DNS problem

[Goback]

Hi,
Edit: problem is solved , so main domain edited.
--
after a week the site dose not loaded yet!
i think this is DNS problem,but how can i resolve that?

 

[zEitEr]

Hello,

Make sure that bind/named is running on your server and ports TCP:53 UDP:53 are open for incoming and outgoing connections in your firewall.

Now I have this:

> nslookup domain.com 95.215.ccc.ddd
DNS request timed out.
    timeout was 2 seconds.

Address:  95.215.ccc.ddd


DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.

 

[Goback]

port 53 is open , BTW i used this commands to ensure about it:

firewall-cmd --zone=dmz --add-port=53/tcp --permanent
firewall-cmd --zone=dmz --add-port=53/udp --permanent

named service is running and active,but it had some errors about resolving IP6 so i disabled IP6 in named.

 

[zEitEr]

Please check this:

- Named is running, but it's not responding to requests
http://help.directadmin.com/item.php?id=387

 

[Richard G]

By the way... you should not use the same ip for 2 DNS servers. This is part of the problem and the reason why IntoDNS is returning this:

ERROR: Looks like you have less than 2 nameservers. According to RFC2182 section 5 you must have at least 3 nameservers, and no more than 7. Having 2 nameservers is also ok by me.

It's just asking for problems trying to use the same ip for 2 nameservers.

 

[Goback]

Please check this:

- Named is running, but it's not responding to requests
http://help.directadmin.com/item.php?id=387

this is command

netstat -lnp | grep named

and this is output:

tcp        0      0 IP:53       0.0.0.0:*               LISTEN      1549/named
tcp        0      0 127.0.0.1:53            0.0.0.0:*               LISTEN      1549/named
udp        0      0 IP:53       0.0.0.0:*                           1549/named
udp        0      0 127.0.0.1:53            0.0.0.0:*                           1549/named

is it correct?

 

[Goback]

i think this be important!
/etc/resolv.conf:

# Generated by NetworkManager
search domain.com


# No nameservers found; try putting DNS servers into your
# ifcfg files in /etc/sysconfig/network-scripts like so:
#
# DNS1=xxx.xxx.xxx.xxx
# DNS2=xxx.xxx.xxx.xxx
# DOMAIN=lab.foo.com bar.foo.com

 

[zEitEr]

I still think it's a firewall related issue. You should check your firewall once more or even disable it and check it.

 

[Goback]

I still think it's a firewall related issue. You should check your firewall once more or even disable it and check it.

i stopped the firewall now,but the problem is exists yet.
i think i must install centos6 instead of centos7!

 

[zEitEr]

Do you have other firewalls? Does your hosting company block any ports? Do you see packets on TCP:53 UDP:53 with tcpdump?

 

[Goback]

Do you have other firewalls? Does your hosting company block any ports? Do you see packets on TCP:53 UDP:53 with tcpdump?

with tcpdump i can not see any log about port 53! (>tcpdump)
but with scans that i did with nmap the port 53 both tcp and udp were open.
this problem is going to make me crazy

 

[zEitEr]

Then it might be your hosting company who is blocking the port. Did you check with them?

 

[Goback]

first a special thanks to zEitEr for following my problem.
yes i checked, there is no problem with them
i think something is wrong with centos network settings,where can i see a correct setting from this files(centos 7):

/etc/sysconfig/network-scripts/ifcfg-INTERFACE
/etc/resolv.conf

and any other files related to DNS
another question is that what settings must be okayed after DA installing about DNS

 

[Goback]

problem solved,tnQ for helps : )
there was hosting company problem in blocking some DNS options.