Amigo Elmano, vc acertou em cheio! tava errada a localização do
named.pid, após corrigir no script o serviço levantou com sucesso. vamos aos informes então: #ps aux | grep named root 2346 0.0 0.0 1820 624 ? Ss Nov29 0:00 /sbin/syslogd -a /var/lib/named/dev/log bind 3973 0.0 0.2 50656 9484 ? Ssl 11:02 0:00 /usr/sbin/named -u bind -t /var/lib/named root 4086 0.0 0.0 3148 764 pts/3 R<+ 14:36 0:00 grep named #dig cmtb.pr.gov.br ; <<>> DiG 9.6-ESV-R1 <<>> cmtb.pr.gov.br ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 54130 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;cmtb.pr.gov.br. IN A ;; Query time: 261 msec ;; SERVER: 10.0.0.200#53(10.0.0.200) ;; WHEN: Tue Nov 30 14:35:58 2010 ;; MSG SIZE rcvd: 32 log (ao amigo Saul, ja fiz a alteração do local do named.pid) #/etc/init.d/bind9 restart ; tail -30 /var/log/syslog | grep named Stopping domain name service...: bind9. Starting domain name service...: bind9. Nov 30 14:38:28 tiserver named[3973]: no longer listening on 10.0.0.26#53 Nov 30 14:38:28 tiserver named[3973]: exiting Nov 30 14:38:28 tiserver named[4120]: starting BIND 9.6-ESV-R1 -u bind -t /var/lib/named Nov 30 14:38:28 tiserver named[4120]: built with '--prefix=/usr' '--build=i486-linux-gnu' '--host=i486-linux-gnu' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--sysconfdir=/etc/bind' '--localstatedir=/var/run/bind' '--enable-threads' '--enable-largefile' '--with-libtool' '--enable-shared' '--enable-static' '--with-openssl=/usr' '--with-gssapi=/usr' '--with-gnu-ld' '--with-dlz-postgres=no' '--with-dlz-mysql=no' '--with-dlz-bdb=yes' '--with-dlz-filesystem=yes' '--with-dlz-ldap=yes' '--with-dlz-stub=yes' '--enable-ipv6' 'build_alias=i486-linux-gnu' 'host_alias=i486-linux-gnu' 'CFLAGS=-fno-strict-aliasing -DDIG_SIGCHASE -DNS_RUN_PID_DIR=0 -O2' 'LDFLAGS=' 'CPPFLAGS=' 'CXXFLAGS=-g -O2' 'FFLAGS=-g -O2' Nov 30 14:38:28 tiserver named[4120]: adjusted limit on open files from 1024 to 1048576 Nov 30 14:38:28 tiserver named[4120]: found 2 CPUs, using 2 worker threads Nov 30 14:38:28 tiserver named[4120]: using up to 4096 sockets Nov 30 14:38:28 tiserver named[4120]: loading configuration from '/etc/bind/named.conf' Nov 30 14:38:28 tiserver named[4120]: using default UDP/IPv4 port range: [1024, 65535] Nov 30 14:38:28 tiserver named[4120]: using default UDP/IPv6 port range: [1024, 65535] Nov 30 14:38:28 tiserver named[4120]: listening on IPv6 interfaces, port 53 Nov 30 14:38:28 tiserver named[4120]: listening on IPv4 interface lo, 127.0.0.1#53 Nov 30 14:38:28 tiserver named[4120]: listening on IPv4 interface eth0, 10.0.0.26#53 Nov 30 14:38:28 tiserver named[4120]: automatic empty zone: 254.169.IN-ADDR.ARPA Nov 30 14:38:28 tiserver named[4120]: automatic empty zone: 2.0.192.IN-ADDR.ARPA Nov 30 14:38:28 tiserver named[4120]: automatic empty zone: 255.255.255.255.IN-ADDR.ARPA Nov 30 14:38:28 tiserver named[4120]: automatic empty zone: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA Nov 30 14:38:28 tiserver named[4120]: automatic empty zone: 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA Nov 30 14:38:28 tiserver named[4120]: automatic empty zone: D.F.IP6.ARPA Nov 30 14:38:28 tiserver named[4120]: automatic empty zone: 8.E.F.IP6.ARPA Nov 30 14:38:28 tiserver named[4120]: automatic empty zone: 9.E.F.IP6.ARPA Nov 30 14:38:28 tiserver named[4120]: automatic empty zone: A.E.F.IP6.ARPA Nov 30 14:38:28 tiserver named[4120]: automatic empty zone: B.E.F.IP6.ARPA Nov 30 14:38:28 tiserver named[4120]: command channel listening on 127.0.0.1#953 Nov 30 14:38:28 tiserver named[4120]: command channel listening on ::1#953 Nov 30 14:38:28 tiserver named[4120]: zone 0.in-addr.arpa/IN: loaded serial 1 Nov 30 14:38:28 tiserver named[4120]: zone 127.in-addr.arpa/IN: loaded serial 1 Nov 30 14:38:28 tiserver named[4120]: zone 255.in-addr.arpa/IN: loaded serial 1 Nov 30 14:38:28 tiserver named[4120]: zone localhost/IN: loaded serial 2 Nov 30 14:38:28 tiserver named[4120]: running Aproveitando o tópico, masi algumas dúvidas: Convém colocar o Apache em jail também? como faço pra redirecionar o endereço do domínio para um outro servidor interno de minha rede? Quais configurações são necessárias no iptables? Grato a todos os amigos que responderam, Fabiano de AlmeidaEm 29-11-2010 17:53, Elmano Férrer escreveu: Localizar o processo |