DNS servers do not resolve

M

metziel

Verified User
Joined
Dec 27, 2006
Messages
9
Good day -

I am still setting up my server, and I am attempting to run my own nameservers because my domain host does not let me set up as many subdomains as I would like.

When I set up my domain, I set the nameserver record for the root domain (stencylworks.com) to ns1.stencylworks.com and ns2.stencylworks.com. Inside directadmin, I set two IP addresses to be ns1. and ns2., as I think I should. I also set those to be the nameservers inside Administration Config, but the domain does not resolve. Trying to ping any of the three domains does not work. I am wondering if I made a configuration error somewhere.

Apologies if I did not provide enough information. Please tell me if you need anything further.
 
Looks like you set it up right. Make sure that your firewall is not blocking port 53 udp from the internet. Also if it is not running make sure that it is started.

/sbin/service named restart
 
I have checked both issues and neither of them are problems. named is running and iptables is set up to allow nameserver requests.

I am suspecting a problem with named itself or maybe with my directadmin configuration. Is that likely, and if so, how might I fix it?
 
Take a look at this:

http://dnsreport.com/tools/dnsreport.ch?domain=stencylworks.com

A timeout occurred getting the NS records from your nameservers! None of your nameservers responded fast enough. They are probably down or unreachable. I can't continue since your nameservers aren't responding. If you have a Watchguard Firebox, it's due to a bug in their DNS Proxy, which must be disabled (31 Jul 2006 UPDATE: several years after being informed of this, there is a rumor that there is a fix that allows the Watchguard DNS proxy to work).
Click to expand...

I suspect that your server is blocking named or NS records are wrong.
 
I suspect NS records being wrong; I ran that test myself and disregarded it because the domain does not respond to ping, even - I thought the issues were interconnected.
 
Last edited:
Here is a screenshot of my DNS and NS settings; I intended to use .10 for the web server root, .13 for ns1, and .14 for ns2.

Can anyone more experienced than me see issues with this configuration?
 

Attachments

  • ss.png
    ss.png
    33 KB · Views: 263
A simple dig finds the problem:
Code: 
[jlasman@of1 ~]$ dig @a.gtld-servers.net stencylworks.com

; <<>> DiG 9.3.1 <<>> @a.gtld-servers.net stencylworks.com
; (2 servers found)
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 55415
;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 2, ADDITIONAL: 2

;; QUESTION SECTION:
;stencylworks.com.              IN      A

;; AUTHORITY SECTION:
stencylworks.com.       172800  IN      NS      ns1.stencylworks.com.
stencylworks.com.       172800  IN      NS      ns2.stencylworks.com.

;; ADDITIONAL SECTION:
ns1.stencylworks.com.   172800  IN      A       66.92.166.13
ns2.stencylworks.com.   172800  IN      A       66.92.166.14

;; Query time: 89 msec
;; SERVER: 192.5.6.30#53(192.5.6.30)
;; WHEN: Thu Dec 28 20:55:55 2006
;; MSG SIZE  rcvd: 102

[jlasman@of1 ~]$
Note that when you registered the nameservers you gave your registrar the wrong IP#. You gave them 66.92.166.13 and 66.92.166.14 instead of 64.92.166.13 and 64.92.166.14.

Jeff
 
Thank you a great deal; I will update you if the changes don't work.

I guess I should take this as an opportunity to learn a little bit more about DNS and server administration. :)

Thank you again!
 
i've follow the newinstall.htm page ...
but i confuse here is, where should i set ns1.domain.com = IP ?? at my domain register company or at DA ???
 
You need to do it at your registrar or the root servers won't know where to direct folk looking for the domains using your nameservers.

Jeff
 
i have set my ns1 and ns2 at my domain registerar and point it to my ip
ns1.maxis.cc = 216.246.0.74
ns2.maxis.cc = 216.246.0.73

but when i try use a command dig @a.gtld-servers.net maxis.cc it dont show any nameserver ?? do i make mistake ?

attach my nameserver set at DA
da.JPG
is this correct or wrong ??
 
The cc top-level domain isn't included in the gtld-servers. It's in the nstld.com servers.

The gtld-servers are run by Verisign and are used for .com and .net domains.

Try this command:
Code: 
$ dig +trace ns1.maxis.cc
It shows that ns1.maxis.cc is at 216.246.0.73.
And...
Code: 
$ dig +trace ns2.maxis.cc
It shows that ns2.maxis.cc is at 216.246.0.74

So far so good (except that you've got both nameservers on the same physical server; some registries don't like that and won't let you use them to register domains).

Now do:
Code: 
dig +trace maxis.cc
to make sure the domain lookups work as well.

Success!

Jeff
 
You must log in or register to reply here.
Back
Top