DNS/BIND brain melting....

[robbo007]

Hello all,

Bind and DNS has always been a hard one for me so please let me know if I'm on the right track.

I have a ISPCP server on my home ADSL network. I have a fixed IP address with my ADSL connection. My router has ports TCP 21,22,53 25 open and UDP 53. All pointing to my debian (lenny) box on the LAN.

I have two domains registered with my ISP and there nameserver entries are pointing to my debian box to resolve.

I installed ISPCP with domain.ltd and used the admin.domain.ltd when running the setup scripts.

In my /var/cache/bind directory I have the .db from both domains.

Things that are not working are:

domain2.ltd does not resolve its virtual domain. EG it resolved the ispcp logon screen and not the content from the website located in /htdoc.

If I ping domain2.ltd from internet its resolved the correct ADSL external IP address of my debian box but does not resolve the website...

When I ping my ns1.domain1.ltd from the Internet I get a reply with the local IP address and not the external ADSL one.

Domain1.ltd seems to have a bind database as with the admin sub domain added:

Exodus:/var/cache/bind# cat admin.domain1.ltd.db
$TTL 12H
$ORIGIN admin.domain1.ltd.
@ IN SOA ns1.admin.domain1.ltd. postmaster.admin.domain1.ltd. (
; dmn [admin.domain1.ltd] timestamp entry BEGIN.
2009042300 ; Serial
; dmn [admin.domain1.ltd] timestamp entry END.
8H ; Refresh
15M ; Retry
4W ; Expire
3H ; Minimum TTL
)
IN NS ns1.admin.domain1.ltd.
IN NS ns2.admin.domain1.ltd.
IN MX 10 mail.admin.domain1.ltd.

admin.domain1.ltd. IN A 192.168.1.33
www IN A 192.168.1.33
admin.domain1.ltd. IN TXT "v=spf1 a mx ip4:192.168.1.33 ~all"
localhost IN A 127.0.0.1
mail IN A 192.168.1.33
ns1 IN A 192.168.1.33
ns2 IN A 192.168.1.33
; CNAME for mail transfer
imap IN CNAME mail
pop IN CNAME mail
pop3 IN CNAME mail
relay IN CNAME mail
smtp IN CNAME mail
; CNAME for web transfer
ftp IN CNAME www
; sub [{SUB_NAME}] entry BEGIN.
; sub [{SUB_NAME}] entry END.
exodus:/var/cache/bind#

DOMAIN2.LTD BIND database:

exodus:/var/cache/bind# cat domain2.ltd.db
$TTL 12H
$ORIGIN outrightrecords.com.
@ IN SOA ns1.domain2.ltd. postmaster.domain2.ltd. (
; dmn [domain2.ltd] timestamp entry BEGIN.
2009042300 ; Serial
; dmn [domain2.ltd] timestamp entry END.
8H ; Refresh
30M ; Retry
4W ; Expire
3H ; Minimum TTL
)
IN NS ns1.domain2.ltd.
IN NS ns2.domain2.ltd.
IN MX 10 mail.domain2.ltd.

domain2.ltd. IN A 212.xxx.xx.xxx
www IN A 212.xxx.xx.xxx
domain2.ltd. IN TXT "v=spf1 a mx ip4:212.xxx.xx.xxx ~all"
localhost IN A 127.0.0.1
mail IN A 212.xxx.xx.xxx
ns1 IN A 192.168.1.33
ns2 IN A 192.168.1.33
; CNAME for VHCS compatibility
ns IN CNAME ns1
; CNAME for mail transfer
imap IN CNAME mail
pop IN CNAME mail
pop3 IN CNAME mail
relay IN CNAME mail
smtp IN CNAME mail
; CNAME for web transfer
ftp IN CNAME www
; sub [{SUB_NAME}] entry BEGIN.
; sub [{SUB_NAME}] entry END.
exodus:/var/cache/bind#

[ephigenie]

your nameserver must answer with the correct (external) address all the time if you want to have it reachable from there.

And of course you'll need to change your apache config as well.

[robbo007]

Once again thanks. You've got me on the right path My brain has stopped pulsation a little less

Have you any links for the Apache configuration on Debian?

Cheers,

Rob

[ephigenie]

hmm... now that you ask me this,

i think it should if you let your firewall just forward all incoming packets on port 80 outside to port 80 on 192.168.1.33 inside .

Apache then gets the packet and find (hopefully ) the http header with the questioned servername in it. In my mind that should be enough ...

[robbo007]

Darn, I had port 80 TCP forwarding to 192.168.1.33 but not UDP. Just opened it and the domain2.ltd still shows the ISPCP OMEGA logon window and not the site which I uploaded to the /htdoc folder