Old 30th April 2009, 20:01
bentman78 bentman78 is offline
Junior Member
Join Date: Apr 2008
Posts: 18
Thanks: 0
Thanked 0 Times in 0 Posts
Default BIND CHROOT CentOS problem

Hello all,
I'm having a problem with a chroot bind config from this site

Basically I have my named.com in /var/named/chroot/etc and it looks like this":
// we include the rndckey (copy-paste from rndc.key created earlier)

key "rndckey" {
algorithm hmac-md5;
secret "wouldn't you like to know;

controls {
inet port 953 allow {; } keys { "rndckey"; };
#inet xxx.xxx.xxx.xxx allow { any; } keys { "rndckey"; };

options {
directory "/var/named";
pid-file "/var/run/named/named.pid";

recursion yes;

allow-recursion {;

// these are the opendns servers (optional)
forwarders {;;

listen-on {;

* If there is a firewall between you and nameservers you want
* to talk to, you might need to uncomment the query-source
* directive below. Previous versions of BIND always asked
* questions using port 53, but BIND 8.1 uses an unprivileged
* port by default.
#query-source address * port 53;

// so people can't try to guess what version you're running
version "REFUSED";

allow-query {;

server xxx.xxx.xxx.xxx {
keys { rndckey; };

zone "." IN {
type hint;
file "named.ca";

// we assume we have a slave dns server with the IP
#zone "test.be" IN {
# type master;
# file "data/test.be.zone";
# allow-update { none; };
# allow-transfer {; };
# };

My zone files look like so in /var/named/chroot/var/named/data/my.domain.zone:

$ttl 38400
mydomain.com. IN SOA ns.mydomain.com. admin.mydomain.com. (
200904291437 ; Serial
10800 ; Refresh after 3 hours
3600 ; Retry after 1 hour
604800 ; Expire after 1 week
86400 ) ; Minimum TTL of 1 day

mydomain.com. IN NS ns1.mydomain.com.

mydomain.com. IN MX 1 mx.mydomain.com.

www.mydomain.com. IN A xxx.xxx.xxx.xxx
ns1.mydomain.com. IN A xxx.xxx.xxx.xxx
ns2.mydomain.com. IN A xxx.xxx.xxx.xxx
mx.mydomain.com. IN A xxx.xxx.xxx.xxx
mail.mydomain.com. IN CNAME mx.mydomain.com.

My problem is with the rndc status command it doesn't show any zones listed.
[root@xxxx data]# rndc status
number of zones: 0
debug level: 0
xfers running: 0
xfers deferred: 0
soa queries in progress: 0
query logging is OFF
recursive clients: 0/1000
tcp clients: 0/100
server is up and running

Bind is working and the process is there, doing ps aucx | grep named shows the PID.

Is there something I'm missing? I've looked over the conf and can't find a thing. Also, no errors in /var/log/messages.

Also, when I query my domains using nslookup www.mydomain.com I can't get a response. I can query sites like google, howtoforge..etc..etc

IT seems my zone files aren't loading? But then again I can't tell because I have no errors in the logs.

Thanks in advance, any help is appreciated, I'm pulling my hair out.
Reply With Quote
Sponsored Links
Old 1st May 2009, 06:39
bentman78 bentman78 is offline
Junior Member
Join Date: Apr 2008
Posts: 18
Thanks: 0
Thanked 0 Times in 0 Posts

I figured it out.
Reply With Quote


Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Virtual Users And Domains With Postfix, Courier, MySQL And SquirrelMail -Ubuntu 8.04 c4rdinal HOWTO-Related Questions 112 23rd August 2011 11:49
XEN on Centos 5.2 HOWTO problem bradley HOWTO-Related Questions 9 5th December 2008 22:31
Chroot ssh login problem gral Server Operation 3 2nd November 2007 19:25
chroot access problem adrenalinic Server Operation 4 30th June 2007 17:10
Problem with BIND and ISPConfigs's DNS Manager Nejko Installation/Configuration 66 22nd April 2006 21:47

All times are GMT +2. The time now is 11:52.

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.