All nameserver respond FAIL

M

morfargekko

Verified User
Joined
Oct 21, 2007
Messages
189
Hello, on one of my DA servers I get errors doing a DNS-report at dnsstuff. I can't find what I have done wrong, the first two report no errors.

If I disable (allow all connections) in iptables it works just fine.

ERROR: Some of your nameservers listed at the parent nameservers did not respond. The ones that did not respond are:

xxx.xxx.xxx.xxx

I x:ed the IP as You all understand. :)

Please can You give me some pointers what to do. :o
CentOS 5
 
As this most likly is an iptables problem I can't se that providing the domain is any help to the helper. If You think othervise please tell me why.
 
So open up input/output to port 53 if you are positive it's iptables.

This *should* work:

iptables -A OUTPUT -p udp -o eth0 --dport 53 --sport 1024:65535 -j ACCEPT
iptables -A INPUT -p udp -i eth0 --sport 53 --dport 1024:65535 -j ACCEPT

I just asked for domain because it's easier to troubleshoot if we can see/read the entire DNS report if need be. Not a biggie, your choice.
 
Thanks GXX couldn't see any reason to tell the domain because I saw nothing in the dns repport that could give any lead in fixing iptables. :)

Can You please explain : --sport 1024:65535 and --dport 1024:65535
 
To make sure any possible port is open. Mind you, this should not be necessary.

Since you refuse to give real domain information there's no way for anyone to test anyone, so all we can do is give you some WAGs.

Jeff
 
jlasman said:
To make sure any possible port is open. Mind you, this should not be necessary.

Since you refuse to give real domain information there's no way for anyone to test anyone, so all we can do is give you some WAGs.

Jeff
Click to expand...

That's what I asked for right off the bat. So all my suggestions have been just guesses. Oh well, at least he got it working.
 
You must log in or register to reply here.
Back
Top