Re: dns server is attacked

2010-02-03 Thread Makara
Hi Mark, Thank you every much for you help. I can solve the problem now. On Thu, Feb 4, 2010 at 7:52 AM, Mark Andrews wrote: > > In message , > Makara writes: > > Hi, > > > > I'm dns administrator, please give me an excuse if it's not the right > place > > to ask the question. My dns server is

Re: dns server is attacked

2010-02-03 Thread Mark Andrews
In message , Makara writes: > Hi, > > I'm dns administrator, please give me an excuse if it's not the right place > to ask the question. My dns server is attacked, below are the log You are not being attacked. The zone 26.178.115.in-addr.arpa is delegated to you but you are not configured to s

dns server is attacked

2010-02-03 Thread Makara
Hi, I'm dns administrator, please give me an excuse if it's not the right place to ask the question. My dns server is attacked, below are the log Feb 4 06:26:29 ns01 named[7791]: client 204.194.238.15#42502: query (cache) '118.26.178.115.in-addr.arpa/PTR/IN' denied Feb 4 06:26:29 ns01 named[779

BIND 9.6.2 Release Candidate 1 is now available.

2010-02-03 Thread Mark Andrews
BIND 9.6.2 Release Candidate 1 is now available. BIND 9.6.2rc1 is a maintenance release candidate for BIND 9.6. BIND 9.6.2rc1 can be downloaded from ftp://ftp.isc.org/isc/bind9/9.6.2rc1/bind-9.6.2rc1.tar.gz The PGP signature of the distribution is at ft

RE: Host/nslookup/dig queries wrong server

2010-02-03 Thread Duncan Berriman
Now filed as bug 561299 Whats the easiest way to upgrade/downgrade bind and bind utils on Fedora and Centos? Thanks Duncan > -Original Message- > From: Lightner, Jeff [mailto:jlight...@water.com] > Sent: 03 February 2010 15:59 > To: Duncan Berriman; bind-users@lists.isc.org > Subject: R

RE: Host/nslookup/dig queries wrong server

2010-02-03 Thread Lightner, Jeff
You might want to file a bug report with RedHat. I just looked through the notifications I got last year from RedHat regarding various bug and security updates to the bind packages and none of them mention this change. Can others on the list verify the default (non-RedHat) bind-utils package's ho

RE: Host/nslookup/dig queries wrong server

2010-02-03 Thread Duncan Berriman
Whats odd is FC8,9 and 11 are ok. 10 uses 9.5.1 Centos uses 9.3.6 It appears therefore that Redhat are somehow causing the issue when building certain versions. Thanks for your help proving what it is at least I can look at upgrading or downgrading to solve the issue. > -Original Message-

RE: Host/nslookup/dig queries wrong server

2010-02-03 Thread Lightner, Jeff
Interesting. On checking a CentOS5 and a RHEL5 system I found I had bind-utils-9.3.4-10.P1.el5_3.3 and running host with specifying server did what it should (what you expected). I then updated the CentOS5 to bind-utils-9.3.6-4.P1.el5_4.2 and now have the issue you're talking about so it appears

RE: Host/nslookup/dig queries wrong server

2010-02-03 Thread Duncan Berriman
Problem is I am specifying the server on the command line, it is supposed to use only that server, not randomly decide because it can't connect to that server to try any others it feels like. Even the -s option makes no difference. It should even been looking at files or dns Duncan > -O

RE: Host/nslookup/dig queries wrong server

2010-02-03 Thread Lightner, Jeff
rpm -qa |grep bind Will tell you all the BIND packages you have installed via RPM. The reason commands check resolv.conf in UNIX/Linux is typically due to how you've setup /etc/nsswitch.conf. A line is contained in it similar to the following: hosts: files dns The above line says to first

RE: Host/nslookup/dig queries wrong server

2010-02-03 Thread Duncan Berriman
# rpm -q -f `which host` bind-utils-9.3.6-4.P1.el5_4.2 Thanks Duncan > -Original Message- > From: Stephane Bortzmeyer [mailto:bortzme...@nic.fr] > Sent: 03 February 2010 13:12 > To: Duncan Berriman > Cc: 'Matus UHLAR - fantomas'; bind-users@lists.isc.org > Subject: Re: Host/nslookup/dig

Re: Host/nslookup/dig queries wrong server

2010-02-03 Thread Stephane Bortzmeyer
On Wed, Feb 03, 2010 at 11:42:19AM -, Duncan Berriman wrote a message of 75 lines which said: > How do I check which one it is? I can't see any option to tell me. which host rpm -q -f `which host` ___ bind-users mailing list bind-users@lists.isc

RE: Host/nslookup/dig queries wrong server

2010-02-03 Thread Duncan Berriman
How do I check which one it is? I can't see any option to tell me. It should be which ever one comes with Fedora 10 or Centos 5.4 and appears to be the following on Centos bind-libs-9.3.6-4.P1.el5_4.2 bind-9.3.6-4.P1.el5_4.2 bind-utils-9.3.6-4.P1.el5_4.2 bind-chroot-9.3.6-4.P1.el5_4.2 And the fo

Re: Having multiple name servers - is it really necessary

2010-02-03 Thread Matus UHLAR - fantomas
On 02.02.10 14:25, Rob Tanner wrote: > We have two registered name servers to answer internet queries. One is on > site and the other is a service of our ISP. The problem is that every once > in a while the secondary server doesn¹t successfully complete zone transfers Ha! a problem! - check why

Re: Host/nslookup/dig queries wrong server

2010-02-03 Thread Matus UHLAR - fantomas
On 03.02.10 10:07, Duncan Berriman wrote: > In certain versions of linux I have noticed that the host/nslookup and dig > command query the wrong server. > > For instance if the following command is run it should return ;; connection > timed out; no servers could be reached > > # host google.co.uk

Host/nslookup/dig queries wrong server

2010-02-03 Thread Duncan Berriman
Hi, In certain versions of linux I have noticed that the host/nslookup and dig command query the wrong server. For instance if the following command is run it should return ;; connection timed out; no servers could be reached # host google.co.uk 123.123.123.1 However on certain versions of linu