lame server errors in server log

Stephen Carville stephen at totalflood.com
Thu Feb 22 12:49:05 UTC 2007


sylvan dacounha wrote:
> Hii,
> 
> thanks for ur message
> 
> btw these errors are not a problem ..
> 
> i have 2 dns servers ns1.kmun.gov.kw and
> ns2.kmun.gov.kw
> 
> where ns1.kmun.gov => xx.xx.xx.1--- primary and  ns2.kmun.gov.kw=>
> xx.xx.xx.2--- secondary
> 
> and 2 domains
> 
> kmun.gov.kw baladia.gov.kw
> 
> when i go to www.dnsstuff.com and do name server check on domain
> kmun.gov.kw it tells me error that one or more lame servers are
> present n gives me the ip xx.xx.xx.2 and also if i do a nslookup with
> the xx.xx.xx.2 IP i cannot resovle the internet servers but my local
> servers are resolved.

A 'lame' server is a DNS server that has a delegation for a zone but 
does not have the authority to answer requests.  In your case:

$ dig kmun.gov.kw ns
; <<>> DiG 9.3.3rc2 <<>> kmun.gov.kw ns
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 64530
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 2

;; QUESTION SECTION:
;kmun.gov.kw.                   IN      NS

;; ANSWER SECTION:
kmun.gov.kw.            85584   IN      NS      ns1.kmun.gov.kw.
kmun.gov.kw.            85584   IN      NS      ns2.kmun.gov.kw.

;; ADDITIONAL SECTION:
ns1.kmun.gov.kw.        85584   IN      A       62.150.152.1
ns2.kmun.gov.kw.        85584   IN      A       62.150.152.2

;; Query time: 0 msec
;; SERVER: 192.168.1.1#53(192.168.1.1)
;; WHEN: Thu Feb 22 04:32:09 2007
;; MSG SIZE  rcvd: 97

ns1 is OK:

$ dig @ns1.kmun.gov.kw kmun.gov.kw SOA

; <<>> DiG 9.3.3rc2 <<>> @ns1.kmun.gov.kw kmun.gov.kw SOA
; (1 server found)
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 30323
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2

;; QUESTION SECTION:
;kmun.gov.kw.                   IN      SOA

;; ANSWER SECTION:
kmun.gov.kw.            86400   IN      SOA     kmun.gov.kw. 
root.kmun.gov.kw. 1202200705 10800 3600 604800 86400

;; AUTHORITY SECTION:
kmun.gov.kw.            86400   IN      NS      ns1.kmun.gov.kw.
kmun.gov.kw.            86400   IN      NS      ns2.kmun.gov.kw.

;; ADDITIONAL SECTION:
ns1.kmun.gov.kw.        86400   IN      A       62.150.152.1
ns2.kmun.gov.kw.        86400   IN      A       62.150.152.2

;; Query time: 481 msec
;; SERVER: 62.150.152.1#53(62.150.152.1)
;; WHEN: Thu Feb 22 04:33:59 2007
;; MSG SIZE  rcvd: 138

but ns2 is not:

$ dig @ns2.kmun.gov.kw kmun.gov.kw SOA

; <<>> DiG 9.3.3rc2 <<>> @ns2.kmun.gov.kw kmun.gov.kw SOA
; (1 server found)
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: REFUSED, id: 55545 <---!!!!!!!
;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;kmun.gov.kw.                   IN      SOA

;; Query time: 366 msec
;; SERVER: 62.150.152.2#53(62.150.152.2)
;; WHEN: Thu Feb 22 04:35:00 2007
;; MSG SIZE  rcvd: 29

Check var/log/messages when starting/restarting bind on ns2.  You 
probably have some stupid syntax error in named.conf

> really appreciate if u cd help me . and if there is error in my slave
> dns appreciate if you cd give me some examples.

RTFM time.  Get a copy of DNS and Bind from O'Reilly.  It has step by 
step instructions on setting up slave servers.

> 
> thnks and regards
> 
> simon
> 
> 
> "Gaddis, Jeremy L." <jeremy at linuxwiz.net> wrote: On Tue, 20 Feb 2007,
> sylvan dacounha wrote:
> 
>> I have been noticing lame server errors in my logs..
>> 
>> i would like to know if these errors are a problem and how to solve
>> them
>> 
>> if these errors are not a problem and if these are jus notification
>> messages its OK
> 
> http://www.jeremygaddis.com/node/325
> 
> -- Jeremy L. Gaddis, MCP, GCWN jeremy at linuxwiz.net LinuxWiz
> Consulting http://linuxwiz.net
> 
> 


-- 
Stephen Carville <stephen at totalflood.com>
Systems Engineer
Land America




More information about the redhat-list mailing list