1:error (network unreachable) resolving 'dlv.isc.org/DNSKEY/IN': 2001:4f8:1:2::20#53
类似这样的报错是由于开启了IPV6,关闭BIND IPV6解析请求即可文 章 源 自 note.t4x.orgByrd's Blog-https://note.t4x.org/system/bind-dns-problems/
方法:
①:[root@localhost etc]# vi /etc/sysconfig/named
增加一行OPTIONS="-4"
②:在named.conf中注释掉
|
0 1 2 |
options { listen-on port 53 { any; }; // listen-on-v6 port 53 { ::1; }; #用//或者#注销掉这行,或者直接删除。 |
③:如果是自己编译的可以
|
0 1 |
/usr/local/named/sbin/named -c /usr/local/named/etc/named.conf -4u named c表示conffile,4表示只使用ipv 4 协议,u表示用户 |
2:error (broken trust chain) resolving 'baidu.com.dlv.isc.org/DLV/IN': 199.254.63.254#53文 章 源 自 note.t4x.orgByrd's Blog-https://note.t4x.org/system/bind-dns-problems/
类似这样的错误,可能是本地时间问题,也可能是named.conf的权限问题文 章 源 自 note.t4x.orgByrd's Blog-https://note.t4x.org/system/bind-dns-problems/
方法:
①:如果是时间问题,[root@localhost etc]# date -s 14:54:00 [这个是百度上其他博客写到的]
②:有人说注释掉named.conf也可以? [这个也是百度上别人提到的]
|
0 1 2 |
// dnssec-enable yes; // dnssec-validation yes; // dnssec-lookaside auto; |
③:如果是权限问题,修改named.conf的所有用户为named 命令是[root@localhost etc]# chown named named.conf 文 章 源 自 note.t4x.orgByrd's Blog-https://note.t4x.org/system/bind-dns-problems/
我使用的方法是修正named.conf的权限,即正常。文 章 源 自 note.t4x.orgByrd's Blog-https://note.t4x.org/system/bind-dns-problems/
3:validating @0xb4771558: . DNSKEY: please check the 'trusted-keys' for '.' in named.conf.
OR
error (no valid KEY) resolving 'dlv.isc.org/DNSKEY/IN': 199.254.63.254#53文 章 源 自 note.t4x.orgByrd's Blog-https://note.t4x.org/system/bind-dns-problems/
类似这个错误,请参考修正named.conf的权限。文 章 源 自 note.t4x.orgByrd's Blog-https://note.t4x.org/system/bind-dns-problems/
4:Can't find server name, Non-existent domain文 章 源 自 note.t4x.orgByrd's Blog-https://note.t4x.org/system/bind-dns-problems/
遇到这个问题,可能是由于没有设置好正反向,参考:Non-existent domain解决方法文 章 源 自 note.t4x.orgByrd's Blog-https://note.t4x.org/system/bind-dns-problems/
5:在配置完成辅助DNS后,修改、删除A记录等无法同步到辅助dns
辅助DNS中之前的配置是:
[root@localhost data]# vi /etc/named.rfc1912.zones
|
0 1 2 3 4 5 6 7 8 9 10 11 12 13 |
$TTL 600 @ IN SOA ns.a.com admin.a.com. ( 0 ; serial 1D ; refresh 1H ; retry 1W ; expire 3H ) ; minimum IN NS ns IN A 192.168.1.250 IN AAAA ::1 www IN A 192.168.1.191 ns IN A 192.168.1.250 ns1 IN A 192.168.1.251 qwer IN A 4.3.2.1 |
6:rndc.key was found
|
0 |
[root@Master etc]# rndc-confgen -r /dev/urandom -a |
7:refresh: failure trying master x.x.x.x#53 (source x.x.x.x#0): tsig indicates error
A:检查key,是否匹配一致。
B:查看match-clients
8:Required token %zone% not found.
|
0 1 2 |
else data end from dns_records where zone = '$zone$' and host = '$record$' and (view = 'CTCC' or view = 'DF')} else data end from dns_records where zone = '%zone%' and host = '%record%' and (view = 'CTCC' or view = 'DF')} |
9:journal rollforward failed: journal out of sync with zone #活动zone导致
|
0 1 |
[root@ns1 named]# find / -name "*.jnl" -exec rm -f {} \; [root@ns1 named]# /etc/init.d/named restart |
10:the working directory is not writable
|
0 |
10::refused notify from non-master
|
0 |
allow-notify { 1.1.1.X; };没有配置或者master没有启动 |
11:query (cache) ‘domain/MX/IN’ denied
|
0 1 |
1:检查recursion yes;是否正确 2:尝试增加allow-query-cache { any; }; |
0 ; serial 0 是序列号,需要手工增加数字,改成1或者更大,系统才会更新相关信息,一般默认设置为年月日序列号(YYMMDDXX)格式。
申明:本文由BYRD原创(基于Centos6.4 X64),未经许可禁止转载!
申明:除非注明Byrd's Blog内容均为原创,未经许可禁止转载!详情请阅读版权申明!
