patrick-it
Goto Top

Linux CentOS DNS: Failed to start Berkeley Internet Name Domain (DNS)

Hallo zusammen,

ich habe mir auf dem CentOS7 einen DNS Server aufgesetzt und konfiguriert, leider startet dieser nicht, wenn ich den Befehl service named start eingebe . Ich habe in den Logs nachgeschaut und es gibt einen Fehler:
-- Logs begin at Thu 2015-07-16 15:05:55 CEST, end at Thu 2015-07-16 15:25:40 CEST. --
Jul 16 15:25:40 CentDNS named-checkconf[11998]: zone 1.168.192.in-addr.arpa/IN: not loaded due to errors.
Jul 16 15:25:40 CentDNS named-checkconf[11998]: _default/1.168.192.in-addr.arpa/IN: file not found
Jul 16 15:25:40 CentDNS named-checkconf[11998]: zone localhost.localdomain/IN: loaded serial 0
Jul 16 15:25:40 CentDNS named-checkconf[11998]: zone localhost/IN: loaded serial 0
Jul 16 15:25:40 CentDNS named-checkconf[11998]: zone 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 0
Jul 16 15:25:40 CentDNS named-checkconf[11998]: zone 1.0.0.127.in-addr.arpa/IN: loaded serial 0
Jul 16 15:25:40 CentDNS named-checkconf[11998]: zone 0.in-addr.arpa/IN: loaded serial 0
Jul 16 15:25:40 CentDNS systemd[1]: named.service: control process exited, code=exited status=1
Jul 16 15:25:40 CentDNS systemd[1]: Failed to start Berkeley Internet Name Domain (DNS).
-- Subject: Unit named.service has failed
-- Defined-By: systemd
-- Support: http://lists.freedesktop.org/mailman/listinfo/systemd-devel
--
-- Unit named.service has failed.
--
-- The result is failed.
Jul 16 15:25:40 CentDNS systemd[1]: Unit named.service entered failed state.

Hier sind meine Konfigurationen
/etc/named.conf
named.conf
Provided by Red Hat bind package to configure the ISC BIND named(8) DNS
server as a caching only nameserver (as a localhost DNS resolver only).
See /usr/share/doc/bind*/sample/ for example named configuration files.

options {
listen-on port 53 { 127.0.0.1; 172.31.3.10; };
listen-on-v6 port 53 { ::1; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
allow-query { localhost; 172.31.3.0/24; };

/*
- If you are building an AUTHORITATIVE DNS server, do NOT enable recursion.
- If you are building a RECURSIVE (caching) DNS server, you need to enable
recursion.
- If your recursive DNS server has a public IP address, you MUST enable access
control to limit queries to your legitimate users. Failing to do so will
cause your server to become part of large scale DNS amplification
attacks. Implementing BCP38 within your network would greatly
reduce such attack surface
*/
recursion yes;

dnssec-enable yes;
dnssec-validation yes;
dnssec-lookaside auto;

/* Path to ISC DLV key */
bindkeys-file "/etc/named.iscdlv.key";

managed-keys-directory "/var/named/dynamic";

pid-file "/run/named/named.pid";
session-keyfile "/run/named/session.key";
};

logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};

zone "." IN {
type hint;
file "named.ca";
};

zone"CentDNS.local" IN {
type master;
file "forward.CentDNS";
allow-update { none; };
};
zone"1.168.192.in-addr.arpa" IN {
type master;
file "reverse.CentDNS";
allow-update { none; };
};

include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";

/var/named/forward.CentDNS
$TTL 86400
@ IN SOA ns1.CentDNS.local. root.CentDNS.local. (
2014072701 ;Serial
3600 ;Refresh
1800 ;Retry
604800 ;Expire
86400 ;Minimum TTL
)
@ IN NS ns1.CentDNS.local.
@ IN A 172.31.3.254
@ IN A 172.31.3.10
gw IN A 172.31.3.254
ns1 IN A 172.31.3.10

/var/named/reserve.CentDNS
$TTL 86400
@ IN SOA ns1.CentDNS.local. root.CentDNS.local. (
2014072701 ;Serial
3600 ;Refresh
1800 ;Retry
604800 ;Expire
86400 ;Minimum TTL
)
@ IN NS ns1.CentDNS.local.
@ IN PTR CentDNS.local.
gw IN A 172.31.3.254
ns1 IN A 172.31.3.10

254 IN PTR gw.CentDNS.local.
10 IN PTR ns1.CentDNS.local.

Ich hoffe Jemand kann den Fehler finden und ihn mir sagen!

Gruss Patrick

Content-ID: 277497

Url: https://administrator.de/forum/linux-centos-dns-failed-to-start-berkeley-internet-name-domain-dns-277497.html

Ausgedruckt am: 23.12.2024 um 20:12 Uhr

Gersen
Gersen 16.07.2015 aktualisiert um 15:33:31 Uhr
Goto Top
Hallo,

das
1.168.192.in-addr.arpa/IN: file not found
sagt es doch - Deine Konfig erwartet eine Datei namens "reverse.CentDNS", Deine Datei heißt aber offensichtlich "reserve.CentDNS".

Gruß,
Gersen
Patrick-IT
Patrick-IT 16.07.2015 um 15:39:17 Uhr
Goto Top
Hallo,

tut mir Leid, da ist mir ein Tippfehler beim Abschreiben passiert.
An dem liegt es nicht, im Server ist es richtig eingetragen, aber Danke trotzdem, dass du mich darauf hinweist. face-smile

Gruss Patrick
Gersen
Gersen 16.07.2015 um 17:43:39 Uhr
Goto Top
Ah ja.

poste doch bitte mal die Ausgaben von
cat /var/named/data/named.run
bzw. (nach einem Versuch des Starts von BIND)
journalctl | grep named
(alles ab der Zeile "starting BIND")

Gruß,
Gersen