Bind9 Configuration
Oct 29, 2007Does anyone know of a clear guide on how to configure bind9 dns with your domain?
View 2 RepliesDoes anyone know of a clear guide on how to configure bind9 dns with your domain?
View 2 RepliesBelow are my zone files and i receive the errors as specified.
[url]
Code:
BIND data file for mysite.org
;
$TTL 604800
@ IN SOA [url] (
2007011501 ; Serial
7200 ; Refresh
120 ; Retry
2419200 ; Expire
604800) ; Default TTL
;
@ IN NS [url]
@ IN NS [url]
[url] IN MX 10 [url]
[url] IN A 200.19.227.135
www IN CNAME [url]
mail IN A 200.19.227.135
ftp IN CNAME [url]
[url] IN TXT "v=spf1 ip4:200.19.227.135 a mx ~all"
mail IN TXT "v=spf1 a -all"
mysite:/etc/bind/zones/master#
Code:
;
;dns_rdata_fromtext: [url]:10: near eol: unexpected end of input
zone [url]: loading master file [url]: unexpected end of input
200.19.227.rev
Code:
mysite:/etc/bind/zones/master# more 200.19.227.rev
$TTL 1d ;
$ORIGIN 227.19.200.IN-ADDR.ARPA.
@ IN SOA [url] (
2007011501
7200
120
2419200
604800
)
IN NS [url]
IN NS [url]
1 IN PTR [url]
2 IN PTR [url]
mysite:/etc/bind/zones/master#
Code:
mysite:/etc/bind/zones/master# named-checkzone mysite.org 200.19.227.rev
200.19.227.rev:3: ignoring out-of-zone data (227.19.200.IN-ADDR.ARPA)
dns_rdata_fromtext: 200.19.227.rev:8: near eol: unexpected end of input
200.19.227.rev:12: ignoring out-of-zone data (1.227.19.200.IN-ADDR.ARPA)
200.19.227.rev:13: ignoring out-of-zone data (2.227.19.200.IN-ADDR.ARPA)
[url]/IN: loading master file 200.19.227.rev: unexpected end of input
How to correct these errors?
Switching from Windows DNS to bind DNS. Slightly different as I have to learn the commands instead of using the GUI. Can you tell me if the below config is correct to run mydomain.net so people can access it from the web? It will also be acting as its own name servers. This is purely for external DNS. The private IPs will be changed to routable ones once its in the DC.
Have I missed anything or is that good enough for deployment to the live environment?
I have this in /etc/bind/zones/mydomain.net.db
; mydomain.net
$TTL 604800
@ IN SOA ns0.mydomain.net. admin.mydomain.net. (
2008012001 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800); Negative Cache TTL
; nameservers
mydomain.net IN NS ns0.mydomain.net
mydomain.net IN NS ns1.mydomain.net
ns0 IN A 192.168.1.15
ns1 IN A 192.168.1.16
;mail
mail IN MX 10 mail
mail IN A 192.168.1.17
; web
IN A 192.168.1.17
www IN A 192.168.1.17
And in /etc/bind I have this in my named.conf.local file
# This is the zone definition for // mydomain.net //
zone "mydomain.net" {
type master;
file "/etc/bind/zones/mydomain.net.db";
};
Im expericiencing some dificulties to load more than 500 ips and create the socket for personalized dns.
i got "could not listen on UDP socket: not enough free resources"
I suppose theres a limit on bind9, i was looking on docc ...
i have an email saying that Plesk has failed to update:Failed to update Plesk. To solve this problem, you can send the update log to Parallels support.
OS: Ubuntu 14.04.2 LTS
Plesk version: 12.0.18 Update #53 , last updated at July 7, 2015 06:30 AM. uRL...
It looks like something with Bind9 failed, however i'm not totally sure. I have DNS installed, however its not used. It had to be installed to generate the domain keys for email authentication.My sites still work, however it looks like the DNS option is no long present in Plesk.ow to proceed with the update?
I was looking into setting up a new VPS server, without Parallels.
I have a dedicated server running centos. I was thinking about putting Xen on it and the use lxadmin instead of cpanel.
Any thoughts or experience with that setup.
I just found about about csf so I uninstall afp, bfd and install csf. spend time setting it up but still not getting lik what i want can some one post their csf so i can take a look.
I want to received e-mail at least for the following:
1. someone login ssh
2. someone using su (fail and pass)
3. someone try to brutal force (notify like bfd)
4. possible break in attemp like bfd
5. when ip got ban from brutal force
6. .... and all that good stuff that keep u alert.
it's possible to notify when someone try to login whm and cpanel?
Hello All,
I have almost everything setup for my VPS except for the firewall.
Someone told me that you can screw up your VPS if you configure your firewall incorrectly.
Can someone please guide me through? Which firewall should I use? and what all configurations should I make?
My VPS is on Debian 4 and I already have webmin configured on it. It does shows me an option to install a firewall but I just dont have enough courage to do so.
Thanks in advance,
Imoracle
I installed Mod_Security on my Cent OS server today and having some problem in configurating it.
Problem -
I have added this module in 'httpd.conf' file
Code:
<IfModule mod_security.c>
SecFilterEngine On
SecServerSignature "Apache"
SecFilterCheckUnicodeEncoding Off
SecAuditEngine RelevantOnly
SecAuditLog logs/audit_log
SecFilterScanPOST On
SecFilterDefaultAction "deny,log,status:403"
SecFilterSelective REQUEST_METHOD "^POST$" chain
SecFilterSelective HTTP_Content-Length "^$"
SecFilterSelective HTTP_Transfer-Encoding "!^$"
SecFilterSelective ARG_PHPSESSID "!^[0-9a-z]*$"
SecFilterSelective COOKIE_PHPSESSID "!^[0-9a-z]*$"
SecFilter "../"
SecFilter "viewtopic.php?" chain
SecFilter "chr(([0-9]{1,3}))" "deny,log"
SecFilterSelective THE_REQUEST "wget "
SecFilterSelective THE_REQUEST "lynx "
SecFilterSelective THE_REQUEST "scp "
SecFilterSelective THE_REQUEST "ftp "
SecFilterSelective THE_REQUEST "cvs "
SecFilterSelective THE_REQUEST "rcp "
SecFilterSelective THE_REQUEST "curl "
SecFilterSelective THE_REQUEST "telnet "
SecFilterSelective THE_REQUEST "ssh "
SecFilterSelective THE_REQUEST "echo "
SecFilterSelective THE_REQUEST "links -dump "
SecFilterSelective THE_REQUEST "links -dump-charset "
SecFilterSelective THE_REQUEST "links -dump-width "
SecFilterSelective THE_REQUEST "links http:// "
SecFilterSelective THE_REQUEST "links ftp:// "
SecFilterSelective THE_REQUEST "links -source "
SecFilterSelective THE_REQUEST "mkdir "
SecFilterSelective THE_REQUEST "cd /tmp "
SecFilterSelective THE_REQUEST "cd /var/tmp "
SecFilterSelective THE_REQUEST "cd /etc/httpd/proxy "
SecFilterSelective THE_REQUEST "/config.php?v=1&DIR "
SecFilterSelective THE_REQUEST "/../../ "
SecFilterSelective THE_REQUEST "&highlight=%2527%252E "
SecFilterSelective THE_REQUEST "changedir=%2Ftmp%2F.php "
# Very crude filters to prevent SQL injection attacks
SecFilter "delete[[:space:]]+from"
SecFilter "insert[[:space:]]+into"
SecFilter "select.+from"
# Weaker XSS protection but allows common HTML tags
SecFilter "<[[:space:]]*script"
# Prevent XSS atacks (HTML/Javascript injection)
SecFilter "<(.|n)+>"
</IfModule>
But my website is multi forum hosting and requires 'index.php' file to pass parameter to make it work.
Example -
[url]
[url]
[url]
So i had to delete below mention code from above module.
Code:
SecFilterSelective REQUEST_METHOD "^POST$" chain
SecFilterSelective HTTP_Content-Length "^$"
SecFilterSelective HTTP_Transfer-Encoding "!^$"
SecFilterSelective ARG_PHPSESSID "!^[0-9a-z]*$"
SecFilterSelective COOKIE_PHPSESSID "!^[0-9a-z]*$"
SecFilter "../"
Do you think this configuration is doable?
Dual Core/Core2Duo
2GB Ram
500GB HDD
100mbps port
Win 2003/2008 Web Edition
~2000-3000GB bandwidth
~$100/month?
I need your opinion on the best drive configuration for my Dell poweredge 2850 dual 3.0.
I have 6 x 72gb scsi 10k hds, and perc4 raid in server. My os will be Cent os with 4 gigs of ram installed. I want to try to make this server as redundant as possible.
Offsite backup is also in plans. I’m going to use this server for a few sites (5 - 10) that are db driven, and host small video clips as Dolphin Smart Community. Server will be colocated. Please let me know if missed something .
serverlof but dedicadet bought and set up on my vmserver not connect to the internet vps.
Companies can connect to the internet with NAT, but only with my NAT can not connect to the internet with the other global ip.
Information about how to do VMServer settings may wonder Do you have friends?
i have node 16 cpu AMD 64 gb ram HDD sas 15 with raid 10 /hypervm + openvz i host 10 vps
my problem when any vps load go over 2 the Node load go to 30 - 40 some time 100 i set CPU UNITS , Number Of CPUS and Cpu Usage for every vps but the load in node is go up
how i can set limit in vps and prevent from effect on load Node?
I Want to use ASSP for a large number of server with different IP,
ASSP is use as SMTP proxy for the outbound traffic,
In Relaying > AcceptAllMail in put my network,
the question is : does the network will be scanned by assp, i have see that the network contribute to the whitelist?
My VPS mostly have problem of over load and its beacuse of lot of mails in Mail Queue,
Can any one recommend me best best Exim Configuration in cpanel.
I think no mail stay in Queue more then 2 hours. It delete autometically or any other thing you recommend. It help me for less load.
Can not connect to remote socket.
IO:ocket::INET configuration failederror:00000000:lib(0):func(0):reason(0)
This can caused by a few things:
The cPGSD server is not running on 127.0.0.1:2082
There is a firewall blocking access to 127.0.0.1:2082
127.0.0.1 is not the right IP and/or 2082 is not the right port
Solar Flares (Please contact support to investigate)
I used Cpanel 11 dont known where turn off firewall T-T
I just bought a subscription to dnsmadeeasy and changed my nameservers already. Now I did a dns report check and found the following: Reverse MX A records (PTR)ERROR: No reverse DNS (PTR) entries. The problem MX records are:
68.x.x.x.in-addr.arpa -> no reverse (PTR) detected
You should contact your ISP and ask him to add a PTR record for your ips
Can anyone tell me how to fix this with the dnsmadeeasy interface? I tried adding a PTR record, typed the IP but it always adds my domain name at the end.
Additionally, the IP it says 68.x.x.x is completely different from my server.. which is 69.x.x.x -- how is that ? The SOA record isrimary nameserver: ns0.dnsmadeeasy.com
Hostmaster E-mail address: dns.dnsmadeeasy.com
Serial #: 2008010106
Refresh: 43200
Retry: 3600
Expire: 1209600 2 weeksDefault TTL: 180
Is this default TTL too little? I checked some other domains and it was always more. MX Records:
I have a dedicated server with hostname named after my primary domain and mail on mail.example.com
But now when I add other domains via dnsmadeeasy, the mx only allows mail.thisdomain.com instead of mail.example.com
Is this normal? Do I just need to enter the main IP of my server and that's it? The name itself does not matter?
we installed CMS for our website, when a client want to signup to our website, the confirmation email send to theie Spam Box, we want to our email send to theire Inbox. how can i resolve this problem?
View 6 Replies View RelatedI've recently been trying to get my domain name volmasoft.com onto my new vps.
What i've done so far:
* setup a host for ns1.volmasoft.com to go to 69.162.73.83
* setup a host for ns2.volmasoft.com to go to 69.162.73.84
* Set volmasoft.com to use ns1.volmasoft.com and ns2.volmasoft.com.
After 3 days it's finally gone off the godaddy page and proporgated (or so I thought)
I now get an "address not found" I can't trace the domain, nor ping it as it can't resolve the domain. However the whois does show that it's set to the ns1 and ns2 nameservers and IP of 69.162.73.83.
I recently moved to a VPS and installed Postfix onto it as my mail server. But I have following problems with its consistent working:
1. I experience that every now and then (once in 2 weeks) , it stops sending mails and put them in the mail queue with the following error:
Host or domain name not found. Name service error for name= type=MX: mysite.com not found, try again
I am not sure why it says so. However if I try to restart my mail server /etc/init.d/postfix restart and then try to flush the mails out of queue they are sent successfully. I am not sure where the problem is.
2. Secondly, I see that the header of my mails contains the hostname of my VPS machine "gospel" which is ofcourse not intended. How can I have my domain name in the mail headers?
I have setup the cPGS Configuration from within my WHM
View 0 Replies View RelatedI notice the server is really slow and it takes awhile to connect and cause connection timed out. So I changed the default apache setting to
<IfModule prefork.c>
StartServers 16
MinSpareServers 10
MaxSpareServers 40
MaxClients 250
MaxRequestsPerChild 2000
</IfModule>
and it seems to be normal again. Right now there is 2000 visitors going to the website and possibly 3000/hour during peek hours. The page is in php/mysql, 4 mysql queries per page.
When I goto CPU/MEMORY/MYSQL usage in WHM, there is a red color bar and the information is
UserDomain%CPU%MEMMySQL Processes
nobody39.11139.640.0
139.64%ram
The server specs is
Processor Information
Processor #1 Vendor: GenuineIntel
Processor #1 Name: Intel(R) Core(TM)2 CPU 6320 @ 1.86GHz
Processor #1 speed: 1862.000 MHz
Processor #1 cache size: 4096 KB
Processor #2 Vendor: GenuineIntel
Processor #2 Name: Intel(R) Core(TM)2 CPU 6320 @ 1.86GHz
Processor #2 speed: 1862.000 MHz
Processor #2 cache size: 4096 KB
Memory Information
Memory: 1015156k/1031168k available (2043k kernel code, 14404k reserved, 846k data, 232k init, 112872k highmem)
Physical Disks
sda: Write Protect is off
sda: Mode Sense: 00 3a 00 00
sda: Write Protect is off
sda: Mode Sense: 00 3a 00 00
Current Memory Usage
total used free shared buffers cached
Mem: 1017280 929648 87632 0 28292 138916
-/+ buffers/cache: 762440 254840
Swap: 2096472 84416 2012056
Total: 3113752 1014064 2099688
Current Disk Usage
Filesystem Size Used Avail Use% Mounted on
/dev/sda5 286G 4.4G 267G 2% /
/dev/sda1 99M 15M 80M 16% /boot
tmpfs 497M 0 497M 0% /dev/shm
/dev/sda3 996M 40M 905M 5% /tmp
Is the server fine as of right now or can I tweak it or add a extra stick of ram because it seems there are only 80mb of free ram?
Can somebody help me out with a simple iptables configuration? I basically need to deny all traffic except the following external ports:
tcp port 2020 for ssh
tcp port 3306 for mysql
tcp port 80 for http
icmp port for pinging
my.cnf configuration
What should be the best configuration(my.cnf) for MySQL in this server :
AMD Athlon(tm) 64 X2 Dual Core Processor 4200+
cache size: 512 KB
speed: 2200.246 MHz
4GB RAM DDR2
350 GB HDD
my current my.cnf contains this :
[mysqld]
set-variable = max_connections=500
set-variable = max_user_connections=100
set-variable = wait_timeout=100
set-variable = interactive_timeout=100
set-variable = local-infile=0
query_cache_limit=30M
query_cache_size=64M
query_cache_type=1
max_allowed_packet=30M
old-passwords = 1
skip-networking
[client]
port = 3306
socket = /var/lib/mysql/mysql.sock
[mysqld]
port = 3306
socket = /var/lib/mysql/mysql.sock
Lets assume I have the following equipment Hardware Firewall, Switch, 1U KVMoIP, 1U server and a 0U APC Switchable Power strip.
So there is 1 FastE ethernet drop.
Code:
FastE
||
Firewall
||
Switch -> KVMoIP
-> APC
-> Server
Of course, then
KVMoIP
||
Server
My question is, which comes first after the FastE drop, firewall then switch or vice-versa?
After increasing to 4 Giga memory ram is still a problem exists I could see there is heavy cpu and mysql usage from the Vbulletin forum of the domain " kuwaitup.com".
The mysql configuration had been tweaked in the server and also max allowed connection had been increased to 600 from 500. and i think It is need to optimize the database " q8upcom_vb" so how we can make it ? and in my server only one site
dedicated SERVER
Intel(R) Xeon(TM) CPU 3.06GHz 4CPUS
4000mb ram
100GB type/configuration: Unknown
linux CENTOS Enterprise 4.4 i686
apache/IIS version: apache 1.3.37 (Unix)
PHP version: php 4.4.4
MySQL version: mysql 4.1.22-standard
I'm left with the task of replacing a Gateway 7210 w/raid 5 array.
We have a lease deal with Dell so it must be a Dell Box.
This is only being used to host one e-commerce website getting about 20,000 uniques a day with a 70,000 MSSQL DB.
Here's what Dell recommended.
222-5262
1 Dual Core Xeon Processor 5140 4MB Cache, 2.33GHz, 1333MHz` FSB, PE1900
466-0823
1 4GB 667MHz (4X1GB), Dual Ranked Fully Buffered DIMMs
430-1765
1 Broadcom TCP/IP Offload EngineNot Enabled
341-3962
1 36GB 15K RPM SAS Hard Drive
341-3018
1 PERC 5/i, Integrated Controller Card
341-3052
1 No Floppy Drive
420-5796
1 Windows Server 2003 R2 Standard Edition, Includes 5 CALs
430-1764
1 Embedded Broadcom NetXtreme II5708 GigabitEthernet NIC
313-4571
1 48X IDE CD-RW/DVD ROM Drive for PowerEdge 2900/1900
341-3962
1 36GB 15K RPM SAS Hard Drive
341-4020
1 Integrated SAS/SATA RAID 5 PERC 5/i Integrated
341-3962
1 36GB 15K RPM SAS Hard Drive
How would you build it?
I was wondering how cban can be set up to track the bandwidth of a users who use different directories. I have a linux server running apache.
I read everything I can get my hands on about it and I'm still a bit confused.
I'm thinking that it might be a an htaccess command that defines the user's directory using the <CBandUser user_name> command.
It looks like the cban site and forum are down but I did find some info off their site using archive.org
I have a membership site and each member has their own directory and I'd like track the usage of each directory. It's my understanding that is is possible using Cband just not sure how it works exactly.
I want to buy soon a Dell PowerEdge SC1435, as my first 1U server.
I will hook it to a co-location data center, near by my place.
Feel free to tell me if you see some bad choice related to server options:
Dual Core AMD Opteron 2212HE 2.0GHz, 2x1MB Cache, 1Ghz HyperTransport
No Operating System
No Memory (if possible, plan to buy recognized performance brand)
24X IDE CD-ROM
SAS 5IR internal RAID adapter, PCI-Express
Add-in SAS5iR RAID Controller which supports 2 SAS Hard Drives - RAID 1
No Hard Drives (I already purchased 2 Fujitsu 73GB 15K SCSI ULTRA320 80pin HD's - Part MAU3073NC)
On-Board Dual Gigabit Network Adapter, No TOE
Rack Chassis with Static Rapid Rails, 1U
Riser with 1 PCIe Slot
Broadcom DualPort TCP/IP Offload Engine Not Enabled, Linux OS Only
Bezel
I have the 2 Fujitsu 73GB HD's and plan to set them into a RAID 1 array.
Will the RAID controllers from Dell be compatible with the above HD's?
Do you recommend me NOT to get the Dell controllers and purchase instead a different brand?
I have a website with 30 000 daily visitors, suddenly it down to 8 000, then i changed of hosting provider, but i have the same problem, i know that my real visitors are more than 8000.
View 3 Replies View RelatedI can't correct configure the open_basedir. Safe_mode on server is enabled. Now path to accounts is: /var/www/webx/ . I would like change this path to /webx/ On server are some accounts. How can I do it?
What I did:
-> I set path in php.ini file (/etc/php4/apache2) in open_basedir = line to:
/webx/ and /var/www/webx/ too. Without effect.
-> I added
<Directory /webx/>
php_admin_value open_basedir /webx/
</Directory>
in /etc/apache2/apach2.conf and /etc/apache2/confixx_mhost.conf
Without effect.
After any change I was restarting the apache service through /etc/init.d/apache2 restart, of course.