Question

Problem with Recursive Queries

  • Posted September 7, 2014

Hi,

When I test my domain of through www.intodns.com , I see mistake like this Look for this Picture

I follow this tutorial : https://www.digitalocean.com/community/tutorials/how-to-configure-bind-as-a-caching-or-forwarding-dns-server-on-ubuntu-14-04

But still there same problem.

Subscribe
Share

Submit an answer
You can type!ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

I do this test

root@…:/etc/bind# dig @192.168.10.115 google.com

; <<>> DiG 9.9.5-3-Ubuntu <<>> @192.168.10.115 google.com ; (1 server found) ;; global options: +cmd ;; connection timed out; no servers could be reached root@…:/etc/bind# dig @104.131.229.65 pvttwt.com

; <<>> DiG 9.9.5-3-Ubuntu <<>> @104.131.229.65 pvttwt.com ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 56180 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 2

;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;pvttwt.com. IN A

;; ANSWER SECTION: pvttwt.com. 604800 IN A 104.131.229.65

;; AUTHORITY SECTION: pvttwt.com. 604800 IN NS ns.pvttwt.com.

;; ADDITIONAL SECTION: ns.pvttwt.com. 604800 IN A 104.131.229.65

;; Query time: 2 msec ;; SERVER: 104.131.229.65#53(104.131.229.65) ;; WHEN: Mon Sep 08 22:57:46 EDT 2014 ;; MSG SIZE rcvd: 88

Everything work well with this setting ( All tests was successful ) , but I still see this error message " http://i.imgur.com/dd2l1BE.png "

In " named.conf.options " acl goodclients{ My IP; localhost; localnets; }; options { directory “/var/cache/bind”; recursion yes; allow-query { goodclients; };

     forwarders {
            8.8.8.8;
            8.8.4.4;
     };
    forward only;

    dnssec-enable yes;
    dnssec-validation yes;

    auth-nxdomain no;    # conform to RFC1035
    listen-on-v6 { any; };

};

In " named.conf.local " #mydomain zone “mydomain.com” { type master; file “/etc/bind/db.domain”; };

192.2.1.0 zone “1.2.192.in-addr.arpa” { type master; file “/etc/bind/db.192”; };

Have a look on this guide, should help you solve the problem The key is to disable recursion globally, and define views for external and internal hosts where recursion would be allowed only internally

http://www.team-cymru.org/Services/Resolvers/instructions.html