[gentoo-user] Bind Questions... - gentoo-user - Gentoo Mailing List Archives

From:	Hiren Dave <hiren2k4@×××××.com>
To:	gentoo-user@l.g.o, VGLUG@××××××××××××.com
Subject:	[gentoo-user] Bind Questions...
Date:	Sun, 12 Mar 2006 09:53:01
Message-Id:	`a944a7520603120147q1ea6c4eg7a2ba833647056ba@mail.gmail.com`

1

Hi All,

2

3

I am facing one problem. Here is a message log from server1(Master DNS) and

4

server2(Slave DNS) on domain guru.com

5

6

=================SERVER1.GURU.COM===============================

7

8

Mar 12 15:40:57 server1 kernel: Disabled Privacy Extensions on device

9

c0366c20(lo)

10

11

Mar 12 15:40:57 server1 network: Bringing up loopback interface: succeeded

12

13

Mar 12 15:40:57 server1 kernel: ip_tables: (C) 2000-2002 Netfilter core team

14

15

Mar 12 15:41:00 server1 network: Bringing up interface eth0: succeeded

16

17

Mar 12 15:41:57 server1 named[2760]: shutting down: flushing changes

18

19

Mar 12 15:41:57 server1 named[2760]: stopping command channel on

20

127.0.0.1#953

21

22

Mar 12 15:41:57 server1 named[2760]: no longer listening on 127.0.0.1#53

23

24

Mar 12 15:41:57 server1 named[2760]: no longer listening on 192.168.0.2#53

25

26

Mar 12 15:41:57 server1 named[2760]: exiting

27

28

Mar 12 15:41:57 server1 named: succeeded

29

30

Mar 12 15:41:59 server1 named[3042]: starting BIND 9.2.4 -u named -t

31

/var/named/chroot

32

33

Mar 12 15:41:59 server1 named[3042]: using 1 CPU

34

35

Mar 12 15:41:59 server1 named: named startup succeeded

36

37

Mar 12 15:41:59 server1 named[3042]: loading configuration from

38

'/etc/named.conf'

39

40

Mar 12 15:41:59 server1 named[3042]: listening on IPv4 interface lo,

41

127.0.0.1#53

42

43

Mar 12 15:41:59 server1 named[3042]: listening on IPv4 interface eth0,

44

192.168.0.2#53

45

46

Mar 12 15:41:59 server1 named[3042]: command channel listening on

47

127.0.0.1#953

48

49

Mar 12 15:41:59 server1 named[3042]: zone 0.0.127.in-addr.arpa/IN: loaded

50

serial 0

51

52

Mar 12 15:41:59 server1 named[3042]: zone 0.168.192.in-addr.arpa/IN: loaded

53

serial 0

54

55

Mar 12 15:41:59 server1 named[3042]: zone guru.com/IN: loaded serial 0

56

57

Mar 12 15:41:59 server1 named[3042]: zone localhost/IN: loaded serial 0

58

59

Mar 12 15:41:59 server1 named[3042]: running

60

61

Mar 12 15:47:08 server1 named[3042]: client 192.168.0.3#1027: transfer of '

62

0.168.192.in-addr.arpa/IN': AXFR started

63

64

Mar 12 15:47:09 server1 named[3042]: client 192.168.0.3#1028: transfer of '

65

guru.com/IN': AXFR started

66

67

Mar 12 15:47:56 server1 named[3042]: client 192.168.0.3#1029: transfer of '

68

0.168.192.in-addr.arpa/IN': AXFR started

69

70

Mar 12 15:48:08 server1 named[3042]: client 192.168.0.3#1030: transfer of '

71

guru.com/IN': AXFR started

72

73

Mar 12 15:49:53 server1 named[3042]: client 192.168.0.3#1031: transfer of '

74

guru.com/IN': AXFR started

75

76

Mar 12 15:49:55 server1 named[3042]: client 192.168.0.3#1032: transfer of '

77

0.168.192.in-addr.arpa/IN': AXFR started

78

79

Mar 12 15:53:00 server1 named[3042]: client 192.168.0.3#1033: transfer of '

80

guru.com/IN': AXFR started

81

82

Mar 12 15:53:46 server1 named[3042]: client 192.168.0.3#1034: transfer of '

83

0.168.192.in-addr.arpa/IN': AXFR started

84

=========================END====================================

85

86

 =================SERVER2.GURU.COM===============================

87

88

Mar 12 15:38:06 server2 named[2881]: transfer of '0.168.192.in-addr.arpa/IN'

89

from 192.168.0.2#53: failed while receiving responses: permission denied

90

91

Mar 12 15:38:06 server2 named[2881]: transfer of '0.168.192.in-addr.arpa/IN'

92

from 192.168.0.2#53: end of transfer

93

94

Mar 12 15:38:07 server2 named[2881]: dumping master file: tmp-XXXX8In1Va:

95

open: permission denied

96

97

Mar 12 15:38:07 server2 named[2881]: transfer of 'guru.com/IN' from

98

192.168.0.2#53: failed while receiving responses: permission denied

99

100

Mar 12 15:38:07 server2 named[2881]: transfer of 'guru.com/IN' from

101

192.168.0.2#53: end of transfer

102

103

Mar 12 15:38:07 server2 kernel: audit(1142158087.021:0): avc: denied { write

104

} for pid=2882 exe=/usr/sbin/named name=named dev=dm-0 ino=622131

105

scontext=root:system_r:named_t tcontext=system_u:object_r:named_zone_t

106

tclass=dir

107

108

Mar 12 15:38:53 server2 named[2881]: dumping master file: tmp-XXXXU7SDSa:

109

open: permission denied

110

111

Mar 12 15:38:53 server2 named[2881]: transfer of '0.168.192.in-addr.arpa/IN'

112

from 192.168.0.2#53: failed while receiving responses: permission denied

113

114

Mar 12 15:38:53 server2 named[2881]: transfer of '0.168.192.in-addr.arpa/IN'

115

from 192.168.0.2#53: end of transfer

116

117

Mar 12 15:38:53 server2 kernel: audit(1142158133.521:0): avc: denied { write

118

} for pid=2882 exe=/usr/sbin/named name=named dev=dm-0 ino=622131

119

scontext=root:system_r:named_t tcontext=system_u:object_r:named_zone_t

120

tclass=dir

121

122

Mar 12 15:39:05 server2 named[2881]: dumping master file: tmp-XXXXHYCIDL:

123

open: permission denied

124

125

Mar 12 15:39:05 server2 named[2881]: transfer of 'guru.com/IN' from

126

192.168.0.2#53: failed while receiving responses: permission denied

127

128

Mar 12 15:39:05 server2 named[2881]: transfer of 'guru.com/IN' from

129

192.168.0.2#53: end of transfer

130

131

Mar 12 15:39:05 server2 kernel: audit(1142158145.520:0): avc: denied { write

132

} for pid=2882 exe=/usr/sbin/named name=named dev=dm-0 ino=622131

133

scontext=root:system_r:named_t tcontext=system_u:object_r:named_zone_t

134

tclass=dir

135

136

Mar 12 15:40:51 server2 named[2881]: dumping master file: tmp-XXXXYRYrFA:

137

open: permission denied

138

139

Mar 12 15:40:51 server2 named[2881]: transfer of 'guru.com/IN' from

140

192.168.0.2#53: failed while receiving responses: permission denied

141

142

Mar 12 15:40:51 server2 named[2881]: transfer of 'guru.com/IN' from

143

192.168.0.2#53: end of transfer

144

145

Mar 12 15:40:51 server2 kernel: audit(1142158251.528:0): avc: denied { write

146

} for pid=2882 exe=/usr/sbin/named name=named dev=dm-0 ino=622131

147

scontext=root:system_r:named_t tcontext=system_u:object_r:named_zone_t

148

tclass=dir

149

150

Mar 12 15:40:53 server2 named[2881]: dumping master file: tmp-XXXXjkjuJv:

151

open: permission denied

152

153

Mar 12 15:40:53 server2 named[2881]: transfer of '0.168.192.in-addr.arpa/IN'

154

from 192.168.0.2#53: failed while receiving responses: permission denied

155

156

Mar 12 15:40:53 server2 named[2881]: transfer of '0.168.192.in-addr.arpa/IN'

157

from 192.168.0.2#53: end of transfer

158

159

Mar 12 15:40:53 server2 kernel: audit(1142158253.519:0): avc: denied { write

160

} for pid=2882 exe=/usr/sbin/named name=named dev=dm-0 ino=622131

161

scontext=root:system_r:named_t tcontext=system_u:object_r:named_zone_t

162

tclass=dir

163

164

Mar 12 15:43:58 server2 named[2881]: dumping master file: tmp-XXXXilsgjw:

165

open: permission denied

166

167

Mar 12 15:43:58 server2 named[2881]: transfer of 'guru.com/IN' from

168

192.168.0.2#53: failed while receiving responses: permission denied

169

170

Mar 12 15:43:58 server2 named[2881]: transfer of 'guru.com/IN' from

171

192.168.0.2#53: end of transfer

172

173

Mar 12 15:43:58 server2 kernel: audit(1142158438.527:0): avc: denied { write

174

} for pid=2882 exe=/usr/sbin/named name=named dev=dm-0 ino=622131

175

scontext=root:system_r:named_t tcontext=system_u:object_r:named_zone_t

176

tclass=dir

177

178

Mar 12 15:44:44 server2 named[2881]: dumping master file: tmp-XXXXBCugxM:

179

open: permission denied

180

181

Mar 12 15:44:44 server2 named[2881]: transfer of '0.168.192.in-addr.arpa/IN'

182

from 192.168.0.2#53: failed while receiving responses: permission denied

183

184

Mar 12 15:44:44 server2 named[2881]: transfer of '0.168.192.in-addr.arpa/IN'

185

from 192.168.0.2#53: end of transfer

186

187

Mar 12 15:44:44 server2 kernel: audit(1142158484.528:0): avc: denied { write

188

} for pid=2882 exe=/usr/sbin/named name=named dev=dm-0 ino=622131

189

scontext=root:system_r:named_t tcontext=system_u:object_r:named_zone_t

190

tclass=dir

191

 =========================END====================================

192

193

Any help/suggestions will be appreciated

194

Hiren Dave

1	Hi All,
2
3	I am facing one problem. Here is a message log from server1(Master DNS) and
4	server2(Slave DNS) on domain guru.com
5
6	=================SERVER1.GURU.COM===============================
7
8	Mar 12 15:40:57 server1 kernel: Disabled Privacy Extensions on device
9	c0366c20(lo)
10
11	Mar 12 15:40:57 server1 network: Bringing up loopback interface: succeeded
12
13	Mar 12 15:40:57 server1 kernel: ip_tables: (C) 2000-2002 Netfilter core team
14
15	Mar 12 15:41:00 server1 network: Bringing up interface eth0: succeeded
16
17	Mar 12 15:41:57 server1 named[2760]: shutting down: flushing changes
18
19	Mar 12 15:41:57 server1 named[2760]: stopping command channel on
20	127.0.0.1#953
21
22	Mar 12 15:41:57 server1 named[2760]: no longer listening on 127.0.0.1#53
23
24	Mar 12 15:41:57 server1 named[2760]: no longer listening on 192.168.0.2#53
25
26	Mar 12 15:41:57 server1 named[2760]: exiting
27
28	Mar 12 15:41:57 server1 named: succeeded
29
30	Mar 12 15:41:59 server1 named[3042]: starting BIND 9.2.4 -u named -t
31	/var/named/chroot
32
33	Mar 12 15:41:59 server1 named[3042]: using 1 CPU
34
35	Mar 12 15:41:59 server1 named: named startup succeeded
36
37	Mar 12 15:41:59 server1 named[3042]: loading configuration from
38	'/etc/named.conf'
39
40	Mar 12 15:41:59 server1 named[3042]: listening on IPv4 interface lo,
41	127.0.0.1#53
42
43	Mar 12 15:41:59 server1 named[3042]: listening on IPv4 interface eth0,
44	192.168.0.2#53
45
46	Mar 12 15:41:59 server1 named[3042]: command channel listening on
47	127.0.0.1#953
48
49	Mar 12 15:41:59 server1 named[3042]: zone 0.0.127.in-addr.arpa/IN: loaded
50	serial 0
51
52	Mar 12 15:41:59 server1 named[3042]: zone 0.168.192.in-addr.arpa/IN: loaded
53	serial 0
54
55	Mar 12 15:41:59 server1 named[3042]: zone guru.com/IN: loaded serial 0
56
57	Mar 12 15:41:59 server1 named[3042]: zone localhost/IN: loaded serial 0
58
59	Mar 12 15:41:59 server1 named[3042]: running
60
61	Mar 12 15:47:08 server1 named[3042]: client 192.168.0.3#1027: transfer of '
62	0.168.192.in-addr.arpa/IN': AXFR started
63
64	Mar 12 15:47:09 server1 named[3042]: client 192.168.0.3#1028: transfer of '
65	guru.com/IN': AXFR started
66
67	Mar 12 15:47:56 server1 named[3042]: client 192.168.0.3#1029: transfer of '
68	0.168.192.in-addr.arpa/IN': AXFR started
69
70	Mar 12 15:48:08 server1 named[3042]: client 192.168.0.3#1030: transfer of '
71	guru.com/IN': AXFR started
72
73	Mar 12 15:49:53 server1 named[3042]: client 192.168.0.3#1031: transfer of '
74	guru.com/IN': AXFR started
75
76	Mar 12 15:49:55 server1 named[3042]: client 192.168.0.3#1032: transfer of '
77	0.168.192.in-addr.arpa/IN': AXFR started
78
79	Mar 12 15:53:00 server1 named[3042]: client 192.168.0.3#1033: transfer of '
80	guru.com/IN': AXFR started
81
82	Mar 12 15:53:46 server1 named[3042]: client 192.168.0.3#1034: transfer of '
83	0.168.192.in-addr.arpa/IN': AXFR started
84	=========================END====================================
85
86	=================SERVER2.GURU.COM===============================
87
88	Mar 12 15:38:06 server2 named[2881]: transfer of '0.168.192.in-addr.arpa/IN'
89	from 192.168.0.2#53: failed while receiving responses: permission denied
90
91	Mar 12 15:38:06 server2 named[2881]: transfer of '0.168.192.in-addr.arpa/IN'
92	from 192.168.0.2#53: end of transfer
93
94	Mar 12 15:38:07 server2 named[2881]: dumping master file: tmp-XXXX8In1Va:
95	open: permission denied
96
97	Mar 12 15:38:07 server2 named[2881]: transfer of 'guru.com/IN' from
98	192.168.0.2#53: failed while receiving responses: permission denied
99
100	Mar 12 15:38:07 server2 named[2881]: transfer of 'guru.com/IN' from
101	192.168.0.2#53: end of transfer
102
103	Mar 12 15:38:07 server2 kernel: audit(1142158087.021:0): avc: denied { write
104	} for pid=2882 exe=/usr/sbin/named name=named dev=dm-0 ino=622131
105	scontext=root:system_r:named_t tcontext=system_u:object_r:named_zone_t
106	tclass=dir
107
108	Mar 12 15:38:53 server2 named[2881]: dumping master file: tmp-XXXXU7SDSa:
109	open: permission denied
110
111	Mar 12 15:38:53 server2 named[2881]: transfer of '0.168.192.in-addr.arpa/IN'
112	from 192.168.0.2#53: failed while receiving responses: permission denied
113
114	Mar 12 15:38:53 server2 named[2881]: transfer of '0.168.192.in-addr.arpa/IN'
115	from 192.168.0.2#53: end of transfer
116
117	Mar 12 15:38:53 server2 kernel: audit(1142158133.521:0): avc: denied { write
118	} for pid=2882 exe=/usr/sbin/named name=named dev=dm-0 ino=622131
119	scontext=root:system_r:named_t tcontext=system_u:object_r:named_zone_t
120	tclass=dir
121
122	Mar 12 15:39:05 server2 named[2881]: dumping master file: tmp-XXXXHYCIDL:
123	open: permission denied
124
125	Mar 12 15:39:05 server2 named[2881]: transfer of 'guru.com/IN' from
126	192.168.0.2#53: failed while receiving responses: permission denied
127
128	Mar 12 15:39:05 server2 named[2881]: transfer of 'guru.com/IN' from
129	192.168.0.2#53: end of transfer
130
131	Mar 12 15:39:05 server2 kernel: audit(1142158145.520:0): avc: denied { write
132	} for pid=2882 exe=/usr/sbin/named name=named dev=dm-0 ino=622131
133	scontext=root:system_r:named_t tcontext=system_u:object_r:named_zone_t
134	tclass=dir
135
136	Mar 12 15:40:51 server2 named[2881]: dumping master file: tmp-XXXXYRYrFA:
137	open: permission denied
138
139	Mar 12 15:40:51 server2 named[2881]: transfer of 'guru.com/IN' from
140	192.168.0.2#53: failed while receiving responses: permission denied
141
142	Mar 12 15:40:51 server2 named[2881]: transfer of 'guru.com/IN' from
143	192.168.0.2#53: end of transfer
144
145	Mar 12 15:40:51 server2 kernel: audit(1142158251.528:0): avc: denied { write
146	} for pid=2882 exe=/usr/sbin/named name=named dev=dm-0 ino=622131
147	scontext=root:system_r:named_t tcontext=system_u:object_r:named_zone_t
148	tclass=dir
149
150	Mar 12 15:40:53 server2 named[2881]: dumping master file: tmp-XXXXjkjuJv:
151	open: permission denied
152
153	Mar 12 15:40:53 server2 named[2881]: transfer of '0.168.192.in-addr.arpa/IN'
154	from 192.168.0.2#53: failed while receiving responses: permission denied
155
156	Mar 12 15:40:53 server2 named[2881]: transfer of '0.168.192.in-addr.arpa/IN'
157	from 192.168.0.2#53: end of transfer
158
159	Mar 12 15:40:53 server2 kernel: audit(1142158253.519:0): avc: denied { write
160	} for pid=2882 exe=/usr/sbin/named name=named dev=dm-0 ino=622131
161	scontext=root:system_r:named_t tcontext=system_u:object_r:named_zone_t
162	tclass=dir
163
164	Mar 12 15:43:58 server2 named[2881]: dumping master file: tmp-XXXXilsgjw:
165	open: permission denied
166
167	Mar 12 15:43:58 server2 named[2881]: transfer of 'guru.com/IN' from
168	192.168.0.2#53: failed while receiving responses: permission denied
169
170	Mar 12 15:43:58 server2 named[2881]: transfer of 'guru.com/IN' from
171	192.168.0.2#53: end of transfer
172
173	Mar 12 15:43:58 server2 kernel: audit(1142158438.527:0): avc: denied { write
174	} for pid=2882 exe=/usr/sbin/named name=named dev=dm-0 ino=622131
175	scontext=root:system_r:named_t tcontext=system_u:object_r:named_zone_t
176	tclass=dir
177
178	Mar 12 15:44:44 server2 named[2881]: dumping master file: tmp-XXXXBCugxM:
179	open: permission denied
180
181	Mar 12 15:44:44 server2 named[2881]: transfer of '0.168.192.in-addr.arpa/IN'
182	from 192.168.0.2#53: failed while receiving responses: permission denied
183
184	Mar 12 15:44:44 server2 named[2881]: transfer of '0.168.192.in-addr.arpa/IN'
185	from 192.168.0.2#53: end of transfer
186
187	Mar 12 15:44:44 server2 kernel: audit(1142158484.528:0): avc: denied { write
188	} for pid=2882 exe=/usr/sbin/named name=named dev=dm-0 ino=622131
189	scontext=root:system_r:named_t tcontext=system_u:object_r:named_zone_t
190	tclass=dir
191	=========================END====================================
192
193	Any help/suggestions will be appreciated
194	Hiren Dave

Gentoo Archives: gentoo-user