Forum Discussion

Cirrostratus

Dec 02, 2009

LTM Returns "Refused" DNS Response

Hi. I've got a DNS server in a VLAN routed by a 9.3.1HF6 LTM. Queries are sent to the DNS server through a 0.0.0.0:* wildcard virtual server. Pretty frequently (as in every 30-60 seconds) I get a DNS ...

config

design

smp_86112

Cirrostratus

Dec 03, 2009

I didn't know this until you prompted me to look, but I do have two DNS VIPs which forward to the DNS server Pool Member - a UDP and TCP port 53 VIP. However the stats on both VIPs, the Pool, and the Node are zero. We do in fact have GTMs, but they are seperate physical hardware. I've attached my LTM named.conf. I don't recall ever editing this file purposefully:

  
  restrict rndc access to local machines  
  use the key in the default place: /config/rndc.key  
    
  controls { inet 127.0.0.1 port 953 allow { 127.0.0.1 ;}; };  
    
  logging {  
      channel logfile {  
          syslog daemon;  
          severity error;  
          print-category yes;  
          print-severity yes;  
          print-time yes;  
      };  
      category default {  
          logfile;  
      };  
      category config {  
          logfile;  
      };  
      category notify {  
          logfile;  
      };  
  };  
    
  options {   
  listen-on port 53 { 127.0.0.1; };  
  listen-on-v6 port 53 { ::1; };  
  recursion no;  
  directory "/config/namedb";  
  allow-transfer {  
  localhost;  
  };  
  forwarders {};  
  };  
    
  view "external" {  
  match-clients { "any"; };  
  };

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)