LxCenter Forum: Technical Help » [SOLVED] DNS Recursive Queries ON

HyperVM & Kloxo Support

Forum is closed. Use http://community.lxcenter.org/

Members

Search

Help

Login

Home » Kloxo Community Support » Technical Help » [SOLVED] DNS Recursive Queries ON

Show: Today's Messages :: Show Polls :: Message Navigator

Switch to threaded view of this topic

Create a new topic

[SOLVED] DNS Recursive Queries ON [message #79302]

Sun, 30 January 2011 03:13

Go to next message

reverse is currently offline

Romania

Messages: 42
Registered: February 2009

Member

Hi,
It looks my Kloxo is allowing Recursive Queries even if global.options.named.conf file is looking like this:

options {
max-transfer-time-in 60;
transfer-format many-answers;
transfers-in 60;
auth-nxdomain yes;
allow-transfer { "lxcenter"; };
allow-recursion { "lxcenter"; };
recursion no;
version "LxCenter-1.0";
};

How can I fix this? Thank you.

[Updated on: Wed, 14 March 2012 11:55] by Moderator

Report message to a moderator

Re: DNS Recursive Queries ON [message #79306 is a reply to message #79302]

Sun, 30 January 2011 10:31

Go to previous message

Go to next message

LxCenter_Danny is currently offline

Netherlands

Messages: 2193
Registered: July 2007
Location: Netherlands

Grandmaster
LxCenter Core Team Member
LxCenter Representative

nettuninggroup@gmail.com

is there not already a options definition present in the other config files?

LxCenter - System Operations

Report message to a moderator

Re: DNS Recursive Queries ON [message #79308 is a reply to message #79306]

Sun, 30 January 2011 17:47

Go to previous message

Go to next message

reverse is currently offline

Romania

Messages: 42
Registered: February 2009

Member

Not in /var/named/chroot/etc files.
named.caching-nameserver.conf have recursive ON, but only for localhost:

view localhost_resolver {
	match-clients 	   { localhost; };
	match-destinations { localhost; };
	recursion yes;
	include "/etc/named.rfc1912.zones";
};

Other files don't make any reference to Recursive Queries.

Report message to a moderator

Re: DNS Recursive Queries ON [message #79316 is a reply to message #79308]

Sun, 30 January 2011 21:41

Go to previous message

Go to next message

LxCenter_Danny is currently offline

Netherlands

Messages: 2193
Registered: July 2007
Location: Netherlands

Grandmaster
LxCenter Core Team Member
LxCenter Representative

nettuninggroup@gmail.com

Restart named and watch your logfile (/var/log/messages) and see what bind is loading.

LxCenter - System Operations

Report message to a moderator

Re: DNS Recursive Queries ON [message #79330 is a reply to message #79316]

Tue, 01 February 2011 09:53

Go to previous message

Go to next message

reverse is currently offline

Romania

Messages: 42
Registered: February 2009

Member

named was restarted a few times, but there is nothing special in the logs, just the report of service restart.
On the other hand, it looks like while intoDNS report Recursive Queries as ON, other DNS checking tools report Recursive Queries as OFF and secure. So... it might be an intoDNS issue.
Thank you for your support.

Report message to a moderator

Re: DNS Recursive Queries ON [message #79355 is a reply to message #79302]

Wed, 02 February 2011 14:12

Go to previous message

Go to next message

alifamoorzadeh is currently offline

alifamoorzadeh Iran, Islamic Republic of

Iran, Islamic Republic of

Messages: 1
Registered: February 2011
Location: Iran

Member

add below lines in /var/named/chroot/etc/named.conf and restart service:
(replace DNS1_IP_ADDRESS & DNS2_IP_ADDRESS with your IP)

options
{
  version "CHISPUM";
  allow-recursion {
	127.0.0.1;
	DNS1_IP_ADDRESS
	DNS2_IP_ADDRESS
  };
};

[Updated on: Wed, 02 February 2011 14:14]

Report message to a moderator

Re: DNS Recursive Queries ON [message #79363 is a reply to message #79355]

Wed, 02 February 2011 21:30

Go to previous message

Go to next message

LxCenter_Danny is currently offline

Netherlands

Messages: 2193
Registered: July 2007
Location: Netherlands

Grandmaster
LxCenter Core Team Member
LxCenter Representative

nettuninggroup@gmail.com

Thats not needed to do. Dont give wrong info.

LxCenter - System Operations

Report message to a moderator

Re: DNS Recursive Queries ON [message #79387 is a reply to message #79363]

Thu, 03 February 2011 10:38

Go to previous message

Go to next message

Tha_Duck is currently offline

Netherlands

Messages: 84
Registered: December 2010
Location: Utrecht

Valuable Member

I have the same problem, I have planned to take a look this evening. Hope I can help you then.

Report message to a moderator

Re: DNS Recursive Queries ON [message #79402 is a reply to message #79355]

Thu, 03 February 2011 14:30

Go to previous message

Go to next message

Tha_Duck is currently offline

Netherlands

Messages: 84
Registered: December 2010
Location: Utrecht

Valuable Member

alifamoorzadeh wrote on Wed, 02 February 2011 14:12

add below lines in /var/named/chroot/etc/named.conf and restart service:
(replace DNS1_IP_ADDRESS & DNS2_IP_ADDRESS with your IP)
options
{
  version "CHISPUM";
  allow-recursion {
	127.0.0.1;
	DNS1_IP_ADDRESS
	DNS2_IP_ADDRESS
  };
};

This indeed did the trick and is right information.

[Updated on: Thu, 03 February 2011 14:30]

Report message to a moderator

Re: DNS Recursive Queries ON [message #79424 is a reply to message #79402]

Fri, 04 February 2011 17:18

Go to previous message

Go to next message

LxCenter_Danny is currently offline

Netherlands

Messages: 2193
Registered: July 2007
Location: Netherlands

Grandmaster
LxCenter Core Team Member
LxCenter Representative

nettuninggroup@gmail.com

Nope.

Those are the files that Bind is managing:

/var/named/chroot/etc/global.options.named.conf
/var/named/chroot/etc/kloxo.named.conf
/var/named/chroot/etc/named.conf

named.conf:

//Kloxo

include "/etc/kloxo.named.conf";

//Global_options_file

include "/etc/global.options.named.conf";

And global.options.named.conf should have this:
acl "lxcenter" {
localhost;
};

options {
max-transfer-time-in 60;
transfer-format many-answers;
transfers-in 60;
auth-nxdomain yes;
allow-transfer { "lxcenter"; };
allow-recursion { "lxcenter"; };
recursion no;
version "LxCenter-1.0";
};

# Remove # to see all DNS queries
#logging {
# channel query_logging {
# file "/var/log/named_query.log";
# versions 3 size 100M;
# print-time yes;
# };

# category queries {
# query_logging;
# };
#};

And kloxo.named.conf should hold the zone files definitions.

There is no /etc/named.conf present and if present it wont be used as named is started in a chrooted environment.

This is the correct information on a standard default Kloxo system.

LxCenter - System Operations

Report message to a moderator

Re: DNS Recursive Queries ON [message #79439 is a reply to message #79424]

Sat, 05 February 2011 05:10

Go to previous message

Go to next message

Tha_Duck is currently offline

Netherlands

Messages: 84
Registered: December 2010
Location: Utrecht

Valuable Member

NetTuningGroup wrote on Fri, 04 February 2011 17:18

Nope.

Those are the files that Bind is managing:

/var/named/chroot/etc/global.options.named.conf
/var/named/chroot/etc/kloxo.named.conf
/var/named/chroot/etc/named.conf

named.conf:

//Kloxo

include "/etc/kloxo.named.conf";

//Global_options_file

include "/etc/global.options.named.conf";

And global.options.named.conf should have this:
acl "lxcenter" {
localhost;
};

options {
max-transfer-time-in 60;
transfer-format many-answers;
transfers-in 60;
auth-nxdomain yes;
allow-transfer { "lxcenter"; };
allow-recursion { "lxcenter"; };
recursion no;
version "LxCenter-1.0";
};

# Remove # to see all DNS queries
#logging {
# channel query_logging {
# file "/var/log/named_query.log";
# versions 3 size 100M;
# print-time yes;
# };

# category queries {
# query_logging;
# };
#};

And kloxo.named.conf should hold the zone files definitions.

There is no /etc/named.conf present and if present it wont be used as named is started in a chrooted environment.

This is the correct information on a standard default Kloxo system.

Nobody is talking about /etc/ as far as I see? We are talking about /var/named/chroot/etc which is the correct folder.

I will post my current configuration here later, because it is very different from what you are saying as far as I know. But I am not behind my computer at this moment so no SSH Smile

Smile

[Updated on: Sat, 05 February 2011 05:12]

Report message to a moderator

Re: DNS Recursive Queries ON [message #79448 is a reply to message #79439]

Sat, 05 February 2011 10:23

Go to previous message

Go to next message

Tha_Duck is currently offline

Netherlands

Messages: 84
Registered: December 2010
Location: Utrecht

Valuable Member

Ok, finally found some time.

I have a default Kloxo 6.1.0 installation (upgraded to 6.1.1 lately) and this are my config files for the named.

/var/named/chroot/etc/global.options.named.conf:

EMPTY

/var/named/chroot/etc/kloxo.named.conf:

zone  "domain.nl" { type master; file "/var/named/domain.nl";};

There are more, but no need to post it I assume

/var/named/chroot/etc/named.conf

options {
 allow-transfer {1.2.3.4; 1.2.3.5; };
 allow-recursion {
        127.0.0.1;
        172.16.1/24;
        1.2.3.4;
        1.2.3.5;
 };
};

logging{
  channel simple_log {
    file "/var/log/named/bind.log" versions 3 size 5m;
    severity info;
    print-time yes;
    print-severity yes;
    print-category yes;
  };
  category default{
    simple_log;
  };
  category lame-servers{ null; };
};

//Kloxo

include "/etc/kloxo.named.conf";

And of course the zone files are in /var/named/chroot/var/named.

The only things I edited is the /var/named/chroot/etc/named.conf

Report message to a moderator

Re: DNS Recursive Queries ON [message #85438 is a reply to message #79448]

Sat, 18 June 2011 12:19

Go to previous message

Go to next message

007007 is currently offline

007007

Morocco

Messages: 25
Registered: June 2011

Member

fix if you have this bug:

in /var/named/chroot/etc/named.conf add

options {
recursion no;
};

[Updated on: Sat, 18 June 2011 12:20]

Report message to a moderator

Re: DNS Recursive Queries ON [message #88300 is a reply to message #85438]

Wed, 24 August 2011 12:14

Go to previous message

Go to next message

onlinewebs is currently offline

onlinewebs Pakistan

Pakistan

Messages: 34
Registered: June 2010

Member

Worked for me. do not forget to restart named after change. Use following.

# service named restart and recheck at http://www.intodns.com/yourdomain.com

Report message to a moderator

Re: DNS Recursive Queries ON [message #93157 is a reply to message #79355]

Mon, 26 December 2011 03:52

Go to previous message

Go to next message

lupetalo is currently offline

Messages: 258
Registered: April 2011

Senior Member

alifamoorzadeh wrote on Wed, 02 February 2011 14:12

add below lines in /var/named/chroot/etc/named.conf and restart service:
(replace DNS1_IP_ADDRESS & DNS2_IP_ADDRESS with your IP)
options
{
  version "CHISPUM";
  allow-recursion {
	127.0.0.1;
	DNS1_IP_ADDRESS
	DNS2_IP_ADDRESS
  };
};

This worked for me too...
Any other better sugestion?

Report message to a moderator

Re: DNS Recursive Queries ON [message #93161 is a reply to message #93157]

Mon, 26 December 2011 04:42

Go to previous message

LxCenter_Danny is currently offline

Netherlands

Messages: 2193
Registered: July 2007
Location: Netherlands

Grandmaster
LxCenter Core Team Member
LxCenter Representative

nettuninggroup@gmail.com

If your global.options.named.conf is empty, try to delete the file, (don't restart bind) run /script/cleanup and the file might be re-created with the Kloxo defaults. And thereby the standard recursive is no.

LxCenter - System Operations

Report message to a moderator

Switch to threaded view of this topic

Create a new topic

Previous Topic:	suphp_event kloxo 6.1.10
Next Topic:	6.1.10 - Curl has been crashed

Goto Forum:

-=] Back to Top [=-

[ Syndicate this forum (XML) ] [

] [

PDF

]

Current Time: Wed Jan 06 09:05:41 EST 2016

Total time taken to generate the page: 0.01867 seconds

.:: Contact :: Home :: Privacy ::.

Click here to lend your support to: LxCenter and make a donation at www.pledgie.com !

Powered by: FUDforum 3.0.2.
Copyright ©2001-2010 FUDforum Bulletin Board Software