djbdns configure

Posted on 2005-04-27
Last Modified: 2010-05-18

I am attempting to configure djbdns for dns name resolution.  I would like to publish my dns to the public (I would like to host my web page...)

I have install djbdns on Debian according to:

I am able to resolve my web address from the Debian server, (ie nslookup but I cannot resolve it from any other machein.

Also, I noticed that djbdns is not listening on port 53 even after it had been setup;
is there something I must do to enable djbdns to listen on port 53 to resolve DNS requests?

thanks for your time.
Question by:PastorDwayne
    LVL 14

    Expert Comment

    what say in /var/log/message when you try to start?

    che if you dont have a DNS LISTEN with netstat -a


    Author Comment

    Thanks for your response;

    I tried netstat -a command, but there was no entry for DNS and I was not able to find anything pertinant in the /var/log/messages file

    I ran  /usr/local/bin# svstat /service/*

    and found this:

    /service/dnscache: up (pid 5314) 12469 seconds
    /service/tinydns: up (pid 17670) 1 seconds
    /service/tinydns-local: up (pid 4524) 13251 seconds

    as well ps aux indicates that tinydns is running, I'm just not sure why it's not listening...
    LVL 5

    Expert Comment

    DNS listens on UDP port 53... you will need to do a UDP portscan to find it, or look in netstat, like previously suggested.

    In order for people to use your nameserver, you need to make sure that your IP address is listed as your Domain's nameservers.  (You'll need to contact your registrar, or go to their site and fill out a nameserver update form).  Then you'll have to wait until the change is applied.

    You will know when it is applied correctly because doing a "whois" will look like this:
       Domain servers in listed order:

    (where is your IP address).

    Only then will the rootservers be pointing at your address for DNS.

    For a first-time user, I would highly recommend ZoneEdit (, they provide you two nameservers for free, with nice web-based DNS editing.

    Author Comment

    Thanks for your response.

    I do have a domain name that is pointing to my external ip, i just need to configure tinyDNS to allow name resolution.

    Here my network:     <=======>
    my ext ip    NAT Router      IP of TinyDNS server

    *note: port 53 is fwd from to

    I was able to configure DNS-cache on (it works!)  but I still can't seem to publish my eternal IP.

    my questions are:
         1.  when I run tinydns-conf, do i use the external ip ( or do I use the private (

         2.  Do I have to add the external ip to the interfaces file before this will work?

    thanks for your time...
    LVL 5

    Expert Comment

    DNS Cache?  you mean an Authoritative DNS server?

    1. You use your internal IP (, because that is the IP that it will bind with.  All incoming requests will be NAT'd so the destination IP is

    2. Interfaces file?  What do you mean by this?  Your server should be completely unaware of it's public IP address (besides the fact that it may be serving it out as A records)

    Author Comment


    the dnscache is part of the DJBDNS package; it caches local dns requestes. (i really don't need it, but since I was't able to get TinyDns to work...)

    I'll try configuring it again with this info.

    perhaps i can't have dnscache and tinyDns with only one network card....

    or can i?
    LVL 5

    Expert Comment

    No, as with TCP, only one program can bind to a UDP port at a time.  You would need to run just tinyDNS.

    Author Comment

    Ok! That Works!  thanks...

    i receive an error on - "Missing (stealth) nameservers"

    what does this mean and how do I add a 'stealth' nameserver using tinyDNS
    LVL 5

    Accepted Solution

    It means that, when comparing:
    1. The nameservers listed publically on your domain's record, and
    2. The 'NS' records from your DNS server

    It means that you have some NS records for DNS servers that aren't publically listed.  Nothing to worry about unless you are in a big corporation and have secret DNS records on a secret internal-only DNS server.

    Author Comment

    Thanks very much!
    very helpfull!

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Maximize Your Threat Intelligence Reporting

    Reporting is one of the most important and least talked about aspects of a world-class threat intelligence program. Here’s how to do it right.

    I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
    Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
    Excel styles will make formatting consistent and let you apply and change formatting faster. In this tutorial, you'll learn how to use Excel's built-in styles, how to modify styles, and how to create your own. You'll also learn how to use your custo…
    In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…

    759 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    10 Experts available now in Live!

    Get 1:1 Help Now