Solved

DNS lookups failing on outside adapter

Posted on 2002-06-25
3
236 Views
Last Modified: 2010-03-18
I'm setting up a network and I'm working on setting up my DNS servers.  The problem I'm having right now is that while DNS lookups for my domain are working from the inside (I'm querying the new DNS server from the inside network and I'm getting the correct values back) when I try to access it from the outside, I get a  Connection timed out error.  The connection is firewalled, but I've opened the port up to the outside.

These are the ports that are open to the outside world:

21/tcp     open        ftp
22/tcp     open        ssh
23/tcp     open        telnet
25/tcp     open        smtp
53/tcp     open        domain
80/tcp     open        http
110/tcp    open        pop-3

I can also telnet to port 53 and it accepts the connection, but when I try to run 'dig' against my server, it fails and refuses to connect.  I've set up bind to log everything and I get nothing in the logfile when I connect from my outside machine.

This is my named.conf file:

options {
        directory "/var/named";
        pid-file "named.pid";              // Put pid file in working dir
        interface-interval 0;
};

logging {
        channel namedlog {
                file "/var/log/named.log" versions 5 size 2m;
                print-time yes;
                print-category yes;
        };
        category "default" { namedlog; };
        category "general" { namedlog; };
        category "database" { namedlog; };
        category "security" { namedlog; };
        category "config" { namedlog; };
        category "resolver" { namedlog; };
        category "client" { namedlog; };
        category "unmatched" { namedlog; };
        category "queries" { namedlog; };
};

zone "XXXXXXXXXX.XXX" in {
        type master;
        file "db.XXXXXXXX.XXX";
};

key "rndc-key" {
        algorithm hmac-md5;
        secret "XXXXX";
};

controls {
        inet 127.0.0.1 port 953
        allow { 127.0.0.1; } keys { "rndc-key"; };
};

I'm running bind 9.2.1 on a RedHat 7.3 server.

any help is appreciated, Thanks in advance.

Jeff
0
Comment
Question by:Jerf
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 

Author Comment

by:Jerf
ID: 7108176
Forgot to mention - this is running on my firewall (small correction - it's a 7.2 server) which is running on a DSL line (ppp0).  I have an internal interface (eth1) and the external interface (eth0 + ppp0).  The server is responding on eth1, but not the others.
0
 
LVL 1

Accepted Solution

by:
smisk earned 200 total points
ID: 7108288
I'm no expert on bind, but I believe dig uses UDP ports for requests.  Try opening port 53/UDP.
0
 

Author Comment

by:Jerf
ID: 7108453
yeah - that'll do it.

Thanks!
0

Featured Post

Building an interactive eFuture classroom

Watch and learn how ATEN provided a total control system solution including seamless switching matrix switch, HDBaseT extenders, PDU, lighting control to build an interactive eFuture classroom.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Lame BIND 9.3 10 76
squid proxy, active sync, autodiscover, squid proxy, exchange 2007 42 479
running production stuff on centos 4 139
Xymon customize http timeout 2 115
I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
In a recent question (https://www.experts-exchange.com/questions/29004105/Run-AutoHotkey-script-directly-from-Notepad.html) here at Experts Exchange, a member asked how to run an AutoHotkey script (.AHK) directly from Notepad++ (aka NPP). This video…

740 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question