All Questions
Tagged with domain-name-system bind
1,433
questions
-1
votes
0
answers
76
views
How to create zones and zone files for existing public zones on an internal BIND server? [closed]
We have two BIND DNS servers in our infrastructure and all of the servers and clients DNS servers are set to these two BIND servers.
We want to create some records for DNS resolution and since our ...
- 170
-1
votes
1
answer
115
views
Why am I not able to resolve names on subnet behind a lab network?
I have gotten the task of setting up a network where there is an existing gateway for my "public ip" 10.200.3.2/28 already. I am to setup a gw/dhcp which uses the existing gateway the given ...
- 1
0
votes
2
answers
228
views
Why do I have to specify the DNS server when doing a forward lookup?
I'm trying to set up a small, private DNS server. I'm using Bind9 and systemd resolved, netplan for managing the network. I've specified the DNS server in both the netplan configuration and /etc/...
0
votes
1
answer
35
views
How can i fix source ports in BIND 9.16.xx?
The older cache DNS server in my team is configured with BIND 9.11.4; it uses 53 as the source port number.
options {
...
query-source port 53;
...
}
Meanwhile, the new one has BIND 9.16.23 ...
- 1
1
vote
0
answers
15
views
Bind rpz only gives max TTL of 5 seconds
When I configure BIND with response policy zone so I can override DNS for LAN network I have noticed that TTL returned by this DNS servers max out at 5 seconds. I can lower TTL to 1-4 seconds but ...
- 11
0
votes
0
answers
24
views
Move Nameserver from crashed BIND servers (DNSSEC Enabled)
The situation basically is:
The BIND servers that are authoritative for a domain crashed and are utilizing DNSSEC (Ie; I can't change the DNS entries for the zone), is it enough to have the registrar ...
0
votes
0
answers
117
views
DNS configuration using bind9
I am currently encountering DNS configuration issues with bind9. I have installed bind9 and made the following adjustments to the configuration files:
In the "named.conf.options" file, I ...
0
votes
0
answers
193
views
BIND9 on Ubuntu 20 - Cannot configure Zone to work properly
I installed it on Ubunto 20 and configured two zones
Options config file
acl internal {
localhost;
localnets;
192.168.70.0/24;
10.200.157.0/24;
};
options {
...
0
votes
0
answers
22
views
How to Forward an authorative zone in BIND between internal and public clients
I have a dns server authorative for my public records and my internal records , I want to forward a zone in my internal dns server so internal clients can access certain records without using the ...
1
vote
0
answers
44
views
How to forward subdomain DNS to Windows Server DNS while keeping the parent in local zone
I have a Bind9 (Ubuntu) as my primary DNS server in my lab environment and hosts zone files. I recently added Active Directory to the environment. My plan is to keep Bind9 as my Primary DNS and any ...
- 11
0
votes
1
answer
72
views
bind9 multiple ports zone and dns64
When I add the zone it stops working. How can I use them together? I want to go to the zone "." via port 5353
And go to DNS64 via port 53
zone "." {
type slave;
masters port 5353 { ...
0
votes
1
answer
135
views
Can't resolve private domains using bind9 with Wireguard VPN connection
I have a VPS with static external IP and Ubuntu 22.04. I configured the Wireguard VPN connection to my server tunneling all traffic through VPS. I also have UFW enabled. I want to resolve some domains ...
0
votes
1
answer
47
views
Issue with Bind9 and wildcards
I set up both bind9 and DNSMASQ servers to forward public-ubiservices.ubi.com to my IP address, but client kept failing to connect to it, I checked bind9 logs and found out the client is trying to ...
- 1
0
votes
2
answers
109
views
What is the behavior of a DNS resolver if one authoritative name server does not have particular record but another one does
Say I have sent a query for TXT record for m1._domainkey.amazon.com
nslookup -q=txt m1._domainkey.amazon.com
Say the authoritative nameservers for amazon.com are
amazon.com nameserver = ns1.amzndns....
- 19
0
votes
1
answer
229
views
Do spaces in DKIM records matter?
I'm trying to get BIND show my DKIM exactly like it was generated but it seems like the " sign is messing up the results for dig.
If I don't insert the public key within "" then dig ...
- 33
0
votes
1
answer
73
views
Named server cannot be started
Good day, I am trying to follow this DNS server setup tutorial
Here's what I was hoping to setup
win10 | 192.168.1.247
ns1 | 192.168.1.203
mint | 192.168.1.183
domain: nyc3.example.com
my named-...
0
votes
1
answer
48
views
How can I dump an AWS Route53 zone in a BIND-compatible format?
I have a zone in Route53 that I need in a BIND-compatible format.
How can I convert it?
- 39.5k
2
votes
1
answer
206
views
DNS Proxy/cache that query multiple DNS, ignore NXDOMAIN
The question is as follow: how can I set up a DNS proxy/cache that queries in a strict order a series of DNS servers (of which some might be unavailable), and that does not stop on the first NXDOMAIN ...
- 123
0
votes
0
answers
89
views
Bind9 how to use RPZ zone for specific subnets
I already have 1 master(192.168.130.32) 4 slaves(192.168.130.35) and 2 authoritative(192.168.130.33) servers with bind9.
My point is to get RPZ(192.168.130.37) from external DNS servers, but I want to ...
- 101
0
votes
0
answers
86
views
Bind Recursion DNS Server Returning Wildcard Address for Host Despite Exact Entry Existing in Zonefile on Hosts DNS Server
I setup a bind server (version BIND 9.18.16-1+ubuntu20.04.1+isc+1-Ubuntu on Ubuntu 20.04), and this particular instance is setup as a recursion resolver with no forwarders. When I dig one of my ...
- 187
0
votes
1
answer
169
views
DNS Zone File returns Error about my A records. Bind9 Ubuntu 22.04
I am trying to setup a guest ubuntu 22.04 DNS/DHCP server on a ProxMox Host. My error message when running
I have my domain registered via cloudfare ("Not shown in the file", and the domain ...
0
votes
1
answer
59
views
BIND "notify" packages over NATted networks possible?
I got a very specific issue: We got two DNS servers with networks being NATted to each other. Example: DNS master has 192.168.1.1 and it's NATted to another subnet 192.168.2.x using the gateway 192....
- 1
0
votes
0
answers
118
views
Error Configuring DKIM on Bind BIND 9.9.4-RedHat-9.9.4-61.el7_5.1 (Extended Support Version)
I'm trying to configure a DKIM record on my DNS Server running BIND 9.9.4-RedHat-9.9.4-61.el7_5.1 (Extended Support Version), but I'm getting the following error:
10:36:40 ns1 named[14663]: db.domain....
0
votes
1
answer
106
views
Map subdomain to local IP through public IP
I want to map subdomain to local IPs on my machine to achieve a IP for each of my virtual machines.
I know I can setup a DNS on my own machine but that will only resolve the domain on my own machine.
...
- 3
0
votes
0
answers
43
views
Ubuntu Server Configure Bind9 DNS Server for HTTP request
I have configured a Bind9 DNS Server Forward Zone according to the code below. The way is configured, I only can do SSH using the server name <geoportal.geoint.lan>. I tried adding to the code ...
- 101
1
vote
1
answer
304
views
named-checkconf throwing error on previously functioning forward zone file
I wanted to add a zone to my bind9 configuration (BIND 9.16.1). I have about 20 domains serviced by this name server, most of which have worked for > 10 years.
named-checkconf is throwing errors on ...
- 81
0
votes
1
answer
346
views
rndc showzone returns "rndc: 'showzone' failed: failure" on valid zones
I am running BIND 9.18.12-0 on Ubuntu 22.04 and I have the following problem on more than one installation. I have even installed bind locally with a simple test configuration and I am still seeing ...
- 161
2
votes
1
answer
347
views
All of my DNS zones do not make it on the secondary, what is wrong?
TL;DR You may want to quickly jump to the answer to know what happened and not spend time reading the whole question.
I have a tool (ipmgr) to generate my zones (I had to manage about 35 of them, so ...
- 2,250
-2
votes
2
answers
258
views
Block IP in DNS Zone File (Instead of Domain)
I'm using bind9 DNS server. I used to block websites using their domain name in RPZ zone file such as:
malicious.example CNAME .
But, I need to block IP rather than domain such as:
192.0.2.4 ...
0
votes
0
answers
28
views
Bind9 with delegation to MS DNS for sub domain
I am wanting to get Bind to answer for primary domain and then onpass queries for sub domain to MS DNS. I dont really want to try and get MS AD to use BIND :)
In Future in the back of my mind DNSSEC ...
-1
votes
1
answer
120
views
Bind Dns server stopped working after Ip change
So, I have changed my server location from US to Lithuania and my server stopped working
I can connect to my db and virtualmin but only with my IP
/etc/bind/named.conf:
include "/etc/bind/named....
- 101
0
votes
1
answer
327
views
bind dns zone notify with multiple view
I experienced some difficulties with zones from what should have been an internal view (with RFC1918 addresses plus public IPv6) leaked to the external view (public IPv4 plus public IPv6). I think I ...
- 181
0
votes
0
answers
43
views
Name server does not have direct parent zone information?
I'm curious about this error that comes up in an online DNS report, and unable to find information about how I might fix it:
Direct Parent Check: The Parent DNS Server [ns1.xxxxxxx.org.uk] does not ...
- 471
0
votes
0
answers
334
views
Bind9 server random query failed (timed out) error
i used bind 9.18.1 on Ubuntu 22.04.1.
Some clients have an error while answering their queries.
53 port is open.Already most of the time it returns queries successfully
in query-errors.log ;
05-Jan-...
0
votes
1
answer
399
views
Setup split DNS to external CNAME when resolving within an internal CoreDNS?
I have an internally hosted DNS resolver via Core DNS running on my network. Everything is great aside from one thing, which is I cannot load my apex domain when connected over VPN. The reasoning is ...
- 1
0
votes
1
answer
534
views
How does one query the resolver name of a DNS server?
The Shodan search tool, for some DNS servers, shows a Resolver name value for what it finds on UDP port 53. For example, 80.82.117.140 shows Resolver name: server402.xenserve.com and 103.81.27.118 ...
- 180
0
votes
0
answers
247
views
Bind9 named recursion only for local zones
I try to configure bind9 as an authority server for several domains.
Entries of some domains are CNAME of another domain.
/etc/bind/named.conf
options{
dnssec-validation no;
directory "/var/...
- 1
1
vote
2
answers
187
views
How do the TLD DNS servers handle so many zone file updates?
I've always wondered how the DNS infrastructure for (say a .com) TLD is designed. It must not only be able to maintain a high level of reliably, but also support high amounts of real-time updates to ...
- 81
-1
votes
1
answer
662
views
Can a DNS server accept queries from both IPv4 and IPv6 clients?
I have a remote BIND9 server with an IPv4 address that clients use for their DNS queries. This is mainly a forwarding server where most queries get forwarded to Google’s DNS servers. This works ...
- 119
0
votes
0
answers
400
views
Bind9 unable to resolve external nameserver
I have set up a DNS Server within my company's LAN.
Local nameservers works correctly, however those outside such as google.com are not resolved...
By running dig google.it I get this result:
; <&...
- 1
0
votes
1
answer
619
views
Bind9 Returning SERVFAIL for custom Zones
I'm trying to setup a DNS-Server for my Domains using Bind. The Server behaves correctly for noncustom Domains like google.com or github.com, but for my domains it always returns "SERVFAIL". ...
- 103
0
votes
1
answer
448
views
Bind9: TTL 604800 exceeds configured max-zone-ttl 86400
I'm running bind 9.16.33 nameserver on debian. It's been working fine, but all of a sudden several domains stopped working. The named logs show:
dns_master_load: ki9.us.db:3: TTL 604800 exceeds ...
- 1,273
0
votes
1
answer
520
views
bind9 not recursing when configured to do so
A new bind server is not returning recursive domains. What I have found so far:
When a client queries the server, I can see the recursive queries sent to the forwarders enter and leave using tcpdump, ...
- 136
1
vote
1
answer
120
views
How to Configure BIND as referral
I created a zone in a local BIND:
zone "labs" {
type master;
file "/etc/bind/db.labs";
};
zone "foo.labs" {
type master;
file "/etc/bind/db.foo.labs&...
- 89
0
votes
1
answer
183
views
How to create a custom nameservers for my domain and my clients can use it to point their domain
I know this is a general question but I tried a lot of solutions without any success.
What I want to do is to create a custom nameserver like ns1.example.com/ns2.example.com
I tried bind9 but I always ...
- 31
2
votes
1
answer
138
views
Should my authoritative nameserver's zone records use the registrar's nameservers?
I'm migrating my nameserver machines from a datacenter into a cloud service (AWS) by replacing each of the physical machines with virtual machines. The nameservers I am migrating are authoritative for ...
- 534
1
vote
1
answer
199
views
BIND Nameserver - $ORIGIN in zonefile include always appends to its previous value
There is a a basic zonefile for "example.com" with an include of another zonefile for the subdomain, which has another include for each server.
Now the usage of $ORIGIN without trailing dot ...
- 11
1
vote
0
answers
279
views
RPZ in Bind DNS server not working
I have an external Bind DNS server which is used by a number of remote machines (limited by IP only). The current setup of this server is to act as a forwarding server. I am trying to block certain ...
- 119
0
votes
1
answer
5k
views
How to create SRV record in Linux(Bind9)?
I am able to successfully implement DNS with an A record. Now I want to use that to create an SRV record.
Please help me to write the SRV record. I want "fs1" to be primary and when "...
0
votes
2
answers
284
views
BIND resolves external addresses correctly, but doesn't resolve addresses in LAN
I have recently set up a DNS server with bind (my first time) and I got it to resolve external addresses but internal addresses return an NXDOMAIN error in dig.
It for sure has to do something with my ...
