[cs615asa] DNS with aws public IP problem

Yifang Yuan yyuan17 at stevens.edu
Mon Mar 19 23:11:27 EDT 2018


It is solved by add
allow-query{any;};
in /etc/bind/named.conf.options.

Thanks all.

PS: my server’s /etc/resolv.conf name server is set to 127.0.0.1
Similar issue:https://serverfault.com/questions/330385/bind-would-not-work-unless-allow-query-is-any <https://serverfault.com/questions/330385/bind-would-not-work-unless-allow-query-is-any>

> On Mar 19, 2018, at 18:11, Yifang Yuan <yyuan17 at stevens.edu> wrote:
> 
> I will try soon. It sounds reasonable.
> 
> 
> 
> On Mar 19, 2018, at 5:34 PM, Zhengkai Wei <zwei11 at stevens.edu <mailto:zwei11 at stevens.edu>> wrote:
> 
>> Did you delete the line "domain ec2.internal” ,"search ec2.internal” on you client instance? 
>> If you using DNS server public IP . One line  enough “name server 51.51.51.51"
>> 
>>> 在 2018年3月19日,下午5:09,Yifang Yuan <yyuan17 at stevens.edu <mailto:yyuan17 at stevens.edu>> 写道:
>>> 
>>> Hi All:
>>> Does anyone set client name-server to DNS server’s public IP? My client works with DNS server’s private address, but not public.
>>> 
>>> Let me specific:
>>> 1 My DNS server(AWS) private ip is 172.31.33.1 and public is 51.51.51.51. 
>>> 2 My DNS client(AWS)’s name-server is set to 172.31.33.1. Client could resolve domain name.
>>> 3 My DNS client(AWS)’s name-server is set to 51.51.51.51. Client can’t resolve domain name.
>>> 4 My Macbook’s name-server is set to 51.51.51.51. My laptop could resolve domain name.
>>> 
>>> Name-sever is set in /etc/resolv.conf. I use dig to confirm the configuration is loaded.
>>> Because the dns public ip works on my laptop, I suppose AWS limit the access from inside to themselves public address. Is it true? Thank you.
>>> 
>>> Yifang
>>> 
>>> 
>>> _______________________________________________
>>> cs615asa mailing list
>>> cs615asa at lists.stevens.edu <mailto:cs615asa at lists.stevens.edu>
>>> https://lists.stevens.edu/mailman/listinfo/cs615asa <https://lists.stevens.edu/mailman/listinfo/cs615asa>
>> 
>> _______________________________________________
>> cs615asa mailing list
>> cs615asa at lists.stevens.edu <mailto:cs615asa at lists.stevens.edu>
>> https://lists.stevens.edu/mailman/listinfo/cs615asa <https://lists.stevens.edu/mailman/listinfo/cs615asa>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.stevens.edu/pipermail/cs615asa/attachments/20180319/54239945/attachment.html>


More information about the cs615asa mailing list