Welcome Serena Central users! CLICK HERE
The migration of the Serena Central community is currently underway. Be sure to read THIS MESSAGE to get your new login set up to access your account.
Anonymous_User Absent Member.
Absent Member.
1766 views

how to exclude the search of rootserverinfo

before i start, excuse me for my english i'm italian.

i have novell 6 service pack 5.
i have configured into the dns a forwarding list but by the log of the
firewall i have seen that the server does requests at the servers show in
the rootserverinfo.
while i 'd like that the requests must be forwarding at the ip that i have
specified in the forwarding list.

please,can someone help me?

thanks
regards
monica
Labels (1)
0 Likes
21 Replies
Anonymous_User Absent Member.
Absent Member.

Re: how to exclude the search of rootserverinfo

Did you restart NAMED after making your changes? Can you use NSLOOKUP
to query the server you are forwarding to?

bd
NSC Volunteer SysOp


0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: how to exclude the search of rootserverinfo

> Did you restart NAMED after making your changes?
Yes.

>Can you use NSLOOKUP to query the server you are forwarding to?


i don't know how to use it.

is it possible to have a detail in screen of the NAMED?
Actualy appears this msg:
respond --> 10.x.x.x with 22590.

what does it mean?

thanks
regards
Monica

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: how to exclude the search of rootserverinfo

> Can you use NSLOOKUP to query the server you are forwarding to?

From a windows 2000 machine from a dos session i have tried this:

nslookup than appears
default server : server.ccc.com
address: 10.x.x.x

than if i insert the ip that i forwarding
192.x.x.x

appears: server.ccc.com can't find 192.x.x.x non existent domain

thanks monica

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: how to exclude the search of rootserverinfo

In article <J37%e.4604$jT.2584@prv-forum2.provo.novell.com>, wrote:
> i don't know how to use it.
>

I see you figured it out. 🙂

> is it possible to have a detail in screen of the NAMED?
>

Yes, using DBGLOG.NLM you can record the verbose output to a file. You
need to download and install DGBLOG.EXE, then follow the instructions
in its README.

> Actualy appears this msg:
> respond --> 10.x.x.x with 22590.
>
> what does it mean?
>

Not sure without the log info surrounding that message.

bd
NSC Volunteer SysOp


0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: how to exclude the search of rootserverinfo

In article <Il7%e.4613$jT.2122@prv-forum2.provo.novell.com>, wrote:
> than if i insert the ip that i forwarding
> 192.x.x.x
>
> appears: server.ccc.com can't find 192.x.x.x non existent domain
>

OK, that's the problem -- the IP address of the forwarder you're trying
to use can't be found. This may be a routing issue... what happens if
you try to ping the address? Or 'tracert ip_address' from a Windows
command prompt?

Or it could be a bad IP address... can you access other hosts on the
internet? If the 192.x.x.x is a public address, why not post the whole
thing here?

bd
NSC Volunteer SysOp


0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: how to exclude the search of rootserverinfo

> In article <Il7%e.4613$jT.2122@prv-forum2.provo.novell.com>, wrote:
> > than if i insert the ip that i forwarding
> > 192.x.x.x
> >
> > appears: server.ccc.com can't find 192.x.x.x non existent domain
> >

> OK, that's the problem -- the IP address of the forwarder you're trying
> to use can't be found. This may be a routing issue... what happens if
> you try to ping the address? Or 'tracert ip_address' from a Windows
> command prompt?
>
> Or it could be a bad IP address... can you access other hosts on the
> internet? If the 192.x.x.x is a public address, why not post the whole
> thing here?
>


if i try to ping the address 192.x.x.x i have a request time out.

i have a "server1" where i have installed a dns/dhcp utility and in a tab
named "forwarding list" i have insert the address ip 192.x.x.x.

the ip address 192.x.x.x is the address of my "server2" that is on DMZ.

Doing so i belive to forward the request done from my workstation
to "server1" than "server1" forward to "server2" (between server1 and
server2 there is a firewall) and this go out.
is it correct?

thanks
Monica
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: how to exclude the search of rootserverinfo

if i run the ping the address 192.x.x.x on "server1" it responds.

thanks
Monica



0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: how to exclude the search of rootserverinfo

In article <lmc%e.4860$jT.4800@prv-forum2.provo.novell.com>, wrote:
> i have a "server1" where i have installed a dns/dhcp utility and in a tab
> named "forwarding list" i have insert the address ip 192.x.x.x.
>

Hmmm... then Server2 should be forwarding to your ISP's DNS server(s),
otherwise it will go to the root servers. Could it be Server2's traffic
your seeing in the firewall logs?

> Doing so i belive to forward the request done from my workstation
> to "server1" than "server1" forward to "server2" (between server1 and
> server2 there is a firewall) and this go out.
>

Sorry, I don't quite understand the question. Are both servers in the DMZ?
Either way, your firewall is between your local LAN and the DMZ. Does that
help answer your question?

bd
NSC Volunteer SysOp


0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: how to exclude the search of rootserverinfo

In article <%xc%e.4882$jT.3543@prv-forum2.provo.novell.com>, wrote:
> if i run the ping the address 192.x.x.x on "server1" it responds.
>

OK, that's a good sign. Now run NSLOOKUP on Server1. After it loads,
type:

server IP_of_Server2
www.novell.com

What response do you get?

Now do the same on Server2. What response do you get?

If you can't resolve from Server2, then DNS requests are blocked by
your firewall from reaching the internet. If you can resolve from
Server2, but not from Server1, then your firewall (assuming they are
not both in the DMZ) is blocking DNS requests from your LAN to the DMZ.

bd
NSC Volunteer SysOp


0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: how to exclude the search of rootserverinfo

Sorry for my poor english.

> Hmmm... then Server2 should be forwarding to your ISP's DNS server(s),
> otherwise it will go to the root servers. Could it be Server2's traffic
> your seeing in the firewall logs?


But i haven't insert a forwarding list on server2.must i insert it?

> Are both servers in the DMZ? No. the Server1 is on the LAN and Server2

is on the DMZ.

thanks & regards
Monica
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: how to exclude the search of rootserverinfo

> Now run NSLOOKUP on Server1.
non authoritative answer
name www.novell.com
address 130.57.4.27

> Now do the same on Server2.


i have the same result.

how can it is possible?

thanks & regards.
monica
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: how to exclude the search of rootserverinfo

In article <xp50f.214$GG4.187@prv-forum2.provo.novell.com>, wrote:
> But i haven't insert a forwarding list on server2.must i insert it?
>

If you don't, it will always try the root servers when it needs help
resolving names, and that is gernally not a good practice.

bd
NSC Volunteer SysOp


0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: how to exclude the search of rootserverinfo

In article <Wv50f.216$GG4.213@prv-forum2.provo.novell.com>, wrote:
> how can it is possible?
>


When testing from Server1... Server1 forwards to Server2. Server2
forwards to the root servers -- it gets an answer and sends that back
to Server1.

When testing from Server2... it forwards to the root servers and gets
an answer.

bd
NSC Volunteer SysOp


0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: how to exclude the search of rootserverinfo

> > But i haven't insert a forwarding list on server2.must i insert it?
> >

> If you don't, it will always try the root servers when it needs help
> resolving names, and that is gernally not a good practice.
>


ok, now i understand.
now i have insert a ip address in the forwarding list on server 2 but
if i run:
nslookup
www.novell.com

i have the same answer like when the ip address there wasn't.
non authoritative answer
name www.novell.com
address 130.57.4.27

how can know if it use the ip address that i have insert in the forwarding
list or the servers of the rootserverinfo?

thanks.
Regards
Monica
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.