Bind not configured

hescominsoon · October 24, 2006, 7:49pm

I guess virtualmin commercial does not configure BInd for virtual hosting? I noticed i was setup for caching nameserver. I ahve removed it but the config file is still configured for caching.

Joe · October 24, 2006, 9:03pm

Hey William,

I don’t see anything in that named.conf that would prevent it from working as your authoritative server, but I could be missing something. If you’re worried about the controls section, don’t be. That’s for administrative access. If you remove it, every bit of BIND management going on on your system will break–Webmin, rndc, the Red Hat service tools, pretty much everything.

Holler if you do find that it fails to work in some way, and I’ll help you debug it.

hescominsoon · October 24, 2006, 9:06pm

ok so as it is setup now it will answer requests ont he public ips and not restrict itself to localhost/local domain?

Joe · October 24, 2006, 9:22pm

Hey William,

Yep, looks like it to me. I don’t see any reason to believe it would do otherwise.

Joe · June 7, 2009, 12:00pm

Hey William,

It does get configured for virtual hosting, and caching name service, as well. You can disable the caching features, if you aren’t using localhost as one of your name servers. The lack of recursive service caused so many bug reports and customer issues that we now enable it by default.

To disable it, just remove the . zone. It looks like this:

zone "." IN {
type hint;
file "named.ca";
};

You can also remove this zone in the Webmin BIND module.

Restart BIND after making the change.

hescominsoon · June 7, 2009, 12:00pm

//
// named.conf for Red Hat caching-nameserver
//

options {
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
/*
* If there is a firewall between you and nameservers you want
* to talk to, you might need to uncomment the query-source
* directive below. Previous versions of BIND always asked
* questions using port 53, but BIND 8.1 uses an unprivileged
* port by default.
*/
// query-source address * port 53;
listen-on {
206.63.25.74;
206.63.25.75;
};
};

//
// a caching only nameserver config
//
controls {
inet 127.0.0.1 allow { localhost; } keys { rndckey; };
};

zone "." IN {
type hint;
file "named.ca";
};

zone "localdomain" IN {
type master;
file "localdomain.zone";
allow-update { none; };
};

zone "localhost" IN {
type master;
file "localhost.zone";
allow-update { none; };
};

zone "0.0.127.in-addr.arpa" IN {
type master;
file "named.local";
allow-update { none; };
};

zone "0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa" IN {
type master;
file "named.ip6.local";
allow-update { none; };
};

zone "255.in-addr.arpa" IN {
type master;
file "named.broadcast";
allow-update { none; };
};

zone "0.in-addr.arpa" IN {
type master;
file "named.zero";
allow-update { none; };
};

include "/etc/rndc.key";
zone "hescominsoon.com" {
type master;
file "/var/named/hescominsoon.com.hosts";
};
zone "emmanuelcomputerconsulting.com" {
type master;
file "/var/named/emmanuelcomputerconsulting.com.hosts";
};

This does not look like it is answering authoritativly(i could be wrong) i added the two ip’s for hte nameservers but i’m not sure if that is going to do it with the 127.0.0.1 and localhost entries in there.

hescominsoon · June 7, 2009, 12:00pm