response: 257 "/" is your current location Command: TYPE I Response: 200 TYPE is now 8-bit binary Command: PORT 192,168,1,151,226,61 Response: 500 I won't open a connection to 192.168.1.151 (only to 86.249.1.25) Command: PASV Response: 227 Entering Passive Mode (178,32,115,59,206,5) Command: MLSD Error: Connection timed out after 20 seconds of inactivity Error: Failed to retrieve directory listing Status: Disconnected from server 500 I won't open a connection to 192.168.1.151 (only to 86.249.1.25) if I understand correctly, the server allows the ip of my mox internet but not the local ip of my computer ?