(43p-aix) [dalan] nslookup 43p *** Can't find server name for address 192.168.1.50:Query refused *** Default servers are not available (43p-aix) [dalan] I have shut off the firewall and SE-Linux on the Fedora system. I'm not sure why the fedora system is blocking/refusing the request coming from another system. I even put the following entries in iptables. SERVER_IP="192.168.1.50" iptables -A INPUT -p udp -s 0/0 --sport 1024:65535 -d $SERVER_IP --dport 53 -m state --state NEW,ESTABLISHED -j ACCEPT iptables -A OUTPUT -p udp -s $SERVER_IP --sport 53 -d 0/0 --dport 1024:65535 -m state --state ESTABLISHED -j ACCEPT iptables -A INPUT -p udp -s 0/0 --sport 53 -d $SERVER_IP --dport 53 -m state --state NEW,ESTABLISHED -j ACCEPT iptables -A OUTPUT -p udp -s $SERVER_IP --sport 53 -d 0/0 --dport 53 -m state --state ESTABLISHED -j ACCEPT iptables -A INPUT -p tcp -s 0/0 --sport 1024:65535 -d $SERVER_IP --dport 53 -m state --state NEW,ESTABLISHED -j ACCEPT iptables -A OUTPUT -p tcp -s $SERVER_IP --sport 53 -d 0/0 --dport 1024:65535 -m state --state ESTABLISHED -j ACCEPT iptables -A INPUT -p tcp -s 0/0 --sport 53 -d $SERVER_IP --dport 53 -m state --state NEW,ESTABLISHED -j ACCEPT iptables -A OUTPUT -p tcp -s $SERVER_IP --sport 53 -d 0/0 --dport 53 -m state --state ESTABLISHED -j ACCEPT I still have the same effect. Running the following shows that the system is refusing the connection. /usr/sbin/tcpdump -X port 53 [root at fc9 named]# /usr/sbin/tcpdump -X port 53 tcpdump: verbose output suppressed, use -v or -vv for full protocol decode listening on eth0, link-type EN10MB (Ethernet), capture size 96 bytes 21:39:38.512926 IP aix.sparish.local.52686 > fc9.sparish.local.domain: 46304+ PTR? 50.1.168.192.in-addr.arpa. (43) 0x0000: 4500 0047 ac22 0000 1e11 6ccd c0a8 0134 E..G."....l....4 0x0010: c0a8 0132 cdce 0035 0033 7c2c b4e0 0100 ...2...5.3|,.... 0x0020: 0001 0000 0000 0000 0235 3001 3103 3136 .........50.1.16 0x0030: 3803 3139 3207 696e 2d61 6464 7204 6172 8.192.in-addr.ar 0x0040: 7061 0000 0c00 01 pa..... 21:39:38.519048 IP fc9.sparish.local.domain > aix.sparish.local.52686: 46304 Refused- 0/0/0 (43) 0x0000: 4500 0047 0000 4000 4011 b6ef c0a8 0132 E..G.. at .@......2 0x0010: c0a8 0134 0035 cdce 0033 fc26 b4e0 8105 ...4.5...3.&.... 0x0020: 0001 0000 0000 0000 0235 3001 3103 3136 .........50.1.16 0x0030: 3803 3139 3207 696e 2d61 6464 7204 6172 8.192.in-addr.ar 0x0040: 7061 0000 0c00 01 pa..... Any help would be welcome Thanks ------=_Part_8786_29854090.1215052811715 Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline <div>Howdy,</div> <div> </div> <div>I have Fedora 9 installed and would like to use it as the DNS system in the house. </div> <div> </div> <div>The setup is as follows</div> <div> </div> <div>options {<br> listen-on port 53 { <a href="http://127.0.0.1">127.0.0.1</a>; };<br> listen-on-v6 port 53 { ::1; };<br> directory "/var/named";<br> dump-file "/var/named/data/cache_dump.db";<br> statistics-file "/var/named/data/named_stats.txt";<br> memstatistics-file "/var/named/data/named_mem_stats.txt";<br> allow-query { localhost; };<br> recursion yes;<br> forwarders {<br> <a href="http://68.87.77.130">68.87.77.130</a>;<br> <a href="http://68.87.72.130">68.87.72.130</a>;<br> };<br>};</div> <div>logging {<br> channel default_debug {<br> file "data/named.run";<br> severity dynamic;<br> };<br>};</div> <div>zone "." IN {<br> type hint;<br> file "<a href="http://named.ca">named.ca</a>";<br>};<br></div> <div><br>include "/etc/named.rfc1912.zones";</div> <div> </div> <div>zone "home.local" {<br> type master;<br> file "/var/named/home.local.hosts";<br> };</div> <div><br>zone "1.168.192.in-addr.arpa" {<br> type master;<br> file "1.168.192.in-addr.arpa.zone";<br> allow-update { key "rndckey"; };<br> notify yes;<br></div> <div> </div> <div>I have the files in /var/named setup and configured. From the DNS system I can type </div> <div>nslookup 43p and get the following</div> <div>[root at fc9 named]# vi /etc/named.conf<br>[root at fc9 named]# nslookup 43p<br>Server: <a href="http://127.0.0.1">127.0.0.1</a><br>Address: <a href="http://127.0.0.1#53">127.0.0.1#53</a></div> <div>Name: 43p.home.local<br>Address: <a href="http://192.168.1.52">192.168.1.52</a></div> <div> </div> <div>From a windows system I get the following</div> <div>C:\Users\dalan>nslookup 43p<br>Server: UnKnown<br>Address: <a href="http://192.168.1.50:53">192.168.1.50:53</a></div> <div>*** UnKnown can't find 43p: Query refused</div> <div> </div> <div>From the AIX system I get</div> <div>(43p-aix) [dalan] nslookup 43p<br>*** Can't find server name for address 192.168.1.50:Query refused<br>*** Default servers are not available<br>(43p-aix) [dalan]<br></div> <div>I have shut off the firewall and SE-Linux on the Fedora system. I'm not sure why the fedora system is blocking/refusing the request coming from another system.</div> <div>I even put the following entries in iptables.</div> <div>SERVER_IP="<a href="http://192.168.1.50">192.168.1.50</a>"<br>iptables -A INPUT -p udp -s 0/0 --sport 1024:65535 -d $SERVER_IP --dport 53 -m state --state NEW,ESTABLISHED -j ACCEPT<br>iptables -A OUTPUT -p udp -s $SERVER_IP --sport 53 -d 0/0 --dport 1024:65535 -m state --state ESTABLISHED -j ACCEPT<br> iptables -A INPUT -p udp -s 0/0 --sport 53 -d $SERVER_IP --dport 53 -m state --state NEW,ESTABLISHED -j ACCEPT<br>iptables -A OUTPUT -p udp -s $SERVER_IP --sport 53 -d 0/0 --dport 53 -m state --state ESTABLISHED -j ACCEPT</div> <div>iptables -A INPUT -p tcp -s 0/0 --sport 1024:65535 -d $SERVER_IP --dport 53 -m state --state NEW,ESTABLISHED -j ACCEPT<br>iptables -A OUTPUT -p tcp -s $SERVER_IP --sport 53 -d 0/0 --dport 1024:65535 -m state --state ESTABLISHED -j ACCEPT<br> iptables -A INPUT -p tcp -s 0/0 --sport 53 -d $SERVER_IP --dport 53 -m state --state NEW,ESTABLISHED -j ACCEPT<br>iptables -A OUTPUT -p tcp -s $SERVER_IP --sport 53 -d 0/0 --dport 53 -m state --state ESTABLISHED -j ACCEPT</div> <div> </div> <div>I still have the same effect.</div> <div> </div> <div>Running the following shows that the system is refusing the connection.</div> <div>/usr/sbin/tcpdump -X port 53</div> <div><br>[root at fc9 named]# /usr/sbin/tcpdump -X port 53<br>tcpdump: verbose output suppressed, use -v or -vv for full protocol decode<br>listening on eth0, link-type EN10MB (Ethernet), capture size 96 bytes<br>21:39:38.512926 IP aix.sparish.local.52686 > fc9.sparish.local.domain: 46304+ PTR? 50.1.168.192.in-addr.arpa. (43)<br> 0x0000: 4500 0047 ac22 0000 1e11 6ccd c0a8 0134 E..G."....l....4<br> 0x0010: c0a8 0132 cdce 0035 0033 7c2c b4e0 0100 ...2...5.3|,....<br> 0x0020: 0001 0000 0000 0000 0235 3001 3103 3136 .........50.1.16<br> 0x0030: 3803 3139 3207 696e 2d61 6464 7204 6172 <a href="http://8.192.in-addr.ar">8.192.in-addr.ar</a><br> 0x0040: 7061 0000 0c00 01 pa.....<br>21:39:38.519048 IP fc9.sparish.local.domain > aix.sparish.local.52686: 46304 Refused- 0/0/0 (43)<br> 0x0000: 4500 0047 0000 4000 4011 b6ef c0a8 0132 <a href="mailto:E..G.. at .@......2">E..G.. at .@......2</a><br> 0x0010: c0a8 0134 0035 cdce 0033 fc26 b4e0 8105 ...4.5...3.&....<br> 0x0020: 0001 0000 0000 0000 0235 3001 3103 3136 .........50.1.16<br> 0x0030: 3803 3139 3207 696e 2d61 6464 7204 6172 <a href="http://8.192.in-addr.ar">8.192.in-addr.ar</a><br> 0x0040: 7061 0000 0c00 01 pa.....<br></div> <div> </div> <div>Any help would be welcome</div> <div> </div> <div>Thanks</div> ------=_Part_8786_29854090.1215052811715--