I just noticed something very strange about basically all Virtualmin servers.
DNS commands like this
Are partially failing with localhost connections rejected. This was rather strange because non virtualmin servers are doing DNS lookups just fine.
I digged more and found its related to rndc which basically said on a status that it was missing a key.
So I used the option in Virtualmin on BIND to generate this and now I get:
WARNING: key file (/etc/rndc.key) exists, but using default configuration file (/etc/rndc.conf)
rndc: connect failed: 127.0.0.1#953: connection refused
When I started BIND
service named restart
Then it works. But when BIND is off, rndc does not work. This is rather a very strange behavior because I don’t want to be running a full blown BIND DNS servers on each installation.
It seems Virtualmin requires named to be running and in servers where this is off (because they are not a DNS servers) then lookups have errors.
I consider this a serious bug because if its not running as a service then some requests will fail with:
;; Connection to 127.0.0.1#53(127.0.0.1) for hostname.com failed: connection refused.
So why does Virtualmin require BIND to be on and running if you don’t need it? I don’t think every single installation is running a DNS server, that makes no sense in particular if that servers is not hosting DNS records.