[prev in list] [next in list] [prev in thread] [next in thread] 

List:       bind9-users
Subject:    Re: not getting nslookup data in 'ls' or named-xfers from DNS server - where to next? - SOLVED, now
From:       Mark_Andrews () isc ! org
Date:       2002-05-28 2:45:52
[Download RAW message or body]


> Thanks Mark for the swift response - the bit that sparked my interest was
> your comment  "Well it works here."   - what version of 'nslookup' are you
> using?

	One from BIND 8.
 
> Aparently the version of nslookup I was using (comes with Solaris 2.6)
> doesn't support "transfer-format many-answers".   As soon as I use
> "/opt/bind9/bin/dig @lyrch.cit.gu.edu.au cit.gu.edu.au axfr" instead, it
> all works as expected. (or if I add the suggested "transfer-format
> one-answer" it works as expected with Sun's nslookup and 'ls'.)  I tried to
> use the 'nslookup' that comes with bind 9.2.0, but that says 'not
> implemented' for just about anything useful (like 'ls', and 'help').

	Nslookup generates more problems than it solves.
 
> Thanks very muchly for the help yet-again...actually, I vaguely remember
> seeing the "transfer-format one-answer" somewhere before in the doco, but
> it didn't stick, and I wasn't thinking it was a problem with the nslookup
> on Solaris!

	Sun, along with the other vendors, was slow to upgrade / apply
	patches.  This has improved lately but given you are running a
	old OS release you are seeing the results of that decision.
 
> Next question - mark suggested the rndc-confgen command, but I get the
> following output:
> 
> /opt/bind9/sbin/rndc-confgen -a -t /opt/bind9/chroot -u named
> You must use the keyboard to create entropy, since your system is lacking
> /dev/random (or equivalent)
> 
> start typing:
> ...............................
> ...........................
> ...........................
> ...........................
> ...........................
> ...........................
> ...........................
> ...........................
> stop typing.
> unable to create "/opt/bind9/etc/rndc.key"
> isc_mem_get(42) failed
> mem.c:834: INSIST(ctx->stats[i].gets == 0) failed.
> Abort (core dumped)
> 
> It's not a permissions problem - I'm running the above cmd as root, and the
> folder /opt/bind9/etc/ exists in the chrooted jail, and is writable by
> 'named' user.
> 
> It's creating a 202192 byte core file:
> > file core
> core:           ELF 32-bit MSB core file SPARC Version 1, from
> 'rndc-confgen'
> 
> what now?

	Upgrade.  BIND 9.2.1 is the current version.

1144.   [bug]           rndc-confgen would crash if both the -a and -t
                        options were specified. [RT #2159]
	Mark
> 
> David.
> 
> <snip>
> > May 27 23:38:01 lyrch named[17608]: couldn't add command channel
> > 127.0.0.1#953: not found
> 
>              Use "rndc-confgen -a -t /opt/bind9/chroot -u named".
> <snip>
> >  >   nslookup - lyrch.cit.gu.edu.au
> > > ls cit.gu.edu.au
> > [lyrch.cit.gu.edu.au]
> > >
> 
>              Well it works here.
> <snip>
> > Any ideas where to look next?
> 
>              Log files,  "transfer-format one-answer" (preferably in a
> server
>              clauses).  BIND prior to 4.9.6 did not understand
> transfer-format
>              many-answers.
> 
> 779. [bug]      named-xfer can now handle RFC1035-compliant zone transfers.
> 
>              Mark
> --
> Mark Andrews, Internet Software Consortium
> 1 Seymour St., Dundas Valley, NSW 2117, Australia
> PHONE: +61 2 9871 4742                 INTERNET: Mark.Andrews@isc.org
--
Mark Andrews, Internet Software Consortium
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: Mark.Andrews@isc.org

[prev in list] [next in list] [prev in thread] [next in thread]