12
votes
Accepted
Why doesn't systemd-resolved use my local DNS server?
So, changing my wired eth0 interface to be managed solved this issue for me.
Changing ifupdown to managed=true in /etc/NetworkManager/NetworkManager.conf
[ifupdown]
managed=true
Then restart ...
- 419
11
votes
Accepted
Chicken and egg problem with NTP and Bind
Raspberry Pis don't have a (battery-backed) real-time clock, so they will forget about the current time after being powered down. While you can deal with that in the old school way and enter the time ...
- 148k
10
votes
Why doesn't systemd-resolved use my local DNS server?
My guess is that your systemd-resolved service is configured correctly, but it never gets to see the request. The .local domain is treated specially by systems running mDNS. avahi-daemon, which ...
- 4,207
9
votes
Accepted
Free Up Port 53 on Ubuntu so custom DNS server can use it
How to stop systemd-resolved from using port 53 on Ubuntu
You can find a nifty tutorial in the link above. Below I'll note what's in the tutorial for visibility.
As root, edit the /etc/systemd/...
- 106
6
votes
Accepted
BIND file serials - unique to all zones or to self only?
He is completely and utterly wrong. The serial number is part of the zone; it is no more unique between separate zones than any other record.
RFC 1035, section 5, states this clearly:
SERIAL ...
- 13.3k
6
votes
DNS query response logging
There are no provisions in BIND to log answers for queries at all with the logging directive.
Furthermore, aside privacy considerations, it can be more efficient for the DNS service to log them ...
- 58k
6
votes
DNS Lookup on server with multiple IPs
You have to use what's called a Split Horizon or Split View DNS.
https://en.wikipedia.org/wiki/Split-horizon_DNS
Not all servers support this. You might have to use ISC BIND in order to accomplish ...
- 3,333
6
votes
Free Up Port 53 on Ubuntu so custom DNS server can use it
sudo systemctl disable systemd-resolved
sudo systemctl stop systemd-resolved
- 61
5
votes
tcsh bindkey to turn on readline variable `visible-stats`
readline is a library that is used by bash and some other software, but not by tcsh. For historical reasons, tcsh has its own implementation of readline-like functionality, whose feature set does not ...
- 114k
5
votes
Accepted
named[862]: resolver priming query complete: every 20 seconds
This is a known (and fixed in later versions) bug in bind9: https://gitlab.isc.org/isc-projects/bind9/issues/752
Note that bind9 9.11 continues to be supported as the long-term support branch, the ...
- 113k
5
votes
Accepted
BIND Reverse DNS Ignoring out-of-zone data
You have created the zone '0.142.10.in-addr.arpa', so you have to check that one:
named-checkzone 0.142.10.in-addr.arpa /var/named/zones/0.142.10.in-addr.arpa.db
- 96
5
votes
How to get dig without bind
You can install the dnsutils package containing dig or nslookup, and leave alone the bind9 package containing the BIND daemon which you do not need. (Thanks to @telcoM for adding this info in a ...
- 32.4k
4
votes
How to bind mount from a symlink
Unfortunately, what you want can't be done due to the fundamental principles of mounts.
Calling "mount A B" takes the directory "A" and attaches it into the in-kernel directory hierarchy in place of "...
- 2,828
4
votes
Accepted
How to reformat named.conf's zone blocks into single lines?
Open up the file in Vim (or just vi) and type:
:g/^zone/.,/^}/j
Voila, you're done.
This runs globally, on every line beginning with zone, the command:
.,/^}/j
Which means, from the current line (.) ...
- 37.5k
4
votes
Chicken and egg problem with NTP and Bind
To avoid these situations, I include an NTP source in chrony/ntpd using a hard-coded IP address. This could be:
an NTP server on your LAN that already has a battery backed RTC
an NTP server of Google/...
- 41
4
votes
Accepted
Caching-only bind9, connecting exclusively by tcp outward
I think what you're looking for is:
# cat << \EOF >> named.conf
server 0.0.0.0/0 {
tcp-only true;
};
server ::/0 {
tcp-only true;
};
EOF
and then restart named.
That tells bind ...
- 8,785
3
votes
bind 9.9.4 rndc: connection to remote host closed
Solution:
If named cannot find the rndckey in /etc/rndc.key, it will report the error 'rndc: connection to remote host closed'.
When using rndc-confgen -a to create a new rndc key, the new key will ...
- 1,672
3
votes
Accepted
Bind9 dynamic zone updates are denied by apparmor in Debian11
The log message (wrapped for readability)
Jul 18 19:22:52 NS kernel: [12161.968582] audit: type=1400 audit(1658164972.109:107): \
apparmor="DENIED" operation="open" profile=&...
- 114k
3
votes
Chicken and egg problem with NTP and Bind
So I set the time right using the date command :
sudo date -s '2023-06-23 10:39:20'
And everything went back to normal.
I posted it here because it was a weird problem.
Hope this helps someone, ...
- 213
3
votes
Chicken and egg problem with NTP and Bind
The classical UNIX approach is to use ntpdate very early in the boot process to set the date from a server that has been pushed by DHCP, then start the ntpd process after the system has been fully ...
3
votes
Map Alt-c to Ctrl-u
You should use bind to bind a key to a readline function. bind -p lists all the current bindings, and should include:
"\C-u": unix-line-discard
so if you want to call that same function, ...
- 54.7k
3
votes
BIND9 refusing DNS queries
(mostly comment - but space and formatting limited)
admin@vm-server:~$ dig @127.0.0.1 example.com
; <<>> DiG 9.18.28-1~deb12u2-Debian <<>> @127.0.0.1 example.com
; (1 server ...
- 6,339
3
votes
Public DNS Record local override using BIND9 CNAME
I suspect your BIND configuration is ineffective because your /etc/resolv.conf includes two other unrelated DNS servers (1.1.1.1 and 8.8.8.8).
Do not rely on resolv.conf being used strictly top-down. ...
- 15.5k
2
votes
How to increment serial number in bind9 dns zone
i decided to use unix time for serial
- name: "{{ role_path|basename }} | get unix time"
shell: echo $(date +%s)
register: unix_time_stamp
delegate_to: localhost
run_once: true
become: no
...
- 533
2
votes
Bind9 -- How to find which programs are making which dns lookups?
if you have a likely suspect program, strace it for recvfrom and sendto syscalls. for example, I was getting thousands of lookups for radheengineering.info and, though nothing in exim4's logs showed ...
- 485
2
votes
When to use BIND vs internal DNS for Samba 4 backend
These are the limitations from Samba's wiki on internal backend:
The internal DNS does not support:
acting as a caching resolver
recursive queries
shared-key transaction signature (TSIG)
...
- 138
2
votes
Resolving hostname takes 5 seconds
I had a similar issue while using BIND9. To fix this I needed to add:
filter-aaaa-on-v4 yes;
option to my named.conf.
(More information)
- 21
2
votes
Accepted
syntax error /etc/named.conf
Take out the dots. Instead of:
zone "190.168.172.in-addr.arpa." IN {
type master;
file "172.168.190.rev.zone";
allow-update { none; };
};
zone "0.0.127.in-addr.arpa." IN {
...
- 58k
2
votes
Accepted
traceroute have error bind: Cannot assign requested address
You need to type traceroute -s with addresses which directly assign to any interfaces on your server.
You can type any of this addresses from your output of ip a:
192.168.111.xyz
192.168.111.xyzz
...
- 2,583
Only top scored, non community-wiki answers of a minimum length are eligible