rbach
15.09.06, 11:08
hallo,
ich habe in einen kleinen privaten netzwerk auf einen SuSe 10.1 rechner einen dhcp-server (version 3.0.3-21, bei suse 10.1 enthalten) und einen dns server (bind version 9.3.2-17, bei suse 10.1 enthalten) installiert und konfiguriert.
beide funktionieren, aber das updaten des dns servers durch den dhcp server macht Probleme.
laut log file müsste es sich um ein rechte problem handeln.
hier sind die config-files und das log-file.
auszug aus /var/log/messages:
Sep 15 11:16:33 andreas named[24373]: starting BIND 9.3.2 -t /var/lib/named -u named
Sep 15 11:16:33 andreas named[24373]: found 1 CPU, using 1 worker thread
Sep 15 11:16:33 andreas named[24373]: loading configuration from '/etc/named.conf'
Sep 15 11:16:33 andreas named[24373]: listening on IPv6 interfaces, port 53
Sep 15 11:16:33 andreas named[24373]: listening on IPv4 interface lo, 127.0.0.1#53
Sep 15 11:16:33 andreas named[24373]: listening on IPv4 interface eth0, 192.168.111.1#53
Sep 15 11:16:33 andreas named[24373]: command channel listening on 127.0.0.1#953
Sep 15 11:16:33 andreas named[24373]: command channel listening on ::1#953
Sep 15 11:16:33 andreas named[24373]: zone 0.0.127.in-addr.arpa/IN: loaded serial 42
Sep 15 11:16:33 andreas named[24373]: zone 111.168.192.in-addr.arpa/IN: has no NS records
Sep 15 11:16:33 andreas named[24373]: zone test-lokal.com/IN: loaded serial 2006091404
Sep 15 11:16:33 andreas named[24373]: zone localhost/IN: loaded serial 42
Sep 15 11:16:33 andreas named[24373]: running
Sep 15 11:16:46 andreas named[24373]: client 192.168.111.1#32870: updating zone 'test-lokal.com/IN': adding an RR at 'thinkpad-2.test-lokal.com' A
Sep 15 11:16:46 andreas named[24373]: client 192.168.111.1#32870: updating zone 'test-lokal.com/IN': adding an RR at 'thinkpad-2.test-lokal.com' TXT
Sep 15 11:16:46 andreas named[24373]: journal file master/test-lokal.com.jnl does not exist, creating it
Sep 15 11:16:46 andreas named[24373]: master/test-lokal.com.jnl: create: permission denied
Sep 15 11:16:46 andreas named[24373]: client 192.168.111.1#32870: updating zone 'test-lokal.com/IN': error: journal open failed: unexpected error
Sep 15 11:16:46 andreas dhcpd: Unable to add forward map from thinkpad-2.test-lokal.com to 192.168.111.188: timed out
Sep 15 11:16:46 andreas dhcpd: DHCPREQUEST for 192.168.111.188 from 00:03:47:b9:41:10 (thinkpad-2) via eth0
Sep 15 11:16:46 andreas dhcpd: DHCPACK on 192.168.111.188 to 00:03:47:b9:41:10 (thinkpad-2) via eth0
/etc/dhcp.conf
option domain-name "test-lokal.com";
option netbios-node-type 8;
option netbios-name-servers 192.168.111.101, 192.168.111.106;
option domain-name-servers 192.168.111.1; #192.168.111.106, 192.168.111.101;
option ntp-servers 192.168.111.6;
option routers 192.168.111.1;
#dhcp interface (SuSe)
DHCPD_INTERFACE="eth0";
#dns-server updates
ddns-update-style interim;
ddns-domainname "test-lokal.com";
update-static-leases true;
#ddns-update on;
key dhcp_updater {
algorithm HMAC-MD5.SIG-ALG.REG.INT;
secret EU+q+t2wqRsY3b11nNVAAg==;
};
zone test-lokal.com. {
primary 192.168.111.1;
key dhcp_updater;
}
zone 111.168.192.in-addr.arpa. {
primary 192.168.111.1;
key dhcp_updater;
}
#netz einstellungen
subnet 192.168.111.0 netmask 255.255.255.0 {
range 192.168.111.20 192.168.111.80;
range 192.168.111.150 192.168.111.190;
default-lease-time 14400;
max-lease-time 172800;
}
/etc/named.conf
# Copyright (c) 2001-2004 SuSE Linux AG, Nuernberg, Germany.
# All rights reserved.
#
# Author: Frank Bodammer, Lars Mueller <lmuelle@suse.de>
#
# /etc/named.conf
#
# This is a sample configuration file for the name server BIND 9. It works as
# a caching only name server without modification.
#
# A sample configuration for setting up your own domain can be found in
# /usr/share/doc/packages/bind/sample-config.
#
# A description of all available options can be found in
# /usr/share/doc/packages/bind/misc/options.
options {
# The directory statement defines the name server's working directory
directory "/var/lib/named";
# Write dump and statistics file to the log subdirectory. The
# pathenames are relative to the chroot jail.
dump-file "/var/log/named_dump.db";
statistics-file "/var/log/named.stats";
# The forwarders record contains a list of servers to which queries
# should be forwarded. Enable this line and modify the IP address to
# your provider's name server. Up to three servers may be listed.
#forwarders { 192.0.2.1; 192.0.2.2; };
# Enable the next entry to prefer usage of the name server declared in
# the forwarders section.
#forward first;
# The listen-on record contains a list of local network interfaces to
# listen on. Optionally the port can be specified. Default is to
# listen on all interfaces found on your system. The default port is
# 53.
#listen-on port 53 { 127.0.0.1; };
# The listen-on-v6 record enables or disables listening on IPv6
# interfaces. Allowed values are 'any' and 'none' or a list of
# addresses.
listen-on-v6 { any; };
# The next three statements may be needed if a firewall stands between
# the local server and the internet.
#query-source address * port 53;
#transfer-source * port 53;
#notify-source * port 53;
# The allow-query record contains a list of networks or IP addresses
# to accept and deny queries from. The default is to allow queries
# from all hosts.
#allow-query { 127.0.0.1; };
# If notify is set to yes (default), notify messages are sent to other
# name servers when the the zone data is changed. Instead of setting
# a global 'notify' statement in the 'options' section, a separate
# 'notify' can be added to each zone definition.
notify no;
include "/etc/named.d/forwarders.conf";
};
# To configure named's logging remove the leading '#' characters of the
# following examples.
#logging {
# # Log queries to a file limited to a size of 100 MB.
# channel query_logging {
# file "/var/log/named_querylog"
# versions 3 size 100M;
# print-time yes; // timestamp log entries
# };
# category queries {
# query_logging;
# };
#
# # Or log this kind alternatively to syslog.
# channel syslog_queries {
# syslog user;
# severity info;
# };
# category queries { syslog_queries; };
#
# # Log general name server errors to syslog.
# channel syslog_errors {
# syslog user;
# severity error;
# };
# category default { syslog_errors; };
#
# # Don't log lame server messages.
# category lame-servers { null; };
#};
# The following zone definitions don't need any modification. The first one
# is the definition of the root name servers. The second one defines
# localhost while the third defines the reverse lookup for localhost.
zone "." in {
type hint;
file "root.hint";
};
zone "localhost" in {
type master;
file "localhost.zone";
};
zone "0.0.127.in-addr.arpa" in {
type master;
file "127.0.0.zone";
};
# Include the meta include file generated by createNamedConfInclude. This
# includes all files as configured in NAMED_CONF_INCLUDE_FILES from
# /etc/sysconfig/named
include "/etc/named.conf.include";
key dhcp_updater {
algorithm HMAC-MD5.SIG-ALG.REG.INT;
secret EU+q+t2wqRsY3b11nNVAAg==;
};
zone "test-lokal.com" in {
file "master/test-lokal.com";
type master;
allow-update { key dhcp_updater; };
allow-transfer { any; };
};
#logging {
# category default { log_syslog; };
# channel log_syslog { syslog; };
#};
zone "111.168.192.in-addr.arpa" in {
file "master/111.168.192.in-addr.arpa";
type master;
allow-update { key dhcp_updater; };
};
# You can insert further zone records for your own domains below or create
# single files in /etc/named.d/ and add the file names to
# NAMED_CONF_INCLUDE_FILES.
# See /usr/share/doc/packages/bind/README.SUSE for more details.
zone test-lokal.com
$TTL 2d
@ IN SOA andreas.test-lokal.com. root.andreas.test-lokal.com. (
2006091404
3h
1h
1w
1d )
test-lokal.com. IN NS andreas.test-lokal.com.
test-lokal.com. IN MX 10 mail.test-lokal.com.
testrechner IN A 192.168.111.10
testrechner2 IN A 192.168.111.11
andreas IN A 192.168.111.1
zone 111.168.192.in-addr.arpa
$TTL 2d
@ IN SOA andreas.test-lokal.com. root.andreas.test-lokal.com. (
2006091406
3h
1h
1w
1d )
111.111.168.192.in-addr.arpa IN NS andreas.test-lokal.com.
111 IN NS andreas.test-lokal.com.
10 IN PTR testrechner.test-lokal.com.
11 IN PTR testrechner2.test-lokal.com.
ich hoffe jemand kann mir weiterhelfen.
herzlichen dank schonmal im voraus.
mfg,
rbach
ich habe in einen kleinen privaten netzwerk auf einen SuSe 10.1 rechner einen dhcp-server (version 3.0.3-21, bei suse 10.1 enthalten) und einen dns server (bind version 9.3.2-17, bei suse 10.1 enthalten) installiert und konfiguriert.
beide funktionieren, aber das updaten des dns servers durch den dhcp server macht Probleme.
laut log file müsste es sich um ein rechte problem handeln.
hier sind die config-files und das log-file.
auszug aus /var/log/messages:
Sep 15 11:16:33 andreas named[24373]: starting BIND 9.3.2 -t /var/lib/named -u named
Sep 15 11:16:33 andreas named[24373]: found 1 CPU, using 1 worker thread
Sep 15 11:16:33 andreas named[24373]: loading configuration from '/etc/named.conf'
Sep 15 11:16:33 andreas named[24373]: listening on IPv6 interfaces, port 53
Sep 15 11:16:33 andreas named[24373]: listening on IPv4 interface lo, 127.0.0.1#53
Sep 15 11:16:33 andreas named[24373]: listening on IPv4 interface eth0, 192.168.111.1#53
Sep 15 11:16:33 andreas named[24373]: command channel listening on 127.0.0.1#953
Sep 15 11:16:33 andreas named[24373]: command channel listening on ::1#953
Sep 15 11:16:33 andreas named[24373]: zone 0.0.127.in-addr.arpa/IN: loaded serial 42
Sep 15 11:16:33 andreas named[24373]: zone 111.168.192.in-addr.arpa/IN: has no NS records
Sep 15 11:16:33 andreas named[24373]: zone test-lokal.com/IN: loaded serial 2006091404
Sep 15 11:16:33 andreas named[24373]: zone localhost/IN: loaded serial 42
Sep 15 11:16:33 andreas named[24373]: running
Sep 15 11:16:46 andreas named[24373]: client 192.168.111.1#32870: updating zone 'test-lokal.com/IN': adding an RR at 'thinkpad-2.test-lokal.com' A
Sep 15 11:16:46 andreas named[24373]: client 192.168.111.1#32870: updating zone 'test-lokal.com/IN': adding an RR at 'thinkpad-2.test-lokal.com' TXT
Sep 15 11:16:46 andreas named[24373]: journal file master/test-lokal.com.jnl does not exist, creating it
Sep 15 11:16:46 andreas named[24373]: master/test-lokal.com.jnl: create: permission denied
Sep 15 11:16:46 andreas named[24373]: client 192.168.111.1#32870: updating zone 'test-lokal.com/IN': error: journal open failed: unexpected error
Sep 15 11:16:46 andreas dhcpd: Unable to add forward map from thinkpad-2.test-lokal.com to 192.168.111.188: timed out
Sep 15 11:16:46 andreas dhcpd: DHCPREQUEST for 192.168.111.188 from 00:03:47:b9:41:10 (thinkpad-2) via eth0
Sep 15 11:16:46 andreas dhcpd: DHCPACK on 192.168.111.188 to 00:03:47:b9:41:10 (thinkpad-2) via eth0
/etc/dhcp.conf
option domain-name "test-lokal.com";
option netbios-node-type 8;
option netbios-name-servers 192.168.111.101, 192.168.111.106;
option domain-name-servers 192.168.111.1; #192.168.111.106, 192.168.111.101;
option ntp-servers 192.168.111.6;
option routers 192.168.111.1;
#dhcp interface (SuSe)
DHCPD_INTERFACE="eth0";
#dns-server updates
ddns-update-style interim;
ddns-domainname "test-lokal.com";
update-static-leases true;
#ddns-update on;
key dhcp_updater {
algorithm HMAC-MD5.SIG-ALG.REG.INT;
secret EU+q+t2wqRsY3b11nNVAAg==;
};
zone test-lokal.com. {
primary 192.168.111.1;
key dhcp_updater;
}
zone 111.168.192.in-addr.arpa. {
primary 192.168.111.1;
key dhcp_updater;
}
#netz einstellungen
subnet 192.168.111.0 netmask 255.255.255.0 {
range 192.168.111.20 192.168.111.80;
range 192.168.111.150 192.168.111.190;
default-lease-time 14400;
max-lease-time 172800;
}
/etc/named.conf
# Copyright (c) 2001-2004 SuSE Linux AG, Nuernberg, Germany.
# All rights reserved.
#
# Author: Frank Bodammer, Lars Mueller <lmuelle@suse.de>
#
# /etc/named.conf
#
# This is a sample configuration file for the name server BIND 9. It works as
# a caching only name server without modification.
#
# A sample configuration for setting up your own domain can be found in
# /usr/share/doc/packages/bind/sample-config.
#
# A description of all available options can be found in
# /usr/share/doc/packages/bind/misc/options.
options {
# The directory statement defines the name server's working directory
directory "/var/lib/named";
# Write dump and statistics file to the log subdirectory. The
# pathenames are relative to the chroot jail.
dump-file "/var/log/named_dump.db";
statistics-file "/var/log/named.stats";
# The forwarders record contains a list of servers to which queries
# should be forwarded. Enable this line and modify the IP address to
# your provider's name server. Up to three servers may be listed.
#forwarders { 192.0.2.1; 192.0.2.2; };
# Enable the next entry to prefer usage of the name server declared in
# the forwarders section.
#forward first;
# The listen-on record contains a list of local network interfaces to
# listen on. Optionally the port can be specified. Default is to
# listen on all interfaces found on your system. The default port is
# 53.
#listen-on port 53 { 127.0.0.1; };
# The listen-on-v6 record enables or disables listening on IPv6
# interfaces. Allowed values are 'any' and 'none' or a list of
# addresses.
listen-on-v6 { any; };
# The next three statements may be needed if a firewall stands between
# the local server and the internet.
#query-source address * port 53;
#transfer-source * port 53;
#notify-source * port 53;
# The allow-query record contains a list of networks or IP addresses
# to accept and deny queries from. The default is to allow queries
# from all hosts.
#allow-query { 127.0.0.1; };
# If notify is set to yes (default), notify messages are sent to other
# name servers when the the zone data is changed. Instead of setting
# a global 'notify' statement in the 'options' section, a separate
# 'notify' can be added to each zone definition.
notify no;
include "/etc/named.d/forwarders.conf";
};
# To configure named's logging remove the leading '#' characters of the
# following examples.
#logging {
# # Log queries to a file limited to a size of 100 MB.
# channel query_logging {
# file "/var/log/named_querylog"
# versions 3 size 100M;
# print-time yes; // timestamp log entries
# };
# category queries {
# query_logging;
# };
#
# # Or log this kind alternatively to syslog.
# channel syslog_queries {
# syslog user;
# severity info;
# };
# category queries { syslog_queries; };
#
# # Log general name server errors to syslog.
# channel syslog_errors {
# syslog user;
# severity error;
# };
# category default { syslog_errors; };
#
# # Don't log lame server messages.
# category lame-servers { null; };
#};
# The following zone definitions don't need any modification. The first one
# is the definition of the root name servers. The second one defines
# localhost while the third defines the reverse lookup for localhost.
zone "." in {
type hint;
file "root.hint";
};
zone "localhost" in {
type master;
file "localhost.zone";
};
zone "0.0.127.in-addr.arpa" in {
type master;
file "127.0.0.zone";
};
# Include the meta include file generated by createNamedConfInclude. This
# includes all files as configured in NAMED_CONF_INCLUDE_FILES from
# /etc/sysconfig/named
include "/etc/named.conf.include";
key dhcp_updater {
algorithm HMAC-MD5.SIG-ALG.REG.INT;
secret EU+q+t2wqRsY3b11nNVAAg==;
};
zone "test-lokal.com" in {
file "master/test-lokal.com";
type master;
allow-update { key dhcp_updater; };
allow-transfer { any; };
};
#logging {
# category default { log_syslog; };
# channel log_syslog { syslog; };
#};
zone "111.168.192.in-addr.arpa" in {
file "master/111.168.192.in-addr.arpa";
type master;
allow-update { key dhcp_updater; };
};
# You can insert further zone records for your own domains below or create
# single files in /etc/named.d/ and add the file names to
# NAMED_CONF_INCLUDE_FILES.
# See /usr/share/doc/packages/bind/README.SUSE for more details.
zone test-lokal.com
$TTL 2d
@ IN SOA andreas.test-lokal.com. root.andreas.test-lokal.com. (
2006091404
3h
1h
1w
1d )
test-lokal.com. IN NS andreas.test-lokal.com.
test-lokal.com. IN MX 10 mail.test-lokal.com.
testrechner IN A 192.168.111.10
testrechner2 IN A 192.168.111.11
andreas IN A 192.168.111.1
zone 111.168.192.in-addr.arpa
$TTL 2d
@ IN SOA andreas.test-lokal.com. root.andreas.test-lokal.com. (
2006091406
3h
1h
1w
1d )
111.111.168.192.in-addr.arpa IN NS andreas.test-lokal.com.
111 IN NS andreas.test-lokal.com.
10 IN PTR testrechner.test-lokal.com.
11 IN PTR testrechner2.test-lokal.com.
ich hoffe jemand kann mir weiterhelfen.
herzlichen dank schonmal im voraus.
mfg,
rbach