[lug] DNS for virtual domain

Michael Deck deckm at cleansoft.com
Fri Aug 29 10:48:24 MDT 2003 

I'm running several virtual domains on a single host machine, and I'm 
having trouble reaching some of those domains from some remote hosts. Not 
all, just some, but the host that can't reach me is my main client :( 
Worse, I have several virtual hosts set up AFAICT identically, some of them 
work and some of them don't. Could someone have a look at the enclosed DNS 
files and let me know if I'm doing something terribly wrong? I'm running 
BIND-9.2.1. Here is a lot of data describing my files.

In addition to replying to the list, if you could copy 
"president at eastboulderwater.com", I'd appreciate it. It may be your host 
won't get through to my virtual domain either :)

-Mike

First, I have a file db.cleansoft_net which defines ns1.cleansoft.net and 
ns2.cleansoft.net. This host is the only "non-virtual" host.

 >>>>>>>>>>>>>
cleansoft.net.  IN SOA  ns1.cleansoft.net. postmaster.cleansoft.net. (
                                 1       ; Serial
                                 10800   ; Refresh after 3 hours
                                 3600    ; Retry after 1 hour
                                 604800  ; Expire after 1 week
                                 86400   ; Minimum TTL of 1 day
)

cleansoft.net.  IN NS   ns1.cleansoft.net.
cleansoft.net.  IN NS   ns2.cleansoft.net.

;
; Host addresses
;

localhost.cleansoft.net.        IN A    127.0.0.1
www.cleansoft.net.              IN A    198.49.126.108
ssh.cleansoft.net.              IN A    198.49.126.108
ftp.cleansoft.net.              IN A    198.49.126.108
mail.cleansoft.net.             IN A    198.49.126.108
ns1.cleansoft.net.              IN A    198.49.126.108
ns2.cleansoft.net.              IN A    198.49.126.108
cleansoft.net.                  IN A    198.49.126.108
<<<<<<<<<<<<<<

Then, I have a file for my virtual domain cleansoft.com, called 
db.cleansoft_com.

 >>>>>>>>>>>>>>
cleansoft.com.  IN SOA  ns1.cleansoft.com. postmaster.cleansoft.com. (

                                 1       ; Serial
                                 10800   ; Refresh after 3 hours
                                 3600    ; Retry after 1 hour
                                 604800  ; Expire after 1 week
                                 86400   ; Minimum TTL of 1 day
)

cleansoft.com.  IN NS   ns1.cleansoft.com.
cleansoft.com.  IN NS   ns2.cleansoft.com.

;
; Host addresses
;

localhost.cleansoft.com.        IN A    127.0.0.1
www.cleansoft.com.              IN A    198.49.126.108
cleansoft.com.                  IN A    198.49.126.108
mail.cleansoft.com.             IN A    198.49.126.108
ns1.cleansoft.com.              IN A    198.49.126.108
ns2.cleansoft.com.              IN A    198.49.126.108
cleansoft.com.                  IN MX   0 mail.cleansoft.com

<<<<<<<<<<<<<<

One thing I can't figure out from the DNS & BIND book is whether the SOA 
record should refer to ns1.cleansoft.com or ns1.cleansoft.net, and whether 
it matters.

Both of these files are referenced from /etc/named.conf.

 >>>>>>>>>>>>>>>>>
zone "cleansoft.net" in {
         type master;
         file "db.cleansoft_net";
};

zone "cleansoft.com" in {
         type master;
         file "db.cleansoft_com";
};
<<<<<<<<<<<<<<<<<<

There are no messages from named start.

After setting all of this up, I changed my registrar's name servers so that 
cleansoft.com points to ns1.cleansoft.net and ns2.cleansoft.net. This took 
effect yesterday, at which point my problems started.

I can ping www.cleansoft.com from some remote machines, not others. Here is 
some possibly relevant output from dig.

 > dig cleansoft.com

; <<>> DiG 9.2.1 <<>> cleansoft.com
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 50749
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 0

;; QUESTION SECTION:
;cleansoft.com.                 IN      A

;; ANSWER SECTION:
cleansoft.com.          20181   IN      A       198.49.126.108

;; AUTHORITY SECTION:
cleansoft.com.          20181   IN      NS      ns2.cleansoft.com.
cleansoft.com.          20181   IN      NS      ns1.cleansoft.com.

;; Query time: 3 msec
;; SERVER: 137.78.160.9#53(137.78.160.9)
;; WHEN: Fri Aug 29 09:45:40 2003
;; MSG SIZE  rcvd: 83

 > dig @cleansoft.com www.cleansoft.com

; <<>> DiG 9.2.1 <<>> @cleansoft.com www.cleansoft.com
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 22417
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2

;; QUESTION SECTION:
;www.cleansoft.com.             IN      A

;; ANSWER SECTION:
www.cleansoft.com.      86400   IN      A       198.49.126.108

;; AUTHORITY SECTION:
cleansoft.com.          86400   IN      NS      ns1.cleansoft.com.
cleansoft.com.          86400   IN      NS      ns2.cleansoft.com.

;; ADDITIONAL SECTION:
ns1.cleansoft.com.      86400   IN      A       198.49.126.108
ns2.cleansoft.com.      86400   IN      A       198.49.126.108

;; Query time: 761 msec
;; SERVER: 198.49.126.108#53(cleansoft.com)
;; WHEN: Fri Aug 29 09:47:38 2003
;; MSG SIZE  rcvd: 119

 >dig www.cleansoft.com

... times out.






Michael Deck
Cleanroom Software Engineering, Inc.

More information about the LUG mailing list