| 热门文章 |
 |
|
| 编辑推荐 |
|
|
|
|
|
|
作者:陳昌盛, cschen@cc.nctu.edu.tw
来源:不详 点击: 更新:2006-12-20
|
|
最後修改时间为 09/14/1999 11:25:45
--------------------------------------------------------------------------------
正常讯息
BIND Notify 的运作 ( BIND 8.2.1 )
Sep 11 21:55:15 ns named[98]: reloading nameserver
Sep 11 21:55:15 ns named[98]: master zone "HCC.edu.tw" (IN) loaded (serial 1999091100)
Sep 11 21:55:15 ns named[98]: Forwarding source address is [0.0.0.0].1851
Sep 11 21:55:15 ns named[98]: Ready to answer queries.
Sep 11 21:55:25 ns named[98]: Sent NOTIFY for "HCC.edu.tw IN SOA" (HCC.edu.tw); 1 NS, 1 A
Sep 11 21:55:25 ns named[98]: Received NOTIFY answer for "HCC.edu.tw IN SOA"
Sep 11 21:55:26 ns named[98]: zone transfer (AXFR) of "HCC.edu.tw" (IN) to [140.113.1.1].42679
Zone Transfer 的记录
Sep 11 21:08:16 ns named[98]: zone transfer (AXFR) of "SEAC.nctu.edu.tw" (IN) to
[140.113.1.1].42608
Sep 11 21:08:49 ns named[98]: zone transfer (AXFR) of "1.113.140.IN-ADDR.ARPA" (IN) to [140.113.1.1].42610
Sep 11 21:09:02 ns named[98]: zone transfer (AXFR) of "3.113.140.IN-ADDR.ARPA" (IN) to [140.113.1.1].42612
BIND/named 主动清理过期的 domain entries
Sep 11 21:37:18 ns named[98]: Cleaned cache of 3757 RRs
--------------------------------------------------------------------------------
不正常讯息
发现有资料档设定错误, 导致 named 自行丢掉整个 zone 的资料
Jul 21 21:56:32 alpha named[4234]: host name "secc_fs3.secc.fju.edu.tw"
(owner "2.201.136.140.in-addr.arpa") IN (primary) is invalid - rejecting
Jul 21 21:56:32 alpha named[4234]: secc.rev1:14: database naming error
Jul 21 21:56:32 alpha named[4234]: secc.rev1:14: Database error (bad name
"secc_fs3.secc.fju.edu.tw")
Jul 21 21:56:32 alpha named[4234]: master zone "201.136.140.in-addr.arpa"
(IN) rejected due to errors (serial 97060000)
解决之道: 请用 '-'(dash) 取代 '_'(underscore)字元
Localhost - 127.0.0.1 相关设定弄错(1)
Sep 12 12:17:18 ns named[98]: ns_forw: query(ux2.ispnet.com.tw) Bogus LOOPBACK
RR (localhost:127.0.0.1) learnt (A=localhost:NS=140.113.54.11)
Sep 12 12:17:18 ns named[98]: sysquery: findns error (NXDOMAIN) on localhost?
Sep 12 12:50:46 ns named[98]: ns_forw: query(ux2.ispnet.com.tw) Bogus LOOPBACK
RR (localhost:127.0.0.1) learnt (A=localhost:NS=140.113.54.11)
Sep 12 12:50:46 ns named[98]: sysquery: findns error (NXDOMAIN) on localhost?
解决之道: 请参考 "localhost." 网域的设定
Loopback 127.0.0.1 设定错误(2)
Sep 10 09:00:43 ns named[98]: ns_forw: query(www.njci.com.tw) Bogus LOOPBACK
A RR (dns1.ucn.com.tw:127.0.0.1) learnt (A=163.28.1.2:NS=163.28.1.2)
Sep 10 09:00:59 ns named[98]: sysquery: query(dns1.ucn.com.tw) Bogus LOOPBACK
A RR (dns1.ucn.com.tw:127.0.0.1) learnt (A=163.28.1.2:NS=163.28.1.2)
解决之道: 请参考 "localhost." 网域的设定
Multi-homed 系统做为 DNS server, 其中部份 A RR 未登录
Sep 10 07:33:51 ns named[98]: Response from unexpected source ([203.66.109.2].53)
Sep 10 07:42:45 ns named[98]: Response from unexpected source ([140.96.158.1].53)
Sep 10 10:30:48 ns named[98]: Response from unexpected source ([140.138.142.193].53)
Sep 10 10:31:11 ns named[98]: Response from unexpected source ([203.66.109.2].53)
Sep 10 12:41:56 ns named[98]: Response from unexpected source ([139.175.43.27].53)
解决途径: 限定 response return address, 或者把每个 interface 的 IP address 都登录
Lame server, 配合不良的 NS 指标记录
Mar 30 12:09:31 ns named[3544]: Lame server on 'www.catv.com.tw' (in 'catv.COM.tw'?):
[203.67.199.1].53 'igndns.gcn.net.tw': learnt (A=203.77.2.139, NS=140.92.1.50)
Mar 30 13:44:32 ns named[3544]: Lame server on 'ftp.wownet.net.tw' (in 'wownet.net.tw'?):
[203.79.6.2].53 'ns.wownet.net.tw': learnt (A=140.111.1.2, NS=140.111.1.2)
DNS server 未确实设立
Sep 11 00:07:46 mrelay named[73189]: ns_forw: query(www.carshow.com.tw) All
possible RR's lame
Sep 11 00:19:55 mrelay named[73189]: sysquery: query(ms1.webmail.com.tw) All
possible A RR's lame
Sep 11 00:18:53 mrelay named[73189]: sysquery: query(www.boe.ilc.edu.tw) All
possible A RR's lame
从底下的 dig 资料, 无法找到任何相关网域的 DNS server 资料.
# dig www.carshow.com.tw
; <<>> DiG 8.2 <<>> www.carshow.com.tw
;; res options: init recurs defnam dnsrch
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 4
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; QUERY SECTION:
;; www.carshow.com.tw, type = A, class = IN
;; Total query time: 21 msec
;; FROM: ns to SERVER: default -- 140.113.250.135
;; WHEN: Sun Sep 12 14:40:08 1999
;; MSG SIZE sent: 36 rcvd: 36
漏掉某 NS RR 相关的 Glued A RR
Sep 11 08:55:26 ns named[98]: ns_forw: query(5.71.113.140.in-addr.arpa) Glue A RR
missing (mb002-1.iem.nctu.edu.tw:) learnt (NS=NCTU.edu.tw:NS=113.140.IN-ADDR.ARPA)
Sep 11 09:06:00 ns named[98]: ns_forw: query(164.59.113.140.in-addr.arpa) Glue A RR
missing (mb002-1.iem.nctu.edu.tw:) learnt (NS=NCTU.edu.tw:NS=113.140.IN-ADDR.ARPA)
他站任意指定 NS RR,导致本系统困扰
Sep 11 08:51:59 ns named[98]: sysquery: query(www.elites.org) contains our address
(ns.nctu.edu.tw:140.113.250.135) learnt (A=NCTU.edu.tw:NS=140.113.54.11)
Sep 11 08:51:59 ns named[98]: ns_forw: query(www.elites.org) contains our address
(ns.nctu.edu.tw:140.113.250.135) learnt (A=NCTU.edu.tw:NS=140.113.54.11)
Sep 11 08:51:59 ns named[98]: ns_resp: query(www.elites.org) contains our address (ns.
nctu.edu.tw:140.113.250.135) learnt (A=NCTU.edu.tw:NS=140.113.54.11)
|
|
|
评论
收藏
分享
打印
