From: Ercument Yildirim (ercu@be.itu.edu.tr)
Date: Thu 19 Sep 2002 - 08:50:29 EEST
---------- Forwarded message ----------
Date: Wed, 18 Sep 2002 08:27:27 -0700 (PDT)
From: Prabu Subroto <prabusubroto@yahoo.com>
Reply-To: UNIX-Networking@yahoogroups.com
To: SuSE Mail List <suse-linux-e@suse.com>,
needguide_dns milis <needguide_dns@yahoogroups.com>,
UNIX Administration Milis <UNIX-Administration@yahoogroups.com>,
UNIX General Milis <UNIX-general@yahoogroups.com>,
UNIX Networking Milis <UNIX-Networking@yahoogroups.com>,
Linux Administrator Milis <linux-admin@egroups.com>,
Linux System Administrator Milis <linux_sysadmins@yahoogroups.com>
Subject: [UNIX-Networking] BIND 9 only knows global IP but doesn't know
internal LAN IP whose private IP
I have a LAN for my office. I use only one ISDN line
as the internet access for my LAN users. As the
gateway I use 1 machine. This machine (named "proxy")
has squid (as proxy server), BIND9 (as DNS server) and
SuSE Firewall 2.
As the operating is SuSE Linux 8.
Now, I want my BIND9 works not only for "caching
service" but also as DNS server for my LAN. So the
user machine can also use only name not always IP
number.
I have re-configured "/etc/named.conf" file and
defined my domain. my zone file is
"duisburg.lam-ag.zone".
I can launch my BIND9 but it works strange. it's
ridiculous because my BIND9 only knows the IP address
from outside of my LAN but not the IP address in my
internal LAN domain (duisburg.lam-ag.de).
Looks like my BIND9 can not understand my zone
definition list. But I don't know where the mistake.
Here is my "/etc/named.conf" and
"/var/named/duisburg.lam-ag.zone" files.
Please help me. I have this problem since a couple
months.
Thank you very much in advance.
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
#/var/named/duisburg.lam-ag.zone
$TTL 2D
duisburg.lam-ag.de.=09=09IN SOA=09proxy=09ifirdaus.arcor.de. (
=09=09=09=09=092002091842=09; serial (d. adams)
=09=09=09=09=092D=09=09; refresh
=09=09=09=09=094H=09=09; retry
=09=09=09=09=096W=09=09; expiry
=09=09=09=09=091W )=09=09; minimum
=09=09=09=09IN NS=09=09proxy
=09=09=09=09IN MX=09=09mail.arcor-online.net
transistor=09=09=09IN A=09=09192.168.23.1
proxy=09=09=09=09IN A=09=09192.168.23.10
ifirdaus=09=09=09IN A=09=09192.168.23.237
apasenau=09=09=09IN A=09=09192.168.23.236
hterporten=09=09=09IN A=09=09192.168.23.229
hgetreu=09=09=09=09IN A=09=09192.168.23.40
managers=09=09=09IN A=09=09192.168.23.2
ss=09=09=09=09IN A=09=09192.168.23.239
scrtry=09=09=09=09IN A=09=09192.168.23.238
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
#/etc/named.conf
options {
=09# The directory statement defines the name server=B4s
=09# working directory
=09directory "/var/named";
=09# The forwarders record contains a list of servers to
=09# which queries should be forwarded. Enable this line
and
=09# modify the IP-address to your provider's name
server.
=09# Up to three servers may be listed.
=09#forwarders { 10.11.12.13; 10.11.12.14; };
=09forwarders { 145.253.2.11; 145.253.2.75; };
=09# Enable the next entry to prefer usage of the name
=09# server declared in the forwarders section.
=09#forward first;
=09# The listen-on record contains a list of local
network
=09# interfaces to listen on. Optionally the port can be
=09# specified. Default is to listen on all interfaces
found
=09# on your system. The default port is 53.
=09#listen-on port 53 { 127.0.0.1; };
=09listen-on port 53 { 127.0.0.1; 192.168.23.10; };
=09# The listen-on-v6 record enables or disables
listening
=09# on IPV6 interfaces. Allowed values are 'any' and
'none'
=09# or a list of addresses. IPv6 can only be used with
=09# kernel 2.4 in this release.
=09listen-on-v6 { any; };
=09# The next three statements may be needed if a
firewall
=09# stands between the local server and the internet.
=09query-source address * port 53;
=09transfer-source * port 53;
=09notify-source * port 53;
=09# The allow-query record contains a list of networks
or
=09# IP-addresses to accept and deny queries from. The
=09# default is to allow queries from all hosts.
=09allow-query { 127.0.0.1; 192.168.23.0/24; };
=09# If notify is set to yes (default), notify messages
are
=09# sent to other name servers when the the zone data
is
=09# changed. Instead of setting a global 'notify'
statement
=09# in the 'options' section, a separate 'notify' can
be
=09# added to each zone definition.
=09notify no;
};
# The following three zone definitions don't need any
modification.
# The first one defines localhost while the second
defines the
# reverse lookup for localhost. The last zone "." is
the
# definition of the root name servers.
zone "localhost" in {
=09type master;
=09file "localhost.zone";
};
zone "0.0.127.in-addr.arpa" in {
=09type master;
=09file "127.0.0.zone";
};
zone "." in {
=09type hint;
=09file "root.hint";
};
# You can insert further zone records for your own
domains below.
zone "duisburg.lam-ag.de" in {
=09type master;
=09file "duisburg.lam-ag.zone";
};
zone "23.168.192.in-addr.arpa" in {
=09type master;
=09file "23.168.192.zone";
};
__________________________________________________
Do you Yahoo!?
Yahoo! News - Today's headlines
http://news.yahoo.com
------------------------ Yahoo! Groups Sponsor ---------------------~-->
Plan to Sell a Home?
http://us.click.yahoo.com/J2SnNA/y.lEAA/MVfIAA/26EolB/TM
---------------------------------------------------------------------~->
To unsubscribe from this group, send an email to:
UNIX-Networking-unsubscribe@yahoogroups.com
Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/