Hi...

DNS seems not be be servicing up queries for me ?

smalltalk.fi has DNS serviced by two external DNS servers (for the DNS hosting thing).

nserver: dnstemp-a.terva.net [OK]
nserver: dnstemp-b.terva.net [OK]


and these are (for now) mapped by the firewall to the same ISPCONFIG box by their two external IP numbers (for testing). I have then opened DNS port 53 on the firewall.

For a domain, I have then two different subdomains setup (for some planned thing) yet externally nothing seems to work and even internally one domain is not seen as working when I try.

Internally even: nslookup.

> torr.smalltalk.fi
Server: 192.168.0.1
Address: 192.168.0.1#53

Name: torr.smalltalk.fi
Address: 192.168.0.95
> 1.smalltalk.fi
Server: 192.168.0.1
Address: 192.168.0.1#53

** server can't find 1.smalltalk.fi: NXDOMAIN


Yet they are set up in the ISPconfig DNS as A record.

A Record
IP-Adresse Hostname
85.134.36.141 test.smalltalk.fi
85.134.36.141 torr.smalltalk.fi
71.237.246.195 1.smalltalk.fi


What am I doing wrong :(

Many thanks, Darren

dig @dnstemp-a.terva.net smalltalk.fi is working for me, but I can't resolve torr.smalltalk.fi and 1.smalltalk.fi. What's in the smalltalk.fi zones file? Is BIND running? Any BIND errors in your syslog?

Hi. All services are allegedly running and in the zone file I have (under DNS entry, records and just below where you put in A records).

IP-Adresse Hostname
85.134.36.141 test.smalltalk.fi
85.134.36.141 torr.smalltalk.fi


(this is the external address for obvious reasons, otherwise noone would be able to connect in).

ingra124:~ # cat /var/log/syslog
cat: /var/log/syslog: No such file or directory
ingra124:~ # tail /var/log/syslog
tail: cannot open `/var/log/syslog' for reading: No such file or directory
ingra124:~ #


Installation was made by Till so I presume it follows your standards.

Server status:

Web-Server:
Online
FTP-Server:
Online
SMTP-Server:
Online
POP3-Server:
Online
BIND-Server:
Online
mySQL-Server:
Online


:(

Which distribution are you using? What's in /etc/named.conf?

Hi. Am using ISPCONFIG (latest version as of late Dec 07).

ingra124:~ # tail /etc/named.conf

zone "smalltalk.fi" {
type master;
file "pri.smalltalk.fi";
};



//// MAKE MANUAL ENTRIES BELOW THIS LINE! ////





Thanks

Please post your full /etc/named.conf.

HTH:

ngra124:~ # cat /etc/named.conf
options {
pid-file "/var/lib/named/var/run/named/named.pid";
directory "/var/lib/named";
auth-nxdomain no;
/*
* If there is a firewall between you and nameservers you want
* to talk to, you might need to uncomment the query-source
* directive below. Previous versions of BIND always asked
* questions using port 53, but BIND 8.1 uses an unprivileged
* port by default.
*/
// query-source address * port 53;
};

//
// a caching only nameserver config
//
zone "." {
type hint;
file "root.hint";
};

zone "0.0.127.in-addr.arpa" {
type master;
file "127.0.0.zone";
};

zone "36.134.85.in-addr.arpa" {
type master;
file "pri.36.134.85.in-addr.arpa";
};


zone "smalltalk.fi" {
type master;
file "pri.smalltalk.fi";
};



//// MAKE MANUAL ENTRIES BELOW THIS LINE! ////




Thanks

What's the output of ls -la /var/lib/named?

Tks.

ingra124:~ # ls -la /var/lib/named
total 64
drwxr-xr-x 9 root root 4096 Jan 11 10:02 .
drwxr-xr-x 49 root root 4096 Feb 11 10:03 ..
-rw-r--r-- 1 root root 192 Jul 4 2001 127.0.0.zone
drwxr-xr-x 2 root root 4096 Feb 7 10:01 dev
drwxr-xr-x 2 named named 4096 Sep 22 03:12 dyn
drwxr-xr-x 3 root root 4096 Feb 6 16:05 etc
-rw-r--r-- 1 root root 158 Jul 4 2001 localhost.zone
drwxr-xr-x 2 named named 4096 Sep 22 03:12 log
drwxr-xr-x 2 root root 4096 Sep 22 03:12 master
-rw-r--r-- 1 named named 654 Feb 6 16:05 pri.36.134.85.in-addr.arpa
-rw-r--r-- 1 named named 691 Feb 6 16:05 pri.36.134.85.in-addr.arpa~
-rw-r--r-- 1 named named 845 Feb 6 16:05 pri.smalltalk.fi
-rw-r--r-- 1 named named 889 Feb 6 16:05 pri.smalltalk.fi~
-rw-r--r-- 1 root root 2517 Sep 22 03:13 root.hint
drwxr-xr-x 2 named named 4096 Sep 22 03:12 slave
drwxr-xr-x 4 root root 4096 Dec 28 16:07 var

What's in /var/lib/named/pri.smalltalk.fi?
What's the output of netstat -tap?

Hi. Thanks (all the DNS settings I have made have been made through ISPCONFIG's interface)

ingra124:~ # cat /var/lib/named/pri.smalltalk.fi?
$TTL 60
@ IN SOA dnstemp-a.terva.net. admin.smalltalk.fi. (
2008011501 ; serial, todays date + todays serial #
60 ; refresh, seconds
60 ; retry, seconds
60 ; expire, seconds
60 ) ; minimum, seconds
;
NS dnstemp-a.terva.net. ; Inet Address of name server 1
NS dnstemp-b.terva.net. ; Inet Address of name server 2
;

MX 10 sh1.terva.net.

smalltalk.fi. A 85.134.36.141
test.smalltalk.fi A 85.134.36.141
torr.smalltalk.fi A 85.134.36.141
1.smalltalk.fi A 71.237.246.195

smalltalk.fi. TXT "v=spf1 a mx ptr ~all"

;;;; MAKE MANUAL ENTRIES BELOW THIS LINE! ;;;;



ngra124:~ # netstat -tap
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 *:nfs *:* LISTEN -
tcp 0 0 *:39298 *:* LISTEN 12866/rpc.statd
tcp 0 0 *:51846 *:* LISTEN -
tcp 0 0 *:5801 *:* LISTEN 3919/xinetd
tcp 0 0 *:mysql *:* LISTEN 11121/mysqld
tcp 0 0 *:5901 *:* LISTEN 3919/xinetd
tcp 0 0 localhost:783 *:* LISTEN 3999/famd
tcp 0 0 *:sunrpc *:* LISTEN 3755/portmap
tcp 0 0 *:cryptoadmin *:* LISTEN 3925/rpc.rquotad
tcp 0 0 *:23665 *:* LISTEN 14948/rpc.mountd
tcp 0 0 *:hosts2-ns *:* LISTEN 3602/ispconfig_http
tcp 0 0 *:ftp *:* LISTEN 18175/proftpd: (acc
tcp 0 0 ingra124.terva.n:domain *:* LISTEN 6381/named
tcp 0 0 localhost:domain *:* LISTEN 6381/named
tcp 0 0 localhost:ipp *:* LISTEN 3982/cupsd
tcp 0 0 *:smtp *:* LISTEN 18112/master
tcp 0 0 ingra124.terva.net:nfs 192.168.0.222:907 ESTABLISHED -
tcp 0 0 ingra124.terva.net:nfs 192.168.0.224:890 ESTABLISHED -
tcp 0 0 ingra124.terva.net:nfs 192.168.0.222:914 ESTABLISHED -
tcp 0 0 ingra124.terva.net:nfs 192.168.0.2:fujitsu-dev ESTABLISHED -
tcp 0 0 ingra124.terva.net:nfs 192.168.0.234:970 ESTABLISHED -
tcp 0 0 ingra124.terva.net:nfs 192.168.0.234:ggf-ncp ESTABLISHED -
tcp 0 0 ingra124.terva.net:nfs 192.168.0.224:768 ESTABLISHED -
tcp 0 0 ingra124.terva.net:nfs 192.168.0.23:cycleserv2 ESTABLISHED -
tcp 0 0 ingra124.terva.net:nfs 192.168.0.224:815 ESTABLISHED -
tcp 0 0 ingra124.terva.net:nfs 192.168.0.224:953 ESTABLISHED -
tcp 0 0 ingra124.terva.net:nfs 192.168.0.222:966 ESTABLISHED -
tcp 0 0 *:imaps *:* LISTEN 3916/couriertcpd
tcp 0 0 *:pop3s *:* LISTEN 3910/couriertcpd
tcp 0 0 *:pop3 *:* LISTEN 3889/couriertcpd
tcp 0 0 *:imap *:* LISTEN 3892/couriertcpd
tcp 0 0 *:www-http *:* LISTEN 19891/httpd2-prefor
tcp 0 0 *:ssh *:* LISTEN 3920/sshd
tcp 0 0 localhost:ipp *:* LISTEN 3982/cupsd
tcp 0 0 *:smtp *:* LISTEN 18112/master
tcp 0 0 ingra124.terva.net:ssh woof.terva.net:52491 ESTABLISHED 24904/7
ingra124:~ #

test.smalltalk.fi A 85.134.36.141
torr.smalltalk.fi A 85.134.36.141
1.smalltalk.fi A 71.237.246.195

There are some dots missing. It must either look like this:
test.smalltalk.fi. A 85.134.36.141
torr.smalltalk.fi. A 85.134.36.141
1.smalltalk.fi. A 71.237.246.195or like this:
test A 85.134.36.141
torr A 85.134.36.141
1 A 71.237.246.195I think you entered test.smalltalk.fi in the Host field in ISPConfig instead of just test.

Thanks. I have tried to look at this and despite being able to telnet in and restart the machine, ispconfig no longer answers on port 81 (yet it does on port 80 if you go via IP where it says it is a shared server). Need to sit down with this as there is no internal firewwall in the way.

d

If you get the shared IP page, then the apache server works fine, you just selected the wrong IP address for the website in ISPConnfig.

The ISPConfig interface on port 81 is running according to the output above, try to connect to it trough the IP address and not the hostname.

I mean it is not letting me login into https://www.domain.com:81 to admin ispconfig (despite I can ssh in) and Apache works to let me see the shared account web page. I have reset machine via SSh but need to go and power cycle and see. Very odd as it worked last time but don't know if anything has happened as machine is not in the same room as me.

Something odd has happened to the configuration it seems or I have forgotten something patently obvious.

I believed the login was https and port 81.

Safari can’t open the page “https://sh1.terva.net:81/” because it could not connect to the server “sh1.terva.net

Safari can’t open the page “https://sh1.terva.net/” because it couldn’t establish a secure connection to the server “sh1.terva.net”

http://sh.terva.net goes to the "shared server alert".

Safari can’t open the page “http://sh1.terva.net:81/” because it could not connect to the server “sh1.terva.net

ssh to same IP number as sh1.terva.net maps to INTERNALLY is ok

woof:~ di$ ping sh1.terva.net
PING sh1.terva.net (192.168.0.95): 56 data bytes
64 bytes from 192.168.0.95: icmp_seq=0 ttl=64 time=0.192

All after a power reset.

Any clues please :)

Something odd has happened to the configuration it seems or I have forgotten something patently obvious.

I believed the login was https and port 81.

Safari can’t open the page “https://sh1.terva.net:81/” because it could not connect to the server “sh1.terva.net

Safari can’t open the page “https://sh1.terva.net/” because it couldn’t establish a secure connection to the server “sh1.terva.net”

It's working for me.

Hi ... this is very, very odd.. Wonder if the 10.5.2 version of Safari/OSX has broken something on the Mac as if I open the link with Opera it goes straight through. Apologies for the confusion. I will now go and fix things.

Could I make a humble suggestion in ISPCONFIG to notice if stupid people like me try and enter a fqdn in such fields and tell them not to be so stupid ?

Thanks again