Link to home
Start Free TrialLog in
Avatar of qvfps
qvfps

asked on

DNS server rejecting queries from different network

I recently changed the way we access the internet from all traffic being routed to a single location to local internet access at remote offices.   While making the changes I discovered that the remote locations had been setup to use only the DNS servers provided by the ISP.  I changed the DNS servers on the local DHCP servers to point to our internal DNS server.  After I did that i tried a nslookup at a remote location and I received the following error message.

C:\>nslookup www.google.com
*** Can't find server name for address192.168.100.50: Query refused
*** Default servers are not available
Server:  UnKnown
Address: 192.168.100.50

*** UnKnown can't find www.google.com: Query refused

I did not think it was getting to the DNS server so I ran Wireshark and I see the following lines from the remote PC when I do a DNS query.

Standard query PTR 50.100.168.192 in-addr-arpa
Standard query A www.google.com
Standard query A www.google.com
 
and I see the following lines with the destination going to the remote PC
Standard query response, Refused
Standard query response, Refused
Standard query response, Refused

 This is an internal server so I tried turning off the firewall on the DNS server with the same results.

The DNS server is running SUSE 11

ASKER CERTIFIED SOLUTION
Avatar of Chris Dent
Chris Dent
Flag of United Kingdom of Great Britain and Northern Ireland image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of qvfps
qvfps

ASKER

I added allow-recursion {....} to the options section of named.conf and it is working now.  Thanks.