2

Can not stop named service

view story
linux-howto

http://forums.fedoraforum.org – Hi, all I am new in configuring named. I want to set my firewall (Fedora 11) as a name server. The local domain is a Windows domain. I'd like internal users translate domain name into IP on this server when they go to the internet. The firewall has 2 NICs. Internal nic: 192.168.69.100, network address: 192.168.69.0/24, Windows DNS/mail server 192.168.69.5. External nic: 59.167.100.181, network: 59.167.100.176/29. . 59.167.100.181, After reading some posts on the web, I set up named as below. It seems the named does the job but with some problems. 1) When I start the server, I couldn't find the named process even if the file "named" is in /etc/init.d. I can browse Internet on the server with domain name (DNS works locally). But internal users couldn't get the domain name translated. If I shutdown the server at this stage, it will shutdown within 1 minute. 2) If I run "service named start" after the server boot up, I see process "named" and named work okay. Both internal user and local host can browse Internet with domain name. However, any command starting with "service named" has no response after this, such as "service named status" or "service named stop". I can see it shows "stopping named" and this last forever. I have to kill the process then restart named server so that named may run again. 3) If I shutdown the server now, it will take 4-5 minute instead of 1 minute in 1). The shutdown stuck at "shutdown named" for 4 minutes. Even if I kill process named before the shutdown, it will take 4-5 minutes. It took me a week on this issue. I appreciate if you could take a look my configure files and guide me through this. Regards, Yuggie ##########/var/named/chroot/etc/Named.conf############ controls { inet 127.0.0.1 port 953 allow { 127.0.0.1; } keys { "rndckey"; }; }; # End of rndc part. options { # Respond DNS request from LAN on port 53 listen-on port 53 { 127.0.0.1; 192.168.69.100; }; # Disable TCP/IP V6 #listen-on-v6 port 53 { ::1; }; # inet ::1 allow { localhost; } keys { rndckey; }; directory "/var/named"; dump-file "/var/named/data/cache_dump.db"; statistics-file "/var/named/data/named_stats.txt"; memstatistics-file "/var/named/data/named_mem_stats.txt"; pid-file "/var/run/named/pid"; # quert range allow-query { localhost; 192.168.69.0/24; }; dnssec-enable yes; dnssec-validation yes; dnssec-lookaside . trust-anchor dlv.isc.org.; # New added. Transfer range allow-transfer { localhost; 192.168.69.0/24; }; # New added. Recursion range. No need here because it has been define in below views #allow-recursion { localhost; 192.168.69.0/24; }; }; logging { channel default_debug { file "/var/named/data/named.run"; severity dynamic; }; }; # Main change from here. Created on 23/11/2009 # # This part is for internal DNS information view "internal" { ## Basic settings match-clients { localhost; 192.168.69.0/24; }; recursion yes; zone "." IN { type hint; file "named.ca"; }; ## Define domain zone info for internal zone "company.com" IN{ type master; notify no; file "/var/named/zones/company.com.lan"; allow-update {none; }; }; ## define your IP info for internal zone "69.168.192.in-addr.arpa" IN { type master; file "/var/named/zones/69.168.192.db"; allow-update { none; }; }; include "/etc/named.rfc1912.zones"; }; # # # This part is for external DNS information view "external" { ## Basic settings match-clients { localhost; any; }; recursion no; zone "." IN { type hint; file "named.ca"; }; ## Define domain zone info for external zone "company.com" IN{ type master; notify no; file "/var/named/zones/company.com.wan"; allow-update {none; }; }; ## define your IP info for external zone "176.100.167.59.in-addr.arpa" IN { type master; file "/var/named/zones/176.100.167.59.db"; allow-update { none; }; }; }; ############################## ++++++/var/named/chroot/var/named/zones/176.100.167.59.db+++++ $TTL 86400 @ IN SOA gwwan.company.com. webmaster.company.com. ( 2009112301 ;Serial 3600 ;Refresh 1800 ;Retry 604800 ;Expire 86400 ;Minimum TTL ) IN NS gwwan.company.com. IN PTR company.com. IN A 255.255.255.248 ; IN MX 10 gwwan.company.com. 181 IN PTR gwwan.company.com. +++++++++++++++++++++++++++++++++++++++++++++++ &&&&&&&&&&/var/named/chroot/var/named/zones/69.168.192.db&&&&&&&&& $TTL 86400 @ IN SOA gwlan.company.com. webmaster.company.com. ( 2009112301 ;Serial 3600 ;Refresh 1800 ;Retry 604800 ;Expire 86400 ;Minimum TTL ) IN NS gwlan.company.com. IN PTR company.com IN A 255.255.255.0 100 IN PTR gwlan.company.com. 5 IN PTR srv01.company.com. &&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&& ^^^^^^^^^/var/named/chroot/var/named/zones/company.com.lan^^^^^^^^^^ $TTL 86400 @ IN SOA gwlan.company.com. webmaster.company.com. ( 2009112301 ;Serial 3600 ;Refresh 1800 ;Retry 604800 ;Expire 86400 ;Minimum TTL ) IN NS gwlan.company.com. IN A 192.168.69.100 IN MX 10 gwlan.company.com. gwlan A 192.168.69.100 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ %%%%%%%/var/named/chroot/var/named/zones/company.com.wan%%%%%%% $TTL 86400 @ IN SOA gwwan.company.com. webmaster.company.com. ( 2009112301 ;Serial 3600 ;Refresh 1800 ;Retry 604800 ;Expire 86400 ;Minimum TTL ) IN NS gwwan.company.com. IN A 59.167.100.181 IN MX 10 gwwan.company.com. gwwan A 59.167.100.181 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% (HowTos)