I've set the DNS as defined in kb (see attached image). However, I am getting Incoming UDP requests from the 2 DNS specified.
2009:04:29-00:27:51 Astaro ulogd[3234]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60001" seq="0" initf="eth2" outitf="eth2" dstmac="00:b0:c2:02:e3:c7" srcmac="00:00:00:00:00:00" srcip="194.72.0.98" dstip="86.141.71.223" proto="17" length="101" tos="0x00" prec="0x00" ttl="53" srcport="53" dstport="3072"
2009:04:29-00:28:01 Astaro ulogd[3234]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60001" seq="0" initf="eth2" outitf="eth2" dstmac="00:b0:c2:02:e3:c7" srcmac="00:00:00:00:00:00" srcip="62.6.40.162" dstip="86.141.71.223" proto="17" length="101" tos="0x00" prec="0x00" ttl="53" srcport="53" dstport="3072"
2009:04:29-00:28:11 Astaro ulogd[3234]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60001" seq="0" initf="eth2" outitf="eth2" dstmac="00:b0:c2:02:e3:c7" srcmac="00:00:00:00:00:00" srcip="194.72.0.98" dstip="86.141.71.223" proto="17" length="101" tos="0x00" prec="0x00" ttl="53" srcport="53" dstport="3072"
DNS log
2009:04:29-22:59:18 Astaro named[3528]: FORMERR resolving 'resolver.nobgp.glb.ctmail.com/AAAA/IN': 65.74.168.212#53
2009:04:29-22:59:18 Astaro named[3528]: FORMERR resolving 'resolver.nobgp.glb.ctmail.com/AAAA/IN': 216.163.188.42#53
2009:04:29-22:59:18 Astaro named[3528]: too many timeouts resolving 'resolver.nobgp.glb.ctmail.com/AAAA' (in 'glb.ctmail.com'?): disabling EDNS
2009:04:29-22:59:19 Astaro named[3528]: too many timeouts resolving 'resolver.nobgp.glb.ctmail.com/AAAA' (in 'glb.ctmail.com'?): disabling EDNS
2009:04:29-22:59:21 Astaro named[3528]: too many timeouts resolving 'resolver.nobgp.glb.ctmail.com/AAAA' (in 'glb.ctmail.com'?): disabling EDNS
2009:04:29-22:59:23 Astaro named[3528]: too many timeouts resolving 'resolver.nobgp.glb.ctmail.com/AAAA' (in 'glb.ctmail.com'?): disabling EDNS
2009:04:29-22:59:27 Astaro named[3528]: too many timeouts resolving 'resolver.nobgp.glb.ctmail.com/AAAA' (in 'glb.ctmail.com'?): disabling EDNS
2009:04:29-22:59:35 Astaro named[3528]: too many timeouts resolving 'resolver.nobgp.glb.ctmail.com/AAAA' (in 'glb.ctmail.com'?): disabling EDNS
2009:04:29-22:59:45 Astaro named[3528]: too many timeouts resolving 'resolver.nobgp.glb.ctmail.com/AAAA' (in 'glb.ctmail.com'?): disabling EDNS
2009:04:29-23:09:22 Astaro named[3528]: received SIGHUP signal to reload zones
2009:04:29-23:09:22 Astaro named[3528]: loading configuration from '//etc/named.conf'
2009:04:29-23:09:22 Astaro named[3528]: default max-cache-size (33554432) applies
2009:04:29-23:09:22 Astaro named[3528]: default max-cache-size (33554432) applies: view _bind
2009:04:29-23:09:22 Astaro named[3528]: none:0: open: //etc/rndc.key: file not found
2009:04:29-23:09:22 Astaro named[3528]: couldn't add command channel 127.0.0.1#953: file not found
2009:04:29-23:09:22 Astaro named[3528]: reloading configuration succeeded
2009:04:29-23:09:22 Astaro named[3528]: reloading zones succeeded
2009:04:29-23:09:22 Astaro named[3528]: zone 0.0.127.in-addr.arpa/IN: loaded serial 1241042962
2009:04:29-23:09:22 Astaro named[3528]: zone localhost/IN: loaded serial 1241042962
2009:04:29-23:14:22 Astaro named[3528]: unexpected RCODE (SERVFAIL) resolving 'resolver.nobgp.glb.ctmail.com/AAAA/IN': 62.6.40.162#53
2009:04:29-23:14:23 Astaro named[3528]: unexpected RCODE (SERVFAIL) resolving 'resolver.nobgp.glb.ctmail.com/AAAA/IN': 194.72.0.98#53
2009:04:29-23:14:23 Astaro named[3528]: FORMERR resolving 'resolver.nobgp.glb.ctmail.com/AAAA/IN': 65.74.168.212#53
2009:04:29-23:14:24 Astaro named[3528]: FORMERR resolving 'resolver.nobgp.glb.ctmail.com/AAAA/IN': 216.163.188.42#53
2009:04:29-23:14:24 Astaro named[3528]: unexpected RCODE (SERVFAIL) resolving 'resolver.nobgp.glb.ctmail.com/AAAA/IN': 62.6.40.162#53
2009:04:29-23:14:25 Astaro named[3528]: unexpected RCODE (SERVFAIL) resolving 'resolver.nobgp.glb.ctmail.com/AAAA/IN': 194.72.0.98#53
2009:04:29-23:14:25 Astaro named[3528]: FORMERR resolving 'resolver.nobgp.glb.ctmail.com/AAAA/IN': 65.74.168.212#53
2009:04:29-23:14:25 Astaro named[3528]: FORMERR resolving 'resolver.nobgp.glb.ctmail.com/AAAA/IN': 216.163.188.42#53
2009:04:29-23:14:26 Astaro named[3528]: unexpected RCODE (SERVFAIL) resolving 'resolver.nobgp.glb.ctmail.com/AAAA/IN': 194.72.0.98#53
2009:04:29-23:14:27 Astaro named[3528]: unexpected RCODE (SERVFAIL) resolving 'resolver.nobgp.glb.ctmail.com/AAAA/IN': 62.6.40.162#53
2009:04:29-23:14:27 Astaro named[3528]: FORMERR resolving 'resolver.nobgp.glb.ctmail.com/AAAA/IN': 65.74.168.212#53
2009:04:29-23:14:27 Astaro named[3528]: FORMERR resolving 'resolver.nobgp.glb.ctmail.com/AAAA/IN': 216.163.188.42#53
The times below clearly indicate that there is a DNS issue:
2009:04:30-00:04:27 Astaro httpproxy[8925]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="192.168.2.33" user="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="1083" time="5527 ms" request="0xb1ab4f38" url="www.coldsteel-uk.com/.../jpeg"
2009:04:30-00:09:39 Astaro httpproxy[8925]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="192.168.2.33" user="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="82907" time="49238 ms" request="0xb24937e8" url="www.fioredeiliberi.org/.../search.php
According to my understanding I should only have outgoing DNS requests for the 2 DNS servers (I don't have any pf ). Could someone let me know if that's the case?
Thanks once again for your help
This thread was automatically locked due to age.
