Configuration serveur DNS bind9

Synchro · Février 21, 2016, 6:05pm

Bonjour,

J’ai suivi ce tuto pour installer un serveur DNS en intranet sur une machine Linux Debian. A la fin j’arrive à un serveur qui démarre sans problème mais malheureusement il est pas fonctionnel. En effet, les tests avec les commandes nslookup et host résultent en un timeout.

-Le nom d’hôte de la machine Linux est : serveurdns
-Son ipv4: 10.0.0.10
-Le domaine à mettre en place: ensias.org
-Les logs affichent (tail -30 /var/log/syslog):

Aug 21 19:36:26 serveurdns named[4208]: error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 2001:500:2f::f#53

Aug 21 19:36:26 serveurdns named[4208]: error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 2001:7fe::53#53

Aug 21 19:36:26 serveurdns named[4208]: error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 2001:500:2f::f#53

Aug 21 19:36:26 serveurdns named[4208]: error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 2001:7fe::53#53

Aug 21 19:36:26 serveurdns named[4208]: error (network unreachable) resolving 'serveurdns/A/IN': 2001:503:ba3e::2:30#53

Aug 21 19:36:26 serveurdns named[4208]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 2001:503:ba3e::2:30#53

Aug 21 19:36:26 serveurdns named[4208]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 192.58.128.30#53

Aug 21 19:36:26 serveurdns named[4208]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 2001:500:3::42#53

Aug 21 19:36:26 serveurdns named[4208]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 202.12.27.33#53

Aug 21 19:36:26 serveurdns named[4208]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 192.58.128.30#53

Aug 21 19:36:26 serveurdns named[4208]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 2001:500:3::42#53

Aug 21 19:36:26 serveurdns named[4208]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 202.12.27.33#53

Aug 21 19:36:26 serveurdns named[4208]: error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 192.58.128.30#53

Aug 21 19:36:26 serveurdns rsyslogd-2177: imuxsock begins to drop messages from pid 4208 due to rate-limiting

Aug 21 19:48:56 serveurdns dbus[2270]: [system] Activating service name='org.freedesktop.SystemToolsBackends.SMBConfig' (using servicehelper)

Aug 21 19:48:56 serveurdns dbus[2270]: [system] Activating service name='org.freedesktop.SystemToolsBackends.NFSConfig' (using servicehelper)

Aug 21 19:48:57 serveurdns dbus[2270]: [system] Successfully activated service 'org.freedesktop.SystemToolsBackends.SMBConfig'

Aug 21 19:48:57 serveurdns dbus[2270]: [system] Successfully activated service 'org.freedesktop.SystemToolsBackends.NFSConfig'

Aug 21 19:50:36 serveurdns ntpd_intres[2754]: host name not found: 0.debian.pool.ntp.org

Aug 21 19:50:36 serveurdns ntpd_intres[2754]: host name not found: 1.debian.pool.ntp.org

Aug 21 19:50:36 serveurdns ntpd_intres[2754]: host name not found: 2.debian.pool.ntp.org

Aug 21 19:50:36 serveurdns ntpd_intres[2754]: host name not found: 3.debian.pool.ntp.org

Aug 21 19:58:36 serveurdns dhclient: DHCPREQUEST on eth0 to 10.0.0.9 port 67

Aug 21 19:58:36 serveurdns dhclient: DHCPACK from 10.0.0.9

Aug 21 19:58:36 serveurdns dhclient: bound to 10.0.0.10 -- renewal in 1631 seconds.

Aug 21 19:58:36 serveurdns NetworkManager[2549]: <info> (eth0): DHCPv4 state changed bound -> renew

Aug 21 19:58:36 serveurdns NetworkManager[2549]: <info>   address 10.0.0.10

Aug 21 19:58:36 serveurdns NetworkManager[2549]: <info>   prefix 8 (255.0.0.0)

Aug 21 19:58:36 serveurdns dbus[2270]: [system] Activating service name='org.freedesktop.nm_dispatcher' (using servicehelper)

Aug 21 19:58:37 serveurdns dbus[2270]: [system] Successfully activated service 'org.freedesktop.nm_dispatcher'

Voici mes fichiers du répertoire /etc/bind.

Pouvez-vous m’aider ? Merci

PascalHambourg · Février 21, 2016, 6:05pm

a) Il manque le début des logs du démarrage de named. Fais un grep named sur syslog plutôt qu’un tail.
b) Ce n’est pas forcément une bonne idée de divulguer le fichier de clés de ton BIND.
c) Quelle est censée être la fonction de ce serveur DNS ?

Synchro · Février 21, 2016, 6:05pm

Bonsoir,

L’objectif de ce serveur est de gérer la résolution pour d’autres serveurs en intranet : web, email.

Voici le résultat de grep:

Aug 22 00:17:07 serveurdns named[2225]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 2001:500:1::803f:235#53
Aug 22 00:17:07 serveurdns named[2225]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 2001:7fe::53#53
Aug 22 00:17:07 serveurdns named[2225]: error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 2001:500:1::803f:235#53
Aug 22 00:17:07 serveurdns named[2225]: error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 2001:7fe::53#53
Aug 22 00:17:07 serveurdns named[2225]: error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 2001:500:1::803f:235#53
Aug 22 00:17:07 serveurdns named[2225]: error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 2001:7fe::53#53
Aug 22 00:17:07 serveurdns named[2225]: error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 2001:500:1::803f:235#53
Aug 22 00:17:07 serveurdns named[2225]: error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 2001:7fe::53#53
Aug 22 00:17:07 serveurdns named[2225]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 2001:503:c27::2:30#53
Aug 22 00:17:07 serveurdns named[2225]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 2001:500:3::42#53
Aug 22 00:17:07 serveurdns named[2225]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 2001:dc3::35#53
Aug 22 00:17:07 serveurdns named[2225]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 2001:503:c27::2:30#53
Aug 22 00:17:07 serveurdns named[2225]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 2001:500:3::42#53
Aug 22 00:17:07 serveurdns named[2225]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 2001:dc3::35#53
Aug 22 00:17:15 serveurdns named[2225]: received control channel command 'reconfig'
Aug 22 00:17:15 serveurdns named[2225]: loading configuration from '/etc/bind/named.conf'
Aug 22 00:17:15 serveurdns named[2225]: reading built-in trusted keys from file '/etc/bind/bind.keys'
Aug 22 00:17:15 serveurdns named[2225]: using default UDP/IPv4 port range: [1024, 65535]
Aug 22 00:17:15 serveurdns named[2225]: using default UDP/IPv6 port range: [1024, 65535]
Aug 22 00:17:15 serveurdns named[2225]: listening on IPv4 interface eth0, 10.0.0.10#53
Aug 22 00:17:15 serveurdns named[2225]: sizing zone task pool based on 7 zones
Aug 22 00:17:15 serveurdns named[2225]: using built-in root key for view _default
Aug 22 00:17:15 serveurdns named[2225]: Warning: 'empty-zones-enable/disable-empty-zone' not set: disabling RFC 1918 empty zones
Aug 22 00:17:15 serveurdns named[2225]: reloading configuration succeeded
Aug 22 00:17:15 serveurdns named[2225]: any newly configured zones are now loaded
Aug 22 00:20:24 serveurdns named[2225]: received control channel command 'stop -p'
Aug 22 00:20:24 serveurdns named[2225]: shutting down: flushing changes
Aug 22 00:20:24 serveurdns named[2225]: stopping command channel on 127.0.0.1#953
Aug 22 00:20:24 serveurdns named[2225]: stopping command channel on ::1#953
Aug 22 00:20:24 serveurdns named[2225]: no longer listening on ::#53
Aug 22 00:20:24 serveurdns named[2225]: no longer listening on 127.0.0.1#53
Aug 22 00:20:24 serveurdns named[2225]: no longer listening on 10.0.0.10#53
Aug 22 00:20:24 serveurdns named[2225]: exiting
Aug 22 00:20:25 serveurdns named[3455]: starting BIND 9.8.1-P1 -u bind
Aug 22 00:20:25 serveurdns named[3455]: built with '--prefix=/usr' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--sysconfdir=/etc/bind' '--localstatedir=/var' '--enable-threads' '--enable-largefile' '--with-libtool' '--enable-shared' '--enable-static' '--with-openssl=/usr' '--with-gssapi=/usr' '--with-gnu-ld' '--with-geoip=/usr' '--enable-ipv6' 'CFLAGS=-fno-strict-aliasing -DDIG_SIGCHASE -O2'
Aug 22 00:20:25 serveurdns named[3455]: adjusted limit on open files from 4096 to 1048576
Aug 22 00:20:25 serveurdns named[3455]: found 1 CPU, using 1 worker thread
Aug 22 00:20:25 serveurdns named[3455]: using up to 4096 sockets
Aug 22 00:20:25 serveurdns named[3455]: loading configuration from '/etc/bind/named.conf'
Aug 22 00:20:25 serveurdns named[3455]: reading built-in trusted keys from file '/etc/bind/bind.keys'
Aug 22 00:20:25 serveurdns named[3455]: using default UDP/IPv4 port range: [1024, 65535]
Aug 22 00:20:25 serveurdns named[3455]: using default UDP/IPv6 port range: [1024, 65535]
Aug 22 00:20:25 serveurdns named[3455]: listening on IPv6 interfaces, port 53
Aug 22 00:20:25 serveurdns named[3455]: listening on IPv4 interface lo, 127.0.0.1#53
Aug 22 00:20:25 serveurdns named[3455]: listening on IPv4 interface eth0, 10.0.0.10#53
Aug 22 00:20:25 serveurdns named[3455]: generating session key for dynamic DNS
Aug 22 00:20:25 serveurdns named[3455]: sizing zone task pool based on 7 zones
Aug 22 00:20:25 serveurdns named[3455]: using built-in root key for view _default
Aug 22 00:20:25 serveurdns named[3455]: set up managed keys zone for view _default, file 'managed-keys.bind'
Aug 22 00:20:25 serveurdns named[3455]: Warning: 'empty-zones-enable/disable-empty-zone' not set: disabling RFC 1918 empty zones
Aug 22 00:20:25 serveurdns named[3455]: automatic empty zone: 254.169.IN-ADDR.ARPA
Aug 22 00:20:25 serveurdns named[3455]: automatic empty zone: 2.0.192.IN-ADDR.ARPA
Aug 22 00:20:25 serveurdns named[3455]: automatic empty zone: 100.51.198.IN-ADDR.ARPA
Aug 22 00:20:25 serveurdns named[3455]: automatic empty zone: 113.0.203.IN-ADDR.ARPA
Aug 22 00:20:25 serveurdns named[3455]: automatic empty zone: 255.255.255.255.IN-ADDR.ARPA
Aug 22 00:20:25 serveurdns named[3455]: automatic empty zone: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Aug 22 00:20:25 serveurdns named[3455]: automatic empty zone: 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Aug 22 00:20:25 serveurdns named[3455]: automatic empty zone: D.F.IP6.ARPA
Aug 22 00:20:25 serveurdns named[3455]: automatic empty zone: 8.E.F.IP6.ARPA
Aug 22 00:20:25 serveurdns named[3455]: automatic empty zone: 9.E.F.IP6.ARPA
Aug 22 00:20:25 serveurdns named[3455]: automatic empty zone: A.E.F.IP6.ARPA
Aug 22 00:20:25 serveurdns named[3455]: automatic empty zone: B.E.F.IP6.ARPA
Aug 22 00:20:25 serveurdns named[3455]: automatic empty zone: 8.B.D.0.1.0.0.2.IP6.ARPA
Aug 22 00:20:25 serveurdns named[3455]: command channel listening on 127.0.0.1#953
Aug 22 00:20:25 serveurdns named[3455]: command channel listening on ::1#953
Aug 22 00:20:25 serveurdns named[3455]: zone 0.in-addr.arpa/IN: loaded serial 1
Aug 22 00:20:25 serveurdns named[3455]: zone 10.0.0.10.in-addr.arpa/IN: loaded serial 1
Aug 22 00:20:25 serveurdns named[3455]: zone 127.in-addr.arpa/IN: loaded serial 1
Aug 22 00:20:25 serveurdns named[3455]: zone 255.in-addr.arpa/IN: loaded serial 1
Aug 22 00:20:25 serveurdns named[3455]: zone localhost/IN: loaded serial 2
Aug 22 00:20:25 serveurdns named[3455]: zone ensias.org/IN: loaded serial 2
Aug 22 00:20:25 serveurdns named[3455]: managed-keys-zone ./IN: loaded serial 2
Aug 22 00:20:25 serveurdns named[3455]: running
Aug 22 00:20:25 serveurdns named[3455]: zone 10.0.0.10.in-addr.arpa/IN: sending notifies (serial 1)
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 62.251.229.237#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 62.251.229.237#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 62.251.229.223#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 62.251.229.237#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 62.251.229.223#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 62.251.229.223#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 192.228.79.201#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 128.63.2.53#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 199.7.83.42#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 192.228.79.201#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 192.228.79.201#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 128.63.2.53#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 2001:dc3::35#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 192.203.230.10#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 128.63.2.53#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 199.7.83.42#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 198.41.0.4#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 192.58.128.30#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 192.112.36.4#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 199.7.83.42#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 2001:dc3::35#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 2001:dc3::35#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 2001:7fd::1#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 2001:500:2f::f#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 192.203.230.10#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 192.203.230.10#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 192.33.4.12#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 2001:7fe::53#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 128.8.10.90#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 198.41.0.4#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 198.41.0.4#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 192.58.128.30#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 2001:500:1::803f:235#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 2001:500:3::42#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 192.58.128.30#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 192.112.36.4#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 202.12.27.33#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 2001:503:ba3e::2:30#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 2001:503:c27::2:30#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 192.112.36.4#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 2001:7fd::1#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 2001:7fd::1#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 193.0.14.129#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 192.5.5.241#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 2001:500:2f::f#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 2001:500:2f::f#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving './NS/IN': 192.36.148.17#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 192.33.4.12#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 192.33.4.12#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 2001:7fe::53#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 62.251.229.223#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 62.251.229.237#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 62.251.229.223#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 62.251.229.237#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 62.251.229.223#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 62.251.229.237#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 62.251.229.223#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 62.251.229.237#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 62.251.229.223#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 62.251.229.237#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 2001:7fe::53#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 128.8.10.90#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 198.41.0.4#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 192.228.79.201#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 192.203.230.10#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 198.41.0.4#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 192.228.79.201#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 192.203.230.10#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 198.41.0.4#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 192.228.79.201#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 192.203.230.10#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 198.41.0.4#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 192.228.79.201#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 192.203.230.10#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 198.41.0.4#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 192.228.79.201#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 192.203.230.10#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 128.8.10.90#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 2001:500:1::803f:235#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 2001:500:1::803f:235#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 192.112.36.4#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 128.63.2.53#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 192.112.36.4#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 128.63.2.53#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 192.112.36.4#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 128.63.2.53#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 192.112.36.4#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 128.63.2.53#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 192.112.36.4#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 128.63.2.53#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 2001:500:3::42#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 2001:500:3::42#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 192.58.128.30#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 199.7.83.42#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 2001:dc3::35#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 192.58.128.30#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 199.7.83.42#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 2001:dc3::35#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 192.58.128.30#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 199.7.83.42#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 2001:dc3::35#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 192.58.128.30#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 199.7.83.42#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 2001:dc3::35#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 192.58.128.30#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 199.7.83.42#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 2001:dc3::35#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 202.12.27.33#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 202.12.27.33#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 2001:503:ba3e::2:30#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 192.33.4.12#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 2001:500:2f::f#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 192.33.4.12#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 2001:500:2f::f#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 192.33.4.12#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 2001:500:2f::f#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 192.33.4.12#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 2001:500:2f::f#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 192.33.4.12#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 2001:500:2f::f#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 2001:503:ba3e::2:30#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 2001:503:c27::2:30#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 2001:7fe::53#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 2001:7fd::1#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 128.8.10.90#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 2001:7fe::53#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 2001:7fd::1#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 128.8.10.90#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 2001:7fe::53#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 2001:7fd::1#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 128.8.10.90#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 2001:7fe::53#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 2001:7fd::1#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 128.8.10.90#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 2001:7fe::53#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 2001:7fd::1#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 128.8.10.90#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 2001:503:c27::2:30#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 193.0.14.129#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 193.0.14.129#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 2001:503:ba3e::2:30#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 2001:500:1::803f:235#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 2001:503:ba3e::2:30#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 2001:500:1::803f:235#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 2001:503:ba3e::2:30#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 2001:500:1::803f:235#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 2001:503:ba3e::2:30#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'E.ROOT-SERVERS.NET/AAAA/IN': 2001:500:1::803f:235#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 2001:503:ba3e::2:30#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'G.ROOT-SERVERS.NET/AAAA/IN': 2001:500:1::803f:235#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/A/IN': 192.5.5.241#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'serveurdns/AAAA/IN': 192.5.5.241#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 2001:503:c27::2:30#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 2001:500:3::42#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'B.ROOT-SERVERS.NET/AAAA/IN': 202.12.27.33#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 2001:503:c27::2:30#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 2001:500:3::42#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'C.ROOT-SERVERS.NET/AAAA/IN': 202.12.27.33#53
Aug 22 00:20:25 serveurdns named[3455]: error (network unreachable) resolving 'D.ROOT-SERVERS.NET/AAAA/IN': 2001:503:c27::2:30#53

PascalHambourg · Février 21, 2016, 6:05pm

Toutes les erreurs “network unreachable” viennent de ce que les adresses définies comme forwarders et les serveurs DNS racines publics sont injoignables, non pas qu’ils ne répondent pas mais que ta machine ou le routeur qui lui sert de passerelle par défaut ne sait pas comment les contacter. C’est normal si ta machine est sur un réseau isolé sans connectivité internet. Dans ce cas, il faut

supprimer l’options forwarders dans named.conf.options ;
remplacer la zone racine de type “hint” déclarée dans named.conf.default-zones par une vraie zone racine de type “master”, avec comme seul NS racine ton propre serveur.

Si ta machine est sur un réseau ayant un accès internet, il manque peut-être la déclaration de la passerelle par défaut dans sa configuration IP.

Par contre le serveur devrait être capable de résoudre les requêtes pour les zones locales. Quelles requêtes as-tu faites, depuis quelle machine, vers quelle adresse de DNS, et avec quel résultat complet ?

Synchro · Février 21, 2016, 6:08pm

Bonjour

“- remplacer la zone racine de type “hint” déclarée dans named.conf.default-zones par une vraie zone racine de type “master”, avec comme seul NS racine ton propre serveur.”: Pour cela je n’ai laissé dans ce fichier le contenu de named.conf.local c’est ce que je devrais faire?

“supprimer l’options forwarders dans named.conf.options”

En faisant ces deux choses, ça ne donne rien: toujours les mêmes erreurs de ‘network unreachable’ dans syslog.

Je précise que le serveur dns que je veux créer est une machine virtuelle sous virtualbox, avec carte réseau “réseau privé hôte” avec l’adressage: 10.0.0.0/8 et serveur dhcp configuré pour ce réseau sur l’adresse 10.0.0.9.

On est pas supposé avoir de passerelle pour contacter un réseau externe, car je me limite à l’intranet!

donc j’ai pas configuré une passerelle par défaut pour l’interface réseau en question.

Les requêtes que je fait sont sur cette machines elle même. Je ne veux pas passer au requêtes par d’autres machines si ça marche pas à ce stade.

Synchro · Février 21, 2016, 6:08pm

J’ai résolu le problème

Ça parvenait du fait que cette ligne était manquante dans le fichier /etc/resolv.conf:

nameserver 10.0.0.10

Cad qu’il fallait ajouter l’adresse ip du serveur dans ce fichier, les deux premiers lignes contenant des adresses ip de serveurs dns dans des réseaux externes (ce dont je n’avais pas besoin en intranet). Je me souviens l’avoir déjà fait mais je pense que le système restaurait les adresses par défaut à partir du fichier: /etc/resolvconf/resolv.conf.d/tail

donc j’ai aussi ajouté la ligne dans ce fichier.

Mais t’a raison PascalHambourg en ce qui concerne enlever la zone de type ‘hint’ dans le fichier named.conf.default-zones. J’ai enlevé cette zone en gardant les autres zones préétablies, j’ai aussi enlevé l’option ‘forwarders’. Je garde mes deux zones directes et inverses dans le fichier named.conf.local

Je vais continuer le travail maintenant, s’il y’a aucun problème je déclare la discussion résolue.

Merci PascalHambourg

PascalHambourg · Février 21, 2016, 6:08pm

Ça m’étonnerait que les erreurs de named dans syslog aient un rapport avec ce fichier. BIND n’utilise pas resolv.conf ; ça reviendrait à s’interroger lui-même, ce qui n’aurait pas grand sens.
Par contre si après ce changement les requêtes DNS sur tes zones aboutissent, alors tu n’interrogeais pas la bonne adresse. Si le fichier resolv.conf était vide c’est un peut étonnant car dans ce cas la résolution DNS interroge 127.0.0.1, et par défaut BIND écoute sur toutes les adresses locales, dont celle-ci, sauf si on spécifie différemment avec l’option listen-on.

Je ne comprends pas cette phrase. Pas assez précise.

Si tu te contentes de l’enlever sans la remplacer, il me semble qu’à la place BIND utilise par défaut une zone racine de type hint codée en dur, donc c’est quasiment sans effet.