I added the allow-query statement to the options section at the top of named.conf and restarted DNS but no change. I also changed the /ect/resolv.conf file, however; how do you keep dhcp from changing it when it gets eth0 ip information from the dsl modem? I'm pretty sure the firewall isn't blocking anything because I copied all the same iptables rules from the Fedora Core 3 Bible and that set of rules just sets up masquerade for the LAN, blocks everything from outside but web and ftp, etc (which I didn't allow from outside), but all the traffic inside the LAN is allowed. So anything at all should be able to pass between two LAN ips. (any more thoughts?) > -----Original Message----- > From: tclug-list-bounces at mn-linux.org [mailto:tclug-list-bounces at mn- > linux.org] On Behalf Of Chad Walstrom > Sent: Wednesday, October 25, 2006 9:18 AM > To: tclug-list at mn-linux.org > Subject: Re: [tclug-list] BIND 9 > > > Quick follow up. I changed the forwarders that I was using in the > > named.conf file and domain names seem to be resolving OK now. > > Good. > > > But I'm still not getting an answer for my local domain pinging from > > the XP workstation. How do I get the linux box to first look at its > > own DNS? > > /etc/resolv.conf should have "nameserver 127.0.0.1" in it as the fist > nameserver. Also make sure bind is answering on 127.0.0.1. You can > also make sure no one queries your name server unless you allow it by > adding something like this to your /etc/bind/named.conf file: > > allow-query { > 192.168.0.0/24; > 127.0.0.1/32; > }; > > Make sure you're not firewalling off DNS on the linux box from the > internal network, too. > > -- > Chad Walstrom <chewie at wookimus.net> http://www.wookimus.net/ > assert(expired(knowledge)); /* core dump */ > > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list at mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list