Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

DNS error message

9 views
Skip to first unread message

John Trumbell

unread,
Jan 23, 2001, 10:59:58 AM1/23/01
to

Hi,
I am setting up a test DNS server, to resolve a problem with some Proxy
software, that requires the use of reverse lookups.

I have installed Bind 8.2.3 on a NT4 server (SP5). I have used the Zone
files from are actual DNS server and if I do a reverse lookup on the DNS
server I get the following reply.

***Can't find server name for address (server's Ip address): Server failed
***Default servers are not available
Server: Unknown
Address: (server's ip address)

*** Unknown can't find (server's name): server failed

The ISC BIND services starts, However in my Application log I see a message
stating "No root nameserver in class IN" source is named. The test DNS
server is listed as the SOA.

Does anyone have any suggestions?

John

Danny Mayer

unread,
Jan 23, 2001, 9:19:27 PM1/23/01
to

At 10:54 AM 1/23/01, John Trumbell wrote:

>Hi,
>I am setting up a test DNS server, to resolve a problem with some Proxy
>software, that requires the use of reverse lookups.
>
>I have installed Bind 8.2.3 on a NT4 server (SP5). I have used the Zone
>files from are actual DNS server and if I do a reverse lookup on the DNS
>server I get the following reply.
>
>***Can't find server name for address (server's Ip address): Server failed
>***Default servers are not available
>Server: Unknown
>Address: (server's ip address)
>
>*** Unknown can't find (server's name): server failed

You are using nslookup which needs to use the IP address that you
entered in the network control panel in order to lookup up its name. You
can find out what it is by typing ipconfig/all. If that server does not have a
PTR record nslookup will fail even though it doesn't need it. Use dig instead
which comes with the kit and doesn't bother with such things.

>The ISC BIND services starts, However in my Application log I see a message
>stating "No root nameserver in class IN" source is named. The test DNS
>server is listed as the SOA.

You need to post both the named.conf and the zone file so someone
can tell you what's wrong. Any other message in the application log?

Danny


John Trumbell

unread,
Jan 25, 2001, 12:46:39 PM1/25/01
to

Hi,
Here are the named.conf and Zoneinfo files, I have censored out the actual
IP's as per our policy. All these files reside in the
C:\winnt\system32\dns\etc

; File: named.conf
; Purpose: give the DNS its startup parameters and
; list of startup files.
;
;
directory C:\\winnt\\system32\\dns\\etc
;
;
; XFRNETS parameter limits the transfer of zone information
; to machines matching the subnet wildcard/mask entries listed
;
;
;XFRNETS ###.##.0.0
;
; establish a loopback entry for this machine, and tell
; it to load its identity from db.127.0.0
;
primary 0.0.127.IN-ADDR.ARPA db.127.0.0
;
; set ourselves as primary server for the zone
;
primary aicfunds.com db.aicfunds
primary aicfunds.net db.aicfunds.net
;
; provide reverse address-to-host mapping
;
primary ##.###.in-addr.arpa db.inaddr-aicfunds
primary ##.###.in-addr.arpa db.inaddr-aicwan
primary ###.###.in-addr.arpa db.inaddr-unitrax
primary ##.###.in-addr.arpa db.inaddr-aicfunds.net
;
; prime the DNS with root server 'hint' information

;
cache . db.cache
;


Here is a copy of the db.aicfunds file
;
; File: db.aicfunds
; Purpose: This file establishes the name/address information
; for this zone. You will have to fill out the actual
; information for your specific zone in the format shown
; in the comments.
;
@ IN SOA dino.aicfunds.com. postmaster.aicfunds.com. (
97112313 ; serial number
43200 ; refresh every 12 hours
7200 ; retry after 2 hours
1209600 ; expire after 2 weeks
172800) ; default ttl is 2 days
;
@ IN NS dino.aicfunds.com.
36.128 IN PTR dino.aicfunds.com.
; Other Name Servers for this domain? (EXAMPLES ONLY)
;
; IN NS examplens1.software.com.
; IN NS examplens2.software.com.
; IN NS examplens3.cerf.net.
; IN NS examplens4.webpa.com.
;
; Local Host Address
;
localhost IN A 127.0.0.1
;
; Mail Exchange Records (EXAMPLES ONLY)
;
; software.com. IN MX 20 mailserver.software.com.
; IN MX 30 backupserver.cerf.net.
; software.com. IN A 198.17.234.33 ; For DUMB Mailers
;

aicfunds.com. IN MX 20 exchsvr1.aicfunds.com.

;
; Define local hosts (EXAMPLES ONLY)
;
;mach1 IN A 198.17.234.33
; IN MX 10 mailserver.software.com.
; IN MX 30 backupserver.cerf.net.
;
; Example machine that receives its own mail, first:
;
;mach2 IN A 198.17.234.34
; IN MX 10 mach2.software.com.
; IN MX 20 mailserver.software.com.
; IN MX 30 backupserver.cerf.net.
;
;
; CNames (EXAMPLES ONLY)
;
;news IN CNAME mach1.software.com.
;www IN CNAME mach1.software.com.
;ftp IN CNAME mach1.software.com.
;hub IN CNAME mach2.software.com.
;

**Lists of servers I have taken out, using the below one as an example.
dino IN A ###.##.###.36

dns IN CNAME dino

Here is the db.inaddr-aicfunds the other files that are assigned for reverse
lookup follow a similiar format.
;
; File: db.inaddr-aicfunds
; Purpose: This file establishes the address-to-name lookup
; information for this zone. You will have to
; fill out the actual address information for your
; specific zone in the format shown in the comments
;
@ IN SOA dino.aicfunds.com. postmaster.aicfunds.com. (
97112310 ; serial number
43200 ; refresh every 12 hours
7200 ; retry after 2 hours
1209600 ; expire after 2 weeks
172800) ; default ttl is 2 days
;
@ IN NS dino.aicfunds.com.
**Lists of servers I have taken out, using the below one as an example.
36.### IN PTR dino.aicfunds.com.


Got any idea, this has been driving me nuts.

John

Danny Mayer

unread,
Jan 25, 2001, 9:48:55 PM1/25/01
to

At 12:41 PM 1/25/01, John Trumbell wrote:
>Hi,
>Here are the named.conf and Zoneinfo files, I have censored out the actual
>IP's as per our policy. All these files reside in the
>C:\winnt\system32\dns\etc

I have censored out the actual reply as per our policy of ignoring such
postings. If you want help post the real information.

Danny


Ben Barnes

unread,
Jan 26, 2001, 1:44:55 PM1/26/01
to

Hey Danny,

I don't know why you have taken this position on not helping us out,
the information taken out contained the private addressing scheme
for our network. Now you should know that sending out your ip addressing
details across the internet is not a very smart thing to do.

Can I ask why you are insistent on having the addressing information?

-----Original Message-----
From: John Trumbell
Sent: Friday, January 26, 2001 8:40 AM
To: Ben Barnes
Subject: FW: DNS error message


Well here's my help.

-----Original Message-----
From: Danny Mayer [mailto:ma...@gis.net]
Sent: Thursday, January 25, 2001 9:45 PM
To: John Trumbell; Bind-Users (E-mail)

Adrian Stovall

unread,
Jan 26, 2001, 1:55:08 PM1/26/01
to
Ben, are you saying that not giving pertinent information (i.e. hostnames
and IP's) when asking for technical help makes sense? That's kind of like
going to the doctor and saying "It hurts somewhere, I just can't tell you
where. What's wrong with me?". Cant make a diagnosis without knowing
what's hurting on the patient.


-- Binary/unsupported file stripped by Listar --
-- Type: application/ms-tnef


Kevin Darcy

unread,
Jan 26, 2001, 6:03:45 PM1/26/01
to

The usual cause of "No root nameserver in class IN" messages is that you have
set up your nameserver with an Internet root hints file but you have no direct
connectivity to the Internet. If you have no direct connectivity to the
Internet, then if you want to resolve Internet names, you need to use a
forwarder in "forward only" mode. Otherwise, if you have no need to resolve
Internet names (like if you proxy everything through your firewalls), just set
up your own internal root.


- Kevin

John Trumbell wrote:

> Hi,
> I am setting up a test DNS server, to resolve a problem with some Proxy
> software, that requires the use of reverse lookups.
>
> I have installed Bind 8.2.3 on a NT4 server (SP5). I have used the Zone
> files from are actual DNS server and if I do a reverse lookup on the DNS
> server I get the following reply.
>
> ***Can't find server name for address (server's Ip address): Server failed
> ***Default servers are not available
> Server: Unknown
> Address: (server's ip address)
>
> *** Unknown can't find (server's name): server failed
>

> The ISC BIND services starts, However in my Application log I see a message
> stating "No root nameserver in class IN" source is named. The test DNS
> server is listed as the SOA.
>

Ben Barnes

unread,
Jan 26, 2001, 7:36:48 PM1/26/01
to

You comparison to the doctor is flawed my friend.
The e-mail that was originally sent to Danny
looks like this.

File: named.conf
; Purpose: give the DNS its startup parameters and
; list of startup files.
;
;
directory C:\\winnt\\system32\\dns\\etc
;
;
; XFRNETS parameter limits the transfer of zone information
; to machines matching the subnet wildcard/mask entries listed
;
;
;XFRNETS ###.##.0.0
;
; establish a loopback entry for this machine, and tell
; it to load its identity from db.127.0.0
;
primary 0.0.127.IN-ADDR.ARPA db.127.0.0
;
; set ourselves as primary server for the zone
;
primary aicfunds.com db.aicfunds

;
cache . db.cache
;

*****************Lists of servers I have taken out, using the below one as
an example*****************************
dino IN A ###.##.###.36

dns IN CNAME dino

Here is the db.inaddr-aicfunds the other files that are assigned for reverse
lookup follow a similiar format.
;
; File: db.inaddr-aicfunds
; Purpose: This file establishes the address-to-name lookup
; information for this zone. You will have to
; fill out the actual address information for your
; specific zone in the format shown in the comments
;
@ IN SOA dino.aicfunds.com. postmaster.aicfunds.com. (
97112310 ; serial number
43200 ; refresh every 12 hours
7200 ; retry after 2 hours
1209600 ; expire after 2 weeks
172800) ; default ttl is 2 days
;
@ IN NS dino.aicfunds.com.

*****************Lists of servers I have taken out, using the below one as
an example*****************************
36.### IN PTR dino.aicfunds.com.

Only one line was left in each config file and that address
was replaced with ###.###.###.###. DNS works regardless
of how many entries you have for various nodes on the
network. There is more than enough infomation here for anyone
to decipher how DNS is setup with these files.

Not to get snarky, but if that is your policy, than
thanks, but no thanks. The fact that you don't seem
to think that transmitting a file that contains a
networks ip addressing scheme as an irresponsible act
leads me to think that you know very little of what can
be accomplished by a hacker with such information.


Hell, I may as well just send you a network diagram, complete with
addressing info via the net.

Mathias Körber

unread,
Jan 27, 2001, 11:23:07 PM1/27/01
to

You mentioned using BIND-8.something in your original
mail. The file below looks suspiciously like a named.BOOT
file which was used in BIND-4. Since BIND-8, a new format
is used and the file is called named.conf.

Please (re-?)read the BIND-8 documentation. There is a perl script
somewhere called bind-bootconf.pl that can help your convert
from a boot to a conf file. Not sure if there is anything similar native
for NT in case you don't have perl.

HTH HAND


> Hi,
> Here are the named.conf and Zoneinfo files, I have censored out the actual
> IP's as per our policy. All these files reside in the
> C:\winnt\system32\dns\etc
>

> ; File: named.conf


> ; Purpose: give the DNS its startup parameters and
> ; list of startup files.
> ;
> ;
> directory C:\\winnt\\system32\\dns\\etc
> ;
> ;
> ; XFRNETS parameter limits the transfer of zone information
> ; to machines matching the subnet wildcard/mask entries listed
> ;
> ;
> ;XFRNETS ###.##.0.0
> ;
> ; establish a loopback entry for this machine, and tell
> ; it to load its identity from db.127.0.0
> ;
> primary 0.0.127.IN-ADDR.ARPA db.127.0.0
> ;
> ; set ourselves as primary server for the zone
> ;
> primary aicfunds.com db.aicfunds

> primary aicfunds.net db.aicfunds.net

> **Lists of servers I have taken out, using the below one as an example.


> dino IN A ###.##.###.36
>
> dns IN CNAME dino
>
> Here is the db.inaddr-aicfunds the other files that are assigned
> for reverse
> lookup follow a similiar format.
> ;
> ; File: db.inaddr-aicfunds
> ; Purpose: This file establishes the address-to-name lookup
> ; information for this zone. You will have to
> ; fill out the actual address information for your
> ; specific zone in the format shown in the comments
> ;
> @ IN SOA dino.aicfunds.com. postmaster.aicfunds.com. (
> 97112310 ; serial number
> 43200 ; refresh every 12 hours
> 7200 ; retry after 2 hours
> 1209600 ; expire after 2 weeks
> 172800) ; default ttl is 2 days
> ;
> @ IN NS dino.aicfunds.com.

> **Lists of servers I have taken out, using the below one as an example.
> 36.### IN PTR dino.aicfunds.com.
>
>
> Got any idea, this has been driving me nuts.
>
> John

> -----Original Message-----
> From: Danny Mayer [mailto:ma...@gis.net]
> Sent: Tuesday, January 23, 2001 9:15 PM
> To: John Trumbell; Bind-Users (E-mail)

> Subject: Re: DNS error message
>
>
>

> At 10:54 AM 1/23/01, John Trumbell wrote:
>
> >Hi,
> >I am setting up a test DNS server, to resolve a problem with some Proxy
> >software, that requires the use of reverse lookups.
> >
> >I have installed Bind 8.2.3 on a NT4 server (SP5). I have used the Zone
> >files from are actual DNS server and if I do a reverse lookup on the DNS
> >server I get the following reply.
> >
> >***Can't find server name for address (server's Ip address):
> Server failed
> >***Default servers are not available
> >Server: Unknown
> >Address: (server's ip address)
> >
> >*** Unknown can't find (server's name): server failed
>

> You are using nslookup which needs to use the IP address that you
> entered in the network control panel in order to lookup up its name. You
> can find out what it is by typing ipconfig/all. If that server does not
> have a
> PTR record nslookup will fail even though it doesn't need it. Use dig
> instead
> which comes with the kit and doesn't bother with such things.
>

> >The ISC BIND services starts, However in my Application log I
> see a message
> >stating "No root nameserver in class IN" source is named. The test DNS
> >server is listed as the SOA.
>

0 new messages