Need Help Troubleshooting BIND9

Discussion in 'Server Operation' started by giganet, Aug 29, 2007.

  1. giganet

    giganet New Member

    Hello group...

    Ubuntu 6.06
    PHP 5

    I went through successfully, installed ISPConfig successfully too.

    The server is remotely pingable [VSAT connection HI latency] :eek: .

    Remote IP Ping
    C:\Documents and Settings\ptaylor>ping
    Pinging with 32 bytes of data:
    Reply from bytes=32 time<10ms TTL=63
    Reply from bytes=32 time=9ms TTL=63
    Reply from bytes=32 time<10ms TTL=63
    Reply from bytes=32 time<10ms TTL=63
    Ping statistics for
        Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
    Approximate round trip times in milli-seconds:
        Minimum = 0ms, Maximum =  9ms, Average =  2ms
    If I attempt to ping any one of two available domains remotely I have setup as sites under ISPConfig the domains are not pingable remotely.

    Remote Domain Ping
    C:\Documents and Settings\ptaylor>ping
    Unknown host
    Local to the server I can open a browser and access '' & ''
    providing 'www' isn't used.
    Also locally have full access to ISPConfig admin | reseller | client CP.

    Both sites DNS have been modified at each respective domain registar.

    In ISPConfig DNS Management I setup A names, CNAME and MX name so far for each domain under ISPConfig..

    $TTL        86400
    @       IN      SOA (
                            2007082805       ; serial, todays date + todays serial #
                            28800              ; refresh, seconds
                            7200              ; retry, seconds
                            604800              ; expire, seconds
                            86400 )            ; minimum, seconds
                    NS              ; Inet Address of name server 1
                    NS              ; Inet Address of name server 2
    ;  MX      10      A       A       A       A       A       A
    *       A
    www       A       A
    This morning I ran 'netstat -ps', but am completely unsure of what to look for.

    [email protected]:/var/lib/named/etc/bind# netstat -ps
        178636 total packets received
        160 with invalid addresses
        0 forwarded
        0 incoming packets discarded
        27540 incoming packets delivered
        26156 requests sent out
        789 ICMP messages received
        17 input ICMP message failed.
        ICMP input histogram:
            destination unreachable: 512
            echo requests: 197
            echo replies: 80
        2008 ICMP messages sent
        0 ICMP messages failed
        ICMP output histogram:
            destination unreachable: 1811
            echo replies: 197
        1007 active connections openings
        441 passive connection openings
        1 failed connection attempts
        295 connection resets received
        2 connections established
        23297 segments received
        22919 segments send out
        79 segments retransmited
        0 bad segments received.
        250 resets sent
        1785 packets received
        1774 packets to unknown port received.
        0 packet receive errors
        1831 packets sent
        444 TCP sockets finished time wait in fast timer
        1356 delayed acks sent
        320 delayed acks further delayed because of locked socket
        Quick ack mode was activated 78 times
        2169 packets directly queued to recvmsg prequeue.
        51633 of bytes directly received from backlog
        1664306 of bytes directly received from prequeue
        6618 packet headers predicted
        1236 packets header predicted and directly queued to user
        2490 acknowledgments not containing data received
        5103 predicted acknowledgments
        23 congestion windows recovered after partial ack
        0 TCP data loss events
        46 other TCP timeouts
        9 times receiver scheduled too late for direct processing
        78 DSACKs sent for old packets
        78 DSACKs received
        27 connections reset due to unexpected data
        188 connections reset due to early user close
    I have also edited iptables to permit WWW access to the firewall
    in addition to allowing DNS to access the firewall
    'iptables -A INPUT -p udp -i eth0 --sport 1024:65535 --dport 53 -j ACCEPT'
    'iptables -A INPUT -p tcp -i eth0 --sport 1024:65535 --dport 53 -j ACCEPT'.

    Can someone help me resolve my error so I can make this server accessible BTW?

    Thank you

    Last edited: Aug 29, 2007
  2. giganet

    giganet New Member

    How To Run Your Own Name Server With ISPConfig And (Schlund)

    I have been looking over articles at HowToForge trying to help myself a bit hopefully??

    Anyhow, I stumlebd upon:

    This question is for Falko:I am a Network Solutions SRS Partner, I have looked over my DNS Manager at SRS and can't seem to locate the nameservers for SRS.
    I am only able to utilize NS I have created it seems, although there is a link 'SRSplus Managed DNS' however when I go there it seems to be a dead-end, no domains are listed to work with.

    Can you suggest how best and easiest I get my own Name Server running properly?

    Thank you

  3. falko

    falko Super Moderator ISPConfig Developer

    This might help you:
  4. giganet

    giganet New Member

Share This Page