Ubuntu – Need help installing a DNS on Ubuntu

domain-name-systemUbuntu

I am trying to configure a DNS for an Ubuntu server. Initially I had problems pinging the server or doing any kind of dig. The relevant info up to that point is visible below under "Old Issues". Through much assistance I have gotten the DNS to respond to a ping request via its IP, and most importantly it is now acknowledging the dig -x 127.0.0.1 command.

These prior issues came about due to an error in my name server syntax in the Forward Zone File (eg. db.example.com.).

Currently the issue remains that the server can not be called by the example.com. I can only assume that this is a problem with my reference to the recursive DNS server, however I am unsure of how to fix this. All help is appreciated.

Old Issues
As per requested, below are the results for various ping requests, digs, and what is entered into bind named.config prior to any suggestions.

"ping example.com" times out and outputs:

ping: unknown host example.com

"ping 1.2.3.4" (net ip) outputs:

10 packets transmitted, 10 received, 0% packet loss, time 8999ms
rtt min/avg/max/mdev = 0.688/0.960/3.221/0.754 ms

"ping 1.2.3.4" (local ip) outputs:

PING 192.168.1.68 (192.168.1.68) 56(84) bytes of data.
^C
--- 192.168.1.68 ping statistics ---
21 packets transmitted, 0 received, 100% packet loss, time 19999ms

"ping 4.2.2.2" outputs:

5 packets transmitted, 5 received, 0% packet loss, time 4006ms
rtt min/avg/max/mdev = 32.742/33.081/33.544/0.411 ms

bind named.conf file:

include "/etc/bind/named.conf.options";
include "/etc/bind/named.conf.local";
include "/etc/bind/named.conf.default-zones";

resolv.conf file:
version 1

nameserver 127.0.0.1
nameserver 4.2.2.2

version 2

search example.com
nameserver 192.168.1.1
nameserver 68.238.64.12

nslookup google.com

Server:         192.168.1.1
Address:        192.168.1.1#53

Non-authoritative answer:
Name:   google.com
Address: 74.125.45.100
Name:   google.com
Address: 74.125.53.100
Name:   google.com
Address: 74.125.67.100

New Issues

dig -x 127.0.0.1 this line seems to be of concern, shouldn't these 0's be 1's?

;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

cat /etc/bind/named.conf.options

tail -n 100 /var/log/syslog

cat /var/log/syslog | grep bind

named.conf.local

zone "example.com"{
        type master;
        file "/etc/bind/db.example.com";
};

zone "1.168.192.in-addr.arpa" {
        type master;
        file "/etc/bind/db.233";
};

Best Answer

Check you network is UP and running
Check you routing and if default rote is installed ( netstat -rn )
Check internet connection by pinging 4.2.2.2 ( ping 4.2.2.2 )
Check your dns configs ( cat /etc/resolv.conf )
Check that name resolution works with other DNS server (nslookup google.com 4.2.2.2)
You can use nameserver 4.2.2.2 in your /etc/resolv.conf , if you want just name resolution working aka pinging any site by name.
Share your bind named.conf, by the way, it must work out of the box as caching server.

Related Solutions

Debian – Setting up a DNS name server for a mass virtual host with Bind9

Looking at the IP addresses in your resolv.conf I get the feeling that your BIND server is on 192.168.1.52. As far as I can tell, you can't specify in resolv.conf something like "for these domains, use this name server". Basically, your BIND server will never be queried. As you can see in your dig lookup (which is incorrect, it is asking for a reverse DNS entry), it tries 80.58.0.33, which I assume is your provider's DNS server.

You already set up BIND as caching nameserver by using the 'forwarders' option, so what you need to do is have only 192.168.1.52 in the client PCs as nameserver.

To see if your BIND is configured correctly, try this:

dig example.test @192.168.1.52

Ubuntu – Configure static IPv6 on Ubuntu

Default Gateways work a bit differently on IPv6.

What I suggest you do is fire up tcpdump and watch it for Router Advertisements (you might want to analyse the capture in WireShark - much easier). This is how your IPv6 host knows how to get out to the internet. Also watch for Neighbor Solicitation as this is the replacement for ARP.

If you see these requests coming in, but not going back out, then your internal firewall is blocking IPv6 traffic. If you see them going out (requests), but not back in, then you need to make sure that your prefix length is correct (that's the /64 part. Although I've seen a lot of /64s being passed out that are actually a /48).

Big Important Bold Bit

ICMP is absolutally critical for IPv6 functionality. In IPv4 it can be blocked without huge impact, but in IPv6, the whole network relies on ICMP for all its functionality. Don't block it.

In reference to

My provider gave me a "/64" (whatever that is - I'm still confused) of IPv6 addresses

That's your Prefix Length, previously known as your Subnet Mask that's used for CIDR. The lower the number, the more IP addresses you have. For IPv6, /64 and /48 are very common and should give you more IP addresses than you will ever need in your entire life.

Best Answer

Related Solutions

Debian – Setting up a DNS name server for a mass virtual host with Bind9

Ubuntu – Configure static IPv6 on Ubuntu

Big Important Bold Bit

Related Topic