HPE Community
Operating System - HP-UX
1834935 Members
2328 Online
110071 Solutions
New Discussion

Re: DNS

 
Tim King_3
Advisor

‎09-19-2005 03:35 AM

‎09-19-2005 03:35 AM

DNS

Not sure what's happening but our HPUX 9000 11.0 server may be having a problem resolving host names. The majority of the users on our network run a telnet session to our main app through Accuterm. All of a sudden there is a long delay before you get a login. Anywhere from 30 seconds to 15 min. Also there is some email sent from the server that is not going out. When I telnet to the port 25 and type "mail from: emailaddress" I get: "Sender domain must resolve" I'm not that familiar with hpux, can someone help me troubleshoot this?

Thanks
Tim
0 Kudos
Reply
13 REPLIES 13
Uday_S_Ankolekar
Honored Contributor

‎09-19-2005 03:40 AM

‎09-19-2005 03:40 AM

Re: DNS

This could be due to setttings in /etc/resolv.conf file.

It should have entries like this
domain yourdomain.name
name server x.x.x.x (Ip Address of DNS server)
name server x.x.x.x ( Secodary DNS server )

You /etc/nsswtich.conf file should like this for DNS resolution
hosts: files [NOTFOUND=continue UNAVAIL=continue] dns [NOTFOUND=return UNAVAIL=continue TRYAGAIN=return]

-USA..
Good Luck..
0 Kudos
Reply
Orhan Biyiklioglu
Respected Contributor

‎09-19-2005 03:44 AM

‎09-19-2005 03:44 AM

Re: DNS

Check the contents of the file /etc/resolv.conf
Are the nameservers specified correctly and use the nslookup command whether you can resolve from the DNS servers specified.
0 Kudos
Reply
Hakan Aribas
Valued Contributor

‎09-19-2005 03:49 AM

‎09-19-2005 03:49 AM

Re: DNS

Please make sure that your DNS server can make reverse DNS queries. In our environment, we had a very similar problem with Weblogic server. After enabling reverse dns and adding prt records of server, there is no problem :-)
0 Kudos
Reply
Tim King_3
Advisor

‎09-19-2005 04:00 AM

‎09-19-2005 04:00 AM

Re: DNS

How would I check or enable reverse DNS?

Thanks
0 Kudos
Reply
Mel Burslan
Honored Contributor

‎09-19-2005 04:01 AM

‎09-19-2005 04:01 AM

Re: DNS

Tim,

if you are not the administrator of dns servers, check with the people who perform this function to see if they took the dns servers down or changed the ip addresses of DNS Servers without telling people like you. If you are working in a predominantly windows centric environment, Active driectory tied dns, may change transparent to windows users but have dire consequences for other types of servers.
________________________________
UNIX because I majored in cryptology...
0 Kudos
Reply
Mel Burslan
Honored Contributor

‎09-19-2005 04:02 AM

‎09-19-2005 04:02 AM

Re: DNS

if you can provide this output, it would help tremendously as well:

cat /etc/nsswitch.conf
cat /etc/resolv.conf
cat /etc/hosts
________________________________
UNIX because I majored in cryptology...
0 Kudos
Reply
Tim King_3
Advisor

‎09-19-2005 04:26 AM

‎09-19-2005 04:26 AM

Re: DNS

resolv.conf

nameserver 192.99.99.163
#domain jmg
#nameserver 10.220.1.10
#nameserver 10.220.2.10


nsswitch.conf

#hosts: dns [NOTFOUND=continue] files
hosts: files [NOTFOUND=continue] dns
0 Kudos
Reply
Mel Burslan
Honored Contributor

‎09-19-2005 04:29 AM

‎09-19-2005 04:29 AM

Re: DNS

can you ping or telnet/ssh to the dns server at IP address 192.99.99.163 ? You do not need to have a login but do you know it is alive and accesible from your network. SOmetimes, strange subnetting or inserting an additonal router between your server and this one may cause you some headaches
________________________________
UNIX because I majored in cryptology...
0 Kudos
Reply
Tim King_3
Advisor

‎09-19-2005 04:35 AM

‎09-19-2005 04:35 AM

Re: DNS

Yes I can, the 2 conf files reside on that server.
0 Kudos
Reply
Mel Burslan
Honored Contributor

‎09-19-2005 04:40 AM

‎09-19-2005 04:40 AM

Re: DNS

before the nameserver line in your /etc/resolv.conf, insert your domain as follows

(if your server's fully qulaified domain name is myserver.lab.mycompany.com")

domain lab.mycompany.com


this may help you get past the sendmail problem.

after doing this, make an nslookup query to another remote server in your company. How long does it take you to get the response back ? almost immediately or is there some sort of a delay ?
________________________________
UNIX because I majored in cryptology...
0 Kudos
Reply
Bill Hassell
Honored Contributor

‎09-19-2005 04:55 AM

‎09-19-2005 04:55 AM

Re: DNS

Normal DNS queries are hostnames, returning an IP address. Reverse DNS queries are IP addresses returning hostnames. It is a classic DNS config problem when telnet delays for 20-30 seconds per DNS server in /etc/resolv.conf. It means that the incoming computer (PC, server, etc) is unknown to the DNS server and telnet is trying to validate that this client should even be allowed to connect. When reverse DNS fails, the resolver then tries the next DNS server, and then the next. Each one requires about 20-30 seconds to timeout. If you wait for more than 90 seconds, you'll get a normal login. This is a standard security procedure and cannot be turned off.

Start by changing the default /etc/nsswitch.conf so that the resolver will look in /etc/hosts on the server first. Change this line:

hosts: dns [NOTFOUND=return] nis [NOTFOUND=return] files

to

files [NOTFOUND=continue UNAVAIL=continue] dns [NOTFOUND=return UNAVAIL=continue TRYAGAIN=return]

To see if the PC is not in the DNS server, login and type: nslookup 12.34.56.78
where 12.34.56.78 is the IP address of your PC. If you get no hostname in return (ie, can't find ... Non-existent domain) then the problem is with the DNS server--it is not connected to your DHCP server and the assigned IP addresses from DHCP have no hostnames.

To get rid of the delays, fix your DNS server (they probably deleted all the reverse lookup records, thus causing the problem), or get all of the po9ssible DHCP addresses in your company, assign them arbitrary names like dummy1234, dummy1235, etc, and put that list into all your /etc/hosts files (after changing /etc/nsswitch.conf).


Bill Hassell, sysadmin
0 Kudos
Reply
Tim King_3
Advisor

‎09-20-2005 06:37 AM

‎09-20-2005 06:37 AM

Re: DNS

It turned out to be a missing entry in the host file for our secondary DNS server. It's strange because I'm sure it was never there to begin with.

I would like to thank you all for the generous responses!!

Tim
0 Kudos
Reply
Bill Hassell
Honored Contributor

‎09-20-2005 08:31 AM

‎09-20-2005 08:31 AM

Re: DNS

Usually this means the DNS servers do not know each other's names--a common error in administering DNS servers. All DNS servers should know about each other and be able to return a name in response to a query about the IP address (reverse lookup).


Bill Hassell, sysadmin
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.