i have checked the ports but am still getting this problem, does any one have any ideas wqebsite is www.stiffmiddlefinger.com and my name servers are
ns1.stiffmiddlefinger.com
ns2.stiffmiddlefinger.com

A timeout occurred getting the NS records from your nameservers! None of your nameservers responded fast enough. They are probably down or unreachable. I can't continue since your nameservers aren't responding. If you have a Watchguard Firebox, it's due to a bug in their DNS Proxy, which must be disabled (31 Jul 2006 UPDATE: several years after being informed of this, there is a rumor that there is a fix that allows the Watchguard DNS proxy to work).

i go this resiult from dns report, i seem to have done everything right, please help
i keep trying
layla

I'm getting this:

mh1:~# dig www.stiffmiddlefinger.com

; <<>> DiG 9.2.1 <<>> www.stiffmiddlefinger.com
;; global options: printcmd
;; connection timed out; no servers could be reached
Are your nameservers running? Also, do you have a glue record? http://en.wikipedia.org/wiki/Dns#Circular_Dependencies_and_Glue_Records

It looks like your port 53 is closed! Open it for TCP and UDP.

Ive Checked Port53 And Its Open

Is this your IP 80.42.123.22 ?

Yes, My Router And Isp Says That The Port Is Open

here is the isp portscanner

Local Portscanner


From: To:


Port 21 (tcp) is open (ftp)!
Port 22 (tcp) is open (ssh)!
Port 25 (tcp) is open (smtp)!
Port 80 (tcp) is open (http)!
Port 81 (tcp) is open (ISPConfig)!
Port 110 (tcp) is open (pop3)!
Port 111 (tcp) is open (sunrpc)!
Port 143 (tcp) is open (imap)!
Port 443 (tcp) is open (https)!
Port 631 (tcp) is open (ipp)!
Port 889 (tcp) is open (unknown)!
Port 993 (tcp) is open (imaps)!
Port 995 (tcp) is open (pop3s)!
Port 2207 (tcp) is open (unknown)!
Port 2208 (tcp) is open (unknown)!
Port 3306 (tcp) is open (mysql)!

A local portscan is of no use!
It needs to be from outside your network! (other side of your router)

For me it's still showing closed!

Try this link: http://www.hackerwatch.org/probe/
Use the Port Scan option.

Or.. Use this link: http://www.pcflank.com/scanner1.htm
At step 3, use TCP connect scanning (standard)
At step 4, select "Scan desired ports and/or the range of ports." and enter 53

I have phoned tiscali, and they say they donot bloc any ports, and my router says that the ports to the server are open, is there a router problem, can you advise

What are the outputs of netstat -tap and iptables -L?

netstat -tap is

Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 localhost.localdomain:2208 *:* LISTEN 2146/hpiod
tcp 0 0 *:mysql *:* LISTEN 2267/mysqld
tcp 0 0 *:sunrpc *:* LISTEN 1960/portmap
tcp 0 0 localhost.localdomain:ipp *:* LISTEN 18682/cupsd
tcp 0 0 *:smtp *:* LISTEN 29514/master
tcp 0 0 *:889 *:* LISTEN 1979/rpc.statd
tcp 0 0 localhost.localdomain:2207 *:* LISTEN 2151/python
tcp 0 0 192.168.0.3:47198 213.254.200.18:http ESTABLISHED 31837/firefox-bin
tcp 1 0 192.168.0.3:43588 fpserv.linux.duke.edu:http CLOSE_WAIT 2478/python
tcp 1 0 192.168.0.3:46347 brahe-if-a.mirrorservi:http CLOSE_WAIT 2478/python
tcp 0 1 192.168.0.3:45745 c17-ss-2-lb.cnet.com:smtp SYN_SENT 31854/smtp
tcp 0 0 *:imaps *:* LISTEN 2295/dovecot
tcp 0 0 *:pop3s *:* LISTEN 2295/dovecot
tcp 0 0 *:pop3 *:* LISTEN 2295/dovecot
tcp 0 0 *:imap *:* LISTEN 2295/dovecot
tcp 0 0 *:http *:* LISTEN 3918/httpd
tcp 0 0 *:ftp *:* LISTEN 3783/proftpd: (acce
tcp 0 0 *:ssh *:* LISTEN 2170/sshd
tcp 0 0 server1.example.com:ipp *:* LISTEN 18682/cupsd
tcp 0 0 *:https *:* LISTEN 3918/httpd
[root@stiffmiddlefinger ~]#

and

[root@stiffmiddlefinger ~]# iptables -L
Chain INPUT (policy DROP)
target prot opt source destination
DROP tcp -- anywhere 127.0.0.0/8
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT all -- anywhere anywhere
DROP all -- BASE-ADDRESS.MCAST.NET/4 anywhere
PUB_IN all -- anywhere anywhere
PUB_IN all -- anywhere anywhere
PUB_IN all -- anywhere anywhere
PUB_IN all -- anywhere anywhere
DROP all -- anywhere anywhere

Chain FORWARD (policy DROP)
target prot opt source destination
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
DROP all -- anywhere anywhere

Chain OUTPUT (policy ACCEPT)
target prot opt source destination
PUB_OUT all -- anywhere anywhere
PUB_OUT all -- anywhere anywhere
PUB_OUT all -- anywhere anywhere
PUB_OUT all -- anywhere anywhere

Chain INT_IN (0 references)
target prot opt source destination
ACCEPT icmp -- anywhere anywhere
DROP all -- anywhere anywhere

Chain INT_OUT (0 references)
target prot opt source destination
ACCEPT icmp -- anywhere anywhere
ACCEPT all -- anywhere anywhere

Chain PAROLE (7 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere

Chain PUB_IN (4 references)
target prot opt source destination
ACCEPT icmp -- anywhere anywhere icmp destination-unreachable
ACCEPT icmp -- anywhere anywhere icmp echo-reply
ACCEPT icmp -- anywhere anywhere icmp time-exceeded
ACCEPT icmp -- anywhere anywhere icmp echo-request
PAROLE tcp -- anywhere anywhere tcp dpt:ssh
PAROLE tcp -- anywhere anywhere tcp dpt:smtp
PAROLE tcp -- anywhere anywhere tcp dpt:http
PAROLE tcp -- anywhere anywhere tcp dpt:hosts2-ns
PAROLE tcp -- anywhere anywhere tcp dpt:pop3
PAROLE tcp -- anywhere anywhere tcp dpt:https
PAROLE tcp -- anywhere anywhere tcp dpt:ndmp
DROP icmp -- anywhere anywhere
DROP all -- anywhere anywhere

Chain PUB_OUT (4 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere
[root@stiffmiddlefinger ~]#

i have contacted the router company and my service provider, both say my ports shoud be open or that they donot block ports,
please help
layla

... Use this link: http://www.pcflank.com/scanner1.htm
At step 3, use TCP connect scanning (standard)
At step 4, select "Scan desired ports and/or the range of ports." and enter 53

What result did you get?

it said stealth, but i have tried to make sure all firewalls are off
have you any ideas/layla:confused:

Is that port (re)directed to the correct server IP in your router?
Your port 80 and 81 are, but I can really do nothing from here to see if your port 53 is.

So.. With firewall off, make sure your port 53 is setup exactly the same as your port 80 and 81.

yes i have checked this and bind will not start
please help,

hi, ive checked again it now just says closed, not stealth, anyideas/
:confused:

my ip now
80.42.84.55

bind apears to be working now, but still n0 dns port 53

i would love some help

please
layla

netstat -tap is

Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 localhost.localdomain:2208 *:* LISTEN 2146/hpiod
tcp 0 0 *:mysql *:* LISTEN 2267/mysqld
tcp 0 0 *:sunrpc *:* LISTEN 1960/portmap
tcp 0 0 localhost.localdomain:ipp *:* LISTEN 18682/cupsd
tcp 0 0 *:smtp *:* LISTEN 29514/master
tcp 0 0 *:889 *:* LISTEN 1979/rpc.statd
tcp 0 0 localhost.localdomain:2207 *:* LISTEN 2151/python
tcp 0 0 192.168.0.3:47198 213.254.200.18:http ESTABLISHED 31837/firefox-bin
tcp 1 0 192.168.0.3:43588 fpserv.linux.duke.edu:http CLOSE_WAIT 2478/python
tcp 1 0 192.168.0.3:46347 brahe-if-a.mirrorservi:http CLOSE_WAIT 2478/python
tcp 0 1 192.168.0.3:45745 c17-ss-2-lb.cnet.com:smtp SYN_SENT 31854/smtp
tcp 0 0 *:imaps *:* LISTEN 2295/dovecot
tcp 0 0 *:pop3s *:* LISTEN 2295/dovecot
tcp 0 0 *:pop3 *:* LISTEN 2295/dovecot
tcp 0 0 *:imap *:* LISTEN 2295/dovecot
tcp 0 0 *:http *:* LISTEN 3918/httpd
tcp 0 0 *:ftp *:* LISTEN 3783/proftpd: (acce
tcp 0 0 *:ssh *:* LISTEN 2170/sshd
tcp 0 0 server1.example.com:ipp *:* LISTEN 18682/cupsd
tcp 0 0 *:https *:* LISTEN 3918/httpd
[root@stiffmiddlefinger ~]#

and

[root@stiffmiddlefinger ~]# iptables -L
Chain INPUT (policy DROP)
target prot opt source destination
DROP tcp -- anywhere 127.0.0.0/8
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT all -- anywhere anywhere
DROP all -- BASE-ADDRESS.MCAST.NET/4 anywhere
PUB_IN all -- anywhere anywhere
PUB_IN all -- anywhere anywhere
PUB_IN all -- anywhere anywhere
PUB_IN all -- anywhere anywhere
DROP all -- anywhere anywhere

Chain FORWARD (policy DROP)
target prot opt source destination
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
DROP all -- anywhere anywhere

Chain OUTPUT (policy ACCEPT)
target prot opt source destination
PUB_OUT all -- anywhere anywhere
PUB_OUT all -- anywhere anywhere
PUB_OUT all -- anywhere anywhere
PUB_OUT all -- anywhere anywhere

Chain INT_IN (0 references)
target prot opt source destination
ACCEPT icmp -- anywhere anywhere
DROP all -- anywhere anywhere

Chain INT_OUT (0 references)
target prot opt source destination
ACCEPT icmp -- anywhere anywhere
ACCEPT all -- anywhere anywhere

Chain PAROLE (7 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere

Chain PUB_IN (4 references)
target prot opt source destination
ACCEPT icmp -- anywhere anywhere icmp destination-unreachable
ACCEPT icmp -- anywhere anywhere icmp echo-reply
ACCEPT icmp -- anywhere anywhere icmp time-exceeded
ACCEPT icmp -- anywhere anywhere icmp echo-request
PAROLE tcp -- anywhere anywhere tcp dpt:ssh
PAROLE tcp -- anywhere anywhere tcp dpt:smtp
PAROLE tcp -- anywhere anywhere tcp dpt:http
PAROLE tcp -- anywhere anywhere tcp dpt:hosts2-ns
PAROLE tcp -- anywhere anywhere tcp dpt:pop3
PAROLE tcp -- anywhere anywhere tcp dpt:https
PAROLE tcp -- anywhere anywhere tcp dpt:ndmp
DROP icmp -- anywhere anywhere
DROP all -- anywhere anywhere

Chain PUB_OUT (4 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere
[root@stiffmiddlefinger ~]#
BIND is not running, and port 53 is closed. You must change both.

i have managed to get bind working, but port53 on the external network is still closed, on my internal network it is open but on my ip it says closed, i have tred calling and configuring my router with the manufactura it apears to be working, i phoned tiscali and they say that they donot block ports, it was working now its not, have you any ideas as to how, get this working im at a dead end and donot know what i can try,
please advise
layla

Skip the DNS part, and use the DNS from the place where you got the domains.

im confused ow do i do that, i have my name severs set up to come here how do i foward them without using bind? or is there a way i can change the ort bind uses and use another

BIND is not running, and port 53 is closed. You must change both.
port apears to be open bind apears to be working, still timingout though any ideas

I think it's best to follow edge's advice and let your domain registrar handle the DNS records for your domains.