Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > ISPConfig 3 > Installation/Configuration

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #11  
Old 9th December 2010, 15:17
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,747 Times in 2,578 Posts
Default

Quote:
Originally Posted by rzlines View Post
or let it continue to be stopped?
Let it continue to be stopped.

Code:
server1:~# dig @ns1.techstudio.co.cc speakgeek.co.cc

; <<>> DiG 9.6-ESV-R1 <<>> @ns1.techstudio.co.cc speakgeek.co.cc
; (1 server found)
;; global options: +cmd
;; connection timed out; no servers could be reached
server1:~#
Your nameserver still isn't responding. What are the outputs of
Code:
netstat -tap
and
Code:
iptables -L
now?
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
The Following User Says Thank You to falko For This Useful Post:
rzlines (13th December 2010)
Sponsored Links
  #12  
Old 9th December 2010, 16:20
rzlines rzlines is offline
Junior Member
 
Join Date: Oct 2009
Posts: 27
Thanks: 10
Thanked 0 Times in 0 Posts
Default

Quote:
Originally Posted by falko View Post
Your nameserver still isn't responding. What are the outputs of
Code:
netstat -tap
and
Code:
iptables -L
now?
Output of netstat -tap
Code:
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address               Foreign Address             State       PID/Program name
tcp        0      0 localhost.localdomain:2208  *:*                         LISTEN      2540/hpiod
tcp        0      0 *:imaps                     *:*                         LISTEN      2714/dovecot
tcp        0      0 *:pop3s                     *:*                         LISTEN      2714/dovecot
tcp        0      0 *:vce                       *:*                         LISTEN      3721/ricci
tcp        0      0 localhost.localdomain:10024 *:*                         LISTEN      2756/amavisd (maste
tcp        0      0 *:11145                     *:*                         LISTEN      10408/skype
tcp        0      0 localhost.localdomain:10025 *:*                         LISTEN      2809/master
tcp        0      0 *:mysql                     *:*                         LISTEN      2674/mysqld
tcp        0      0 *:pop3                      *:*                         LISTEN      2714/dovecot
tcp        0      0 localhost.local:dyna-access *:*                         LISTEN      2590/clamd
tcp        0      0 *:imap                      *:*                         LISTEN      2714/dovecot
tcp        0      0 *:sunrpc                    *:*                         LISTEN      2232/portmap
tcp        0      0 *:rrh                       *:*                         LISTEN      2267/rpc.statd
tcp        0      0 *:16851                     *:*                         LISTEN      3642/modclusterd
tcp        0      0 192.168.122.1:domain        *:*                         LISTEN      3055/dnsmasq
tcp        0      0 *:ftp                       *:*                         LISTEN      2845/pure-ftpd (SER
tcp        0      0 neonglow.techstudio.:domain *:*                         LISTEN      2213/named
tcp        0      0 localhost.localdomai:domain *:*                         LISTEN      2213/named
tcp        0      0 localhost.localdomain:ipp   *:*                         LISTEN      2567/cupsd
tcp        0      0 *:smtp                      *:*                         LISTEN      2809/master
tcp        0      0 localhost.localdomain:rndc  *:*                         LISTEN      2213/named
tcp        0      0 localhost.localdomain:2207  *:*                         LISTEN      2545/python
tcp        0      0 neonglow.techstudio.c:37581 192.168.1.1:http            TIME_WAIT   -
tcp        0      0 neonglow.techstudio.c:37582 192.168.1.1:http            TIME_WAIT   -
tcp        0      0 neonglow.techstudio.c:37583 192.168.1.1:http            TIME_WAIT   -
tcp        0      0 neonglow.techstudio.c:37584 192.168.1.1:http            TIME_WAIT   -
tcp        0      0 neonglow.techstudio.c:37585 192.168.1.1:http            TIME_WAIT   -
tcp        0      0 neonglow.techstudio.c:37586 192.168.1.1:http            TIME_WAIT   -
tcp        0      0 neonglow.techstudio.c:56650 117.211.123.49:http         TIME_WAIT   -
tcp        0      0 neonglow.techstudio.c:56649 117.211.123.49:http         TIME_WAIT   -
tcp        0      0 neonglow.techstudio.c:56653 117.211.123.49:http         TIME_WAIT   -
tcp        0      0 neonglow.techstudio.c:56652 117.211.123.49:http         TIME_WAIT   -
tcp        0      0 neonglow.techstudio.c:56659 117.211.123.49:http         TIME_WAIT   -
tcp        0      0 neonglow.techstudio.c:56656 117.211.123.49:http         TIME_WAIT   -
tcp        0      0 neonglow.techstudio.c:56664 117.211.123.49:http         TIME_WAIT   -
tcp        0      0 neonglow.techstudio.c:35982 rhlx01.hs-esslingen.de:http TIME_WAIT   -
tcp        0      0 neonglow.techstudio.c:53731 114-40-125-147.dynami:https ESTABLISHED 10408/skype
tcp        0      0 *:imaps                     *:*                         LISTEN      2714/dovecot
tcp        0      0 *:pop3s                     *:*                         LISTEN      2714/dovecot
tcp        0      0 *:wbem-https                *:*                         LISTEN      3072/cimserver
tcp        0      0 *:pop3                      *:*                         LISTEN      2714/dovecot
tcp        0      0 *:imap                      *:*                         LISTEN      2714/dovecot
tcp        0      0 *:webcache                  *:*                         LISTEN      2833/httpd
tcp        0      0 *:http                      *:*                         LISTEN      2833/httpd
tcp        0      0 *:tproxy                    *:*                         LISTEN      2833/httpd
tcp        0      0 *:ftp                       *:*                         LISTEN      2845/pure-ftpd (SER
tcp        0      0 localhost6.localdoma:domain *:*                         LISTEN      2213/named
tcp        0      0 *:ssh                       *:*                         LISTEN      2558/sshd
tcp        0      0 localhost6.localdomain:rndc *:*                         LISTEN      2213/named
tcp        0      0 *:https                     *:*                         LISTEN      2833/httpd
Output of iptables -L
Code:
[07:50:15 PM] NeonGlow: Chain INPUT (policy ACCEPT)
target     prot opt source               destination
ACCEPT     udp  --  anywhere             anywhere            udp dpt:domain
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:domain
ACCEPT     udp  --  anywhere             anywhere            udp dpt:bootps
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:bootps

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination
ACCEPT     all  --  anywhere             192.168.122.0/24    state RELATED,ESTABLISHED
ACCEPT     all  --  192.168.122.0/24     anywhere
ACCEPT     all  --  anywhere             anywhere
REJECT     all  --  anywhere             anywhere            reject-with icmp-port-unreachable
REJECT     all  --  anywhere             anywhere            reject-with icmp-port-unreachable

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination
Reply With Quote
  #13  
Old 10th December 2010, 13:44
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,747 Times in 2,578 Posts
Default

Quote:
tcp 0 0 192.168.122.1:domain *:* LISTEN 3055/dnsmasq
dnsmasq is still running on 192.168.122.1. You need to stop it and make named listen on that IP.

Also, please stop the firewall for testing purposes.
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
The Following User Says Thank You to falko For This Useful Post:
rzlines (13th December 2010)
  #14  
Old 10th December 2010, 13:53
rzlines rzlines is offline
Junior Member
 
Join Date: Oct 2009
Posts: 27
Thanks: 10
Thanked 0 Times in 0 Posts
Default

Quote:
Originally Posted by falko View Post
dnsmasq is still running on 192.168.122.1. You need to stop it and make named listen on that IP.

Also, please stop the firewall for testing purposes.
I stopped dnsmasq from running as a service right now, I have the Server GUI installed and I don't know how to permanently stop a service from starting up. (do I have to delete the service to do that?) I currently stopped it from running in the services window. How can I make named listen from that IP? I have edited named.conf file to do this (is this right?):

Code:
// named.conf
//
// Provided by Red Hat bind package to configure the ISC BIND named(8) DNS
// server as a caching only nameserver (as a localhost DNS resolver only).
//
// See /usr/share/doc/bind*/sample/ for example named configuration files.
//
options {
        //listen-on port 53 { 127.0.0.1; };
        //listen-on port 53 { any; };
        listen-on port 53 { 192.168.122.1; };
        listen-on-v6 port 53 { ::1; };
        directory       "/var/named/chroot/var/named";
        dump-file       "/var/named/chroot/var/named/data/cache_dump.db";
        statistics-file "/var/named/chroot/var/named/data/named_stats.txt";
        memstatistics-file "/var/named/chroot/var/named/data/named_mem_stats.txt";
        allow-query     { localhost; };
        recursion yes;
};
logging {
        channel default_debug {
                file "data/named.run";
                severity dynamic;
        };
};
zone "." IN {
        type hint;
        file "named.root";
};
include "/var/named/chroot/etc/named.conf.local";
This is what I did to stop the firewall is this right? I'm not really sure




Last edited by rzlines; 10th December 2010 at 15:16.
Reply With Quote
  #15  
Old 11th December 2010, 15:07
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,747 Times in 2,578 Posts
Default

Quote:
Originally Posted by rzlines View Post
How can I make named listen from that IP? I have edited named.conf file to do this (is this right?):
Which distribution do you use?

Quote:
Originally Posted by rzlines View Post
This is what I did to stop the firewall is this right? I'm not really sure
What's the output of
Code:
iptables -L
now?
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
The Following User Says Thank You to falko For This Useful Post:
rzlines (13th December 2010)
  #16  
Old 12th December 2010, 08:32
rzlines rzlines is offline
Junior Member
 
Join Date: Oct 2009
Posts: 27
Thanks: 10
Thanked 0 Times in 0 Posts
Default

Quote:
Originally Posted by falko View Post
Which distribution do you use?
I use centos 5.5.

Quote:
Originally Posted by falko View Post
What's the output of
Code:
iptables -L
now?
Code:
Chain INPUT (policy ACCEPT)
target     prot opt source               destination
ACCEPT     udp  --  anywhere             anywhere            udp dpt:domain
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:domain
ACCEPT     udp  --  anywhere             anywhere            udp dpt:bootps
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:bootps

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination
ACCEPT     all  --  anywhere             192.168.122.0/24    state RELATED,ESTABLISHED
ACCEPT     all  --  192.168.122.0/24     anywhere
ACCEPT     all  --  anywhere             anywhere
REJECT     all  --  anywhere             anywhere            reject-with icmp-port-unreachable
REJECT     all  --  anywhere             anywhere            reject-with icmp-port-unreachable

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination

Last edited by rzlines; 12th December 2010 at 09:15.
Reply With Quote
  #17  
Old 13th December 2010, 15:26
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,747 Times in 2,578 Posts
Default

The firewall is still running. Please stop it as follows:
Code:
/etc/init.d/bastille-firewall stop
What's the output of
Code:
getenforce
?
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #18  
Old 13th December 2010, 16:34
rzlines rzlines is offline
Junior Member
 
Join Date: Oct 2009
Posts: 27
Thanks: 10
Thanked 0 Times in 0 Posts
Default

Quote:
Originally Posted by falko View Post
The firewall is still running. Please stop it as follows:
Code:
/etc/init.d/bastille-firewall stop
okay i did that

output of the firewall stop

Code:
disabling IP forwarding... done.
unloading masquerading modules... done.
resetting default input rules to accept... done.
resetting default output rule to accept... done.
resetting default forward rule to accept... done.
flushing INPUT rules... done.
flushing OUTPUT rules... done.
flushing FORWARD rules... done.
removing user-defined chains...iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
 done.
Quote:
Originally Posted by falko View Post
What's the output of
Code:
getenforce
?
and the output is disabled

P.S: Am I facing these issues because I'm behind a router? I think I had tried out the perfect server tutorial ISPConfig 3 (for centos 5.3 if i remember correctly) a year back and it worked perfectly at that time I was connected directly to the modem and I used the static (public) ip address for the entire installation process. This time around I used an internal ip because I would like to try out a multiserver setup and well I'm still stuck here. Hope this problem sorts out soon. Thanks a lot for helping me out here so patiently. (Would it work better if I used Debian instead or am I just being hasty here? and CentOS will work out just fine. I would definitely like my server setup to be online)

Last edited by rzlines; 14th December 2010 at 09:11.
Reply With Quote
  #19  
Old 14th December 2010, 17:47
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,747 Times in 2,578 Posts
Default

What's the output of

Code:
iptables -L
now?

Does your router forward port 53 (TCP and UDP) to your server?
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #20  
Old 15th December 2010, 16:20
rzlines rzlines is offline
Junior Member
 
Join Date: Oct 2009
Posts: 27
Thanks: 10
Thanked 0 Times in 0 Posts
 
Default

Quote:
Originally Posted by falko View Post
What's the output of

Code:
iptables -L
now?

Does your router forward port 53 (TCP and UDP) to your server?

Output of iptables -L:
Code:
Chain INPUT (policy ACCEPT)
target     prot opt source               destination

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination
Ports Forwarded on my router:

Last edited by rzlines; 15th December 2010 at 17:38.
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
HELP DNS and DHCP I AM LOST krisarmstrong Server Operation 0 19th August 2009 00:27
DNS worries csupport Installation/Configuration 2 18th August 2009 14:35
Urgent Help in NEED with DNS installation and Configuration! FirFYPJ Server Operation 6 9th March 2009 19:37
Squid Proxy Caching on Linux obzerver Installation/Configuration 4 13th August 2008 20:51
ISPConfig 2.2.21 | Debian 4.0 | DNS configuration question iceget Installation/Configuration 8 17th February 2008 19:25


All times are GMT +2. The time now is 06:58.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.