The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Cpanel DNS not working

Discussion in 'Bind / DNS / Nameserver Issues' started by rjst, Sep 15, 2007.

  1. rjst

    rjst Registered

    Joined:
    Sep 15, 2007
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    Hi

    I've just set up a new cPanel install on a clean FC6 installation, and I'm having some serious issues with dns. Basically, no matter what I do, I can't get the server to provide a response to ANY queries. Note the "status: refused" in the DNS response. I've checked that the entries do exist in the bind files on the server, and best I can tell everything is set up on the server. Anyone know what's going on here?

    Thanks in advance
    -Richard

    ~# dig domain.com @123.45.67.89

    ; <<>> DiG 9.3.4 <<>> domain.com @123.45.67.89
    ; (1 server found)
    ;; global options: printcmd
    ;; Got answer:
    ;; ->>HEADER<<- opcode: QUERY, status: REFUSED, id: 45263
    ;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

    ;; QUESTION SECTION:
    ;domain.com. IN A

    ;; Query time: 1 msec
    ;; SERVER: 123.45.67.89#53(202.60.90.34)
    ;; WHEN: Sun Sep 16 00:41:42 2007
    ;; MSG SIZE rcvd: 31

    ~#
     
  2. ToddShipway

    ToddShipway Well-Known Member

    Joined:
    Nov 13, 2006
    Messages:
    300
    Likes Received:
    1
    Trophy Points:
    18
    Location:
    Houston, TX
    Be sure to check the external view ACL in /etc/named.conf.

    Try changing it from:

    Code:
        match-clients        { !localnets; !localhost; };
        match-destinations    { !localnets; !localhost; };
    
    To:

    Code:
        match-clients        { any; };
        match-destinations    { any; };
    
    Then restart named '/etc/init.d/named restart'
     
  3. rjst

    rjst Registered

    Joined:
    Sep 15, 2007
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    Thanks, worked great.

    Just a quick question tho, why is it not like that by default and not mentioned in any of the documentation I could find?
     
  4. ToddShipway

    ToddShipway Well-Known Member

    Joined:
    Nov 13, 2006
    Messages:
    300
    Likes Received:
    1
    Trophy Points:
    18
    Location:
    Houston, TX
    It actually seems to be a problem with the way named matches acl's. The default works, but in some cases the external view doesn't match !localnets and !localhost the way they documented it and the external view needs reset to 'any' in order for the external view to work properly.
     
  5. LinuxJuggalo

    LinuxJuggalo Registered

    Joined:
    Sep 17, 2007
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    1
    hey I have the same problem and I did what cPanelTodd said but I now have this problem:

    Code:
    [root@madrox etc]# /etc/init.d/named restart
    Stopping named:                                            [FAILED]
    Starting named: 
    Error in named configuration:
    zone localdomain/IN: loaded serial 42
    zone localhost/IN: loaded serial 42
    zone 0.0.127.in-addr.arpa/IN: loaded serial 1997022700
    zone 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 1997022700
    zone 255.in-addr.arpa/IN: loaded serial 42
    zone 0.in-addr.arpa/IN: loaded serial 42
    zone psychopathichosting.com/IN: has no NS records
    internal/psychopathichosting.com/IN: bad zone
    zone madrox.psychopathixhosting.com/IN: has no NS records
    internal/madrox.psychopathixhosting.com/IN: bad zone
    zone staticfury.org/IN: loaded serial 2007091701
    zone trilogyirc.org/IN: loaded serial 2007091701
    zone psychopathichosting.com/IN: has no NS records
    external/psychopathichosting.com/IN: bad zone
    zone madrox.psychopathixhosting.com/IN: has no NS records
    external/madrox.psychopathixhosting.com/IN: bad zone
    zone staticfury.org/IN: loaded serial 2007091701
    zone trilogyirc.org/IN: loaded serial 2007091701
                                                               [FAILED]
    [root@madrox etc]# 
    
    and now nothing for DNS works, any solution to this? I am using RHEL5 plz help me ASAP :(
     
  6. ToddShipway

    ToddShipway Well-Known Member

    Joined:
    Nov 13, 2006
    Messages:
    300
    Likes Received:
    1
    Trophy Points:
    18
    Location:
    Houston, TX
    This is due to the error below:

    zone psychopathichosting.com/IN: has no NS records

    Add NS records to this zone, you can look at one of the other zones on the server to get an idea how the NS record should be configured.
     
  7. security

    security Member

    Joined:
    Aug 18, 2006
    Messages:
    17
    Likes Received:
    0
    Trophy Points:
    1
    Hello
    i do have the same problem in 2 of my servers
    and that appeared after upgrading to the last relase of cpanel

    digging any domain dose not return proper result

    and i have checked /etc/named.conf and could not find what you have post above..!
     
  8. ToddShipway

    ToddShipway Well-Known Member

    Joined:
    Nov 13, 2006
    Messages:
    300
    Likes Received:
    1
    Trophy Points:
    18
    Location:
    Houston, TX
    Backup the current named.conf

    Code:
    mv /etc/named.conf /etc/named.conf.bak
    Rebuild named.conf

    Code:
    /scripts/rebuildnamedconf
    Then you should have the information above and domains should begin working properly.
     
  9. LinuxJuggalo

    LinuxJuggalo Registered

    Joined:
    Sep 17, 2007
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    1
    the NS entry did not want to work at first so I deleted the whole entry for the domain then did /etc/init.d/named restart and it worked, now I added the domain entry again and everything works great so far!

    thanks a lot :)
     
  10. security

    security Member

    Joined:
    Aug 18, 2006
    Messages:
    17
    Likes Received:
    0
    Trophy Points:
    1
    i have done this and also replace loaclhost by any and restarted named and the problem still!
     
  11. ToddShipway

    ToddShipway Well-Known Member

    Joined:
    Nov 13, 2006
    Messages:
    300
    Likes Received:
    1
    Trophy Points:
    18
    Location:
    Houston, TX
Loading...

Share This Page