I have finally got my ISPConfig set up on a static IP without any blocked ports and almost everything is working great. The only issue I am having is with my DNS resolution of brojoh.com. Here's my setup. I have two servers running, the first one at IP 71.127.83.19 is the ISPConfig box. There are currently two domains set up in it. Preventenance.com is working correctly, but brojoh.com is not. Brojoh.com is the domain I used when setting everything up (instead of example.com) and running hostname on that box reads 'web.brojoh.com'. I have a second box at IP 71.127.83.20 that is just a vanilla ubuntu install with apache2 installed. The hostname of this box is 'dev.brojoh.com'. Both computers are not behing a router and are directly connected to the internet, so port forwarding is not the issue. If use the IP of ISPConfig's server, I get the shared IP page, and preventenance.com is working so I know that apache is working there. If I use the IP of the dev box, I get the apache2 directory listing, so I know it's working, but if I use the hostnames, nothing happens. So here is how I set up the brojoh.com site in ISPConfig: I have two Co-domains set up for it, the first is brojoh.com and the second is ftp.brojoh.com. Both point back to the 71.127.83.19 IP that's the same box. In the DNS Manager, I have the SOA as brojoh.com and 4 A records. The first two are for www and ftp and they poing to 71.127.83.19. The other two are dev and vent and they point to 71.127.83.20 which is the other computer. For some reason, none of these domain names resolve. I'm pretty sure I haven't given enough information to solve my problem, but I don't know what else to volunteer. I really hope someone can give me a hand sorting this out. Thanks in advance.
http://www.dnsreport.com/tools/dnsreport.ch?domain=brojoh.com FAIL Lame nameservers ERROR: You have one or more lame nameservers. These are nameservers that do NOT answer authoritatively for your domain. This is bad; for example, these nameservers may never get updated. The following nameservers are lame: 71.127.83.19 71.127.83.19 I guess that's the main issure. Having two nameservers with the same IP works... even if it is red in there (I do the same...)
I'm pulling my hair out. I went into opensrs and edited my nameserver pointers. It was ns1.brojoh.com and ns2.brojoh.com both pointing to 71.127.83.19. I added www.brojoh.com and web.brojoh.com pointing to the same IP and now www.brojoh.com works, but simply brojoh.com does not. Nor does dev.brojoh.com. What in the world did I screw up?
Here is my named.conf file: Code: options { pid-file "/var/run/bind/run/named.pid"; directory "/etc/bind"; auth-nxdomain no; /* * If there is a firewall between you and nameservers you want * to talk to, you might need to uncomment the query-source * directive below. Previous versions of BIND always asked * questions using port 53, but BIND 8.1 uses an unprivileged * port by default. */ // query-source address * port 53; }; // // a caching only nameserver config // zone "." { type hint; file "db.root"; }; zone "0.0.127.in-addr.arpa" { type master; file "db.local"; }; zone "83.127.71.in-addr.arpa" { type master; file "pri.83.127.71.in-addr.arpa"; }; zone "brojoh.com" { type master; file "pri.brojoh.com"; }; zone "preventenance.com" { type master; file "pri.preventenance.com"; }; And here is the pri.brojoh.com file: Code: $TTL 86400 @ IN SOA www.brojoh.com. admin.brojoh.com. ( 2006102304 ; serial, todays date + todays serial # 28800 ; refresh, seconds 7200 ; retry, seconds 604800 ; expire, seconds 86400 ) ; minimum, seconds ; NS www.brojoh.com. ; Inet Address of name server 1 NS www.brojoh.com. ; Inet Address of name server 2 ; MX 10 mail1.ex.dslextreme.net.. brojoh.com. A 71.127.83.19 www A 71.127.83.19 dev A 71.127.83.20 ftp A 71.127.83.19 vent A 71.127.83.20 ns1 A 71.127.83.19 ns2 A 71.127.83.19 ;;;; MAKE MANUAL ENTRIES BELOW THIS LINE! ;;;; Don't I have a master zone file?
Some suggestions... browngb, I had the same problem some weeks ago. The friends from this Forum help me in my way... I saw your pri.xxx conf. Follow my pri.innovat. See in the NS entry, in this place you put yours NSs hosts, not your domain like www... Code: $TTL 86400 @ IN SOA sol.innovat.com.br. root.innovat.com.br. ( 2006101101 ; serial, todays date + todays serial # 28800 ; refresh, seconds 7200 ; retry, seconds 604800 ; expire, seconds 86400 ) ; minimum, seconds ; NS sol.innovat.com.br. ; Inet Address of name$ NS vmartins.ddns.com.br. ; Inet Address of na$ NS servervmartins.no-ip.info. ; Inet Address of name serve$ ; MX 10 innovat.com.br. innovat.com.br. A 200.188.210.54 sol A 200.188.210.54 www A 200.188.210.54 pop CNAME sol.innovat.com.br. smtp CNAME sol.innovat.com.br. ftp CNAME sol.innovat.com.br. sol1 CNAME vmartins.ddns.com.br. sol2 CNAME servervmartins.no-ip.info. ;;;; MAKE MANUAL ENTRIES BELOW THIS LINE! ;;;; My suggestion for your pri.brojoh.com: Code: $TTL 86400 @ IN SOA www.brojoh.com. admin.brojoh.com. ( 2006102304 ; serial, todays date + todays serial # 28800 ; refresh, seconds 7200 ; retry, seconds 604800 ; expire, seconds 86400 ) ; minimum, seconds ; NS [COLOR="Red"]ns1.brojoh.com[/COLOR]. ; Inet Address of name server 1 NS [COLOR="Red"]ns2.brojoh.com[/COLOR]. ; Inet Address of name server 2 ; MX 10 mail1.ex.dslextreme.net.. brojoh.com. A 71.127.83.19 www A 71.127.83.19 ns1 A 71.127.83.19 [COLOR="Red"]ns2 A 71.127.83.20 dev CNAME ns2.brojoh.com ftp CNAME ns1.brojoh.com vent CNAME ns2.brojoh.com[/COLOR] ;;;; MAKE MANUAL ENTRIES BELOW THIS LINE! ;;;; This is my opinion... I make all confs in DNS Manager, and to my NS2 I put in the master file in ISPConfig Conf Folder. I hope be helpful. Vinicius Sao Paulo - Brasil
my dns entry looks like this: Code: $ORIGIN roleplayer.org. $TTL 86400 roleplayer.org. IN SOA t390.greatnet.de. hostmaster.greatnet.de. ( 2006071401 10800 3600 604800 86400 ) ns3 A 83.133.126.146 ns4 A 83.133.126.146 roleplayer.org. 86400 IN A 83.133.126.175 *.roleplayer.org. 86400 IN A 83.133.126.175 roleplayer.org. 86400 IN MX 10 mail.roleplayer.org. roleplayer.org. 86400 IN NS t390.greatnet.de. roleplayer.org. 86400 IN NS t390.greatnet.de. Instead of using all the cnames makea wild card entry *.DOMAIN.COM (makes it much easier to read I think than having a whole list of entries and at add the NS entries also. I don't know right now why I put in there twice roleplayer.org. IN NS ....
Should my SOA in pri.brojoh.com be brojoh.com. and not www.brojoh.com.? If I manually edit these files with vi, will ISPConfig overwrite them? I really appreciate your guys' help.
Ok, so it's all finally working. I went into the DNS manager for ISPConfig and set the name servers to ns1.brojoh.com and ns2.brojoh.com and now it seems to be happy. When I did that, it changed my SOA to ns1.brojoh.com, fyi. I'm certain that this is how I originally had it all set up, but it didn't work then. I will test it by deleting the www.brojoh.com from the opensrs nameserver config to see if that breaks what I've done. One question about CNAME's: When I try to add a CNAME with the Host as ftp and the Target as www.brojoh.com, it gives me the error "There is already an A Record entry for this host in this zone." I deleted the ftp from A and checked pri.brojoh.com to make sure it's gone and it is. I was able to add the CNAME to preventenance and it works fine. Anyone know?
After every change that you make in the DNS-Manager, the named.conf and pri.domain will be updated with your changes and defaults values (like your NS entries, IP numbers, and other things). The pri.domain is more elegant than pri.www.domain (I think ). You put the www in A, point to IP. And to this to other A records like NS1, NS2, etc. The CNAME ftp entry have to point o NS, like ns1.brojon.com. Is the same opinion of pri... is more elegant . I made my conf in this way... I don't know if was the better, but now I have no problem of my DNS. Other suggestion is testing your DNS in www.dnsreport.com, there are many tips there. Follow the falko tip: clean your dns recicle bin. See you... Vinicius Sao Paulo - Brasil
I forgot all about the recycle bin. Thank you so much everyone for your help. Everything seems to be working properly now and I can now start regrowing my hair. Thanks again.
