DNS not ok using xymon but ok using BB
I have recently installed xymon 4.2.3 on a solaris 10 platform. I also have BB running on another solaris 10 server. The BB server has been running for years.
My issue: I am monitoring seven DNS servers. BB reports all seven as DNS OK. However xymon reports five servers as 'not ok'. I am unable to determine why the DNS test fails on these servers.
I have tested by changing hobbitlaunch.cfg to use:
CMD bbtest-net --no-ares --debug --report --ping --checkresponseI did not see any useful information from the log:
2009-08-04 15:33:30 Adding to combo msg: status <server>.dns red <!-- [flags:ordastLe] --> Tue Aug 4 15:33:07 2009 dns NOT ok status <server>.dns red <!-- [flags:ordastLe] --> Tue Aug 4 15:33:07 2009 dns NOT ok
Any ideas?
thanks, Bill Wagner
The ares support has to do with how the Xymon server resolves host names. The DNS test is something entirely different -- the bbnet host tries to interact with the DNS server on the DNS port on the remote host.
You might use snoop or tcpdump to capture the activity between the bbnet host and the failing DNS server to see what is being sent and what is being returned. Then you can compare this with one of the servers that appears okay. There may be something in the DNS server configuration itself that is causing the problem, like maybe the DNS servers have IP address restrictions in them or something like that.
GLH
On Tuesday, 4 August 2009 21:44:56 Bill Wagner wrote:
I have recently installed xymon 4.2.3 on a solaris 10 platform. I also have BB running on another solaris 10 server. The BB server has been running for years.
My issue: I am monitoring seven DNS servers. BB reports all seven as DNS OK. However xymon reports five servers as 'not ok'. I am unable to determine why the DNS test fails on these servers.
I have tested by changing hobbitlaunch.cfg to use:
CMD bbtest-net --no-ares --debug --report --ping --checkresponseI did not see any useful information from the log:
2009-08-04 15:33:30 Adding to combo msg: status <server>.dns red <!-- [flags:ordastLe] --> Tue Aug 4 15:33:07 2009 dns NOT ok status <server>.dns red <!-- [flags:ordastLe] --> Tue Aug 4 15:33:07 2009 dns NOT ok
By default, the DNS test tries to resolve the host's own hostname, e.g. if this server is server.mydomain.com, you should test with:
$ dig @server.mydomain.com server.mydomain.com
You can have it test any other DNS record for any domain, please see 'man bb- hosts' for more information.
Regards, Buchan
Thanks for the info. I am able to successfully dig the "failing" DNS server ...
dig @<hostname> <hostname>
; <<>> DiG 9.3.6-P1 <<>> @<hostname> <hostname> ; (1 server found) ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1253 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION: ;<hostname>. IN A
-------- Original Message -------- Subject: Re: [hobbit] DNS not ok using xymon but ok using BB From: Buchan Milne <bgmilne at staff.telkomsa.net> To: hobbit at hswn.dk CC: Bill Wagner <william.wagner at ipacc.com> Date: 8/5/2009 9:06 AM
On Tuesday, 4 August 2009 21:44:56 Bill Wagner wrote:
I have recently installed xymon 4.2.3 on a solaris 10 platform. I also have BB running on another solaris 10 server. The BB server has been running for years.
My issue: I am monitoring seven DNS servers. BB reports all seven as DNS OK. However xymon reports five servers as 'not ok'. I am unable to determine why the DNS test fails on these servers.
I have tested by changing hobbitlaunch.cfg to use:
CMD bbtest-net --no-ares --debug --report --ping --checkresponseI did not see any useful information from the log:
2009-08-04 15:33:30 Adding to combo msg: status <server>.dns red <!-- [flags:ordastLe] --> Tue Aug 4 15:33:07 2009 dns NOT ok status <server>.dns red <!-- [flags:ordastLe] --> Tue Aug 4 15:33:07 2009 dns NOT ok
By default, the DNS test tries to resolve the host's own hostname, e.g. if this server is server.mydomain.com, you should test with:
$ dig @server.mydomain.com server.mydomain.com
You can have it test any other DNS record for any domain, please see 'man bb- hosts' for more information.
Regards, Buchan
To unsubscribe from the hobbit list, send an e-mail to hobbit-unsubscribe at hswn.dk
Bill Wagner wrote:
Thanks for the info. I am able to successfully dig the "failing" DNS server ...
dig @<hostname> <hostname>
; <<>> DiG 9.3.6-P1 <<>> @<hostname> <hostname> ; (1 server found) ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1253 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION: ;<hostname>. IN A
Unfortunately, NXDOMAIN is not a successful query. No such domain. -Alan
Thanks, Buchan. By changing the bb-hosts entries for the DNS servers, I have what I want. I assume the other two DNS servers "work" as is because they are resolved in the first of the three searched domains.
Bill
-------- Original Message -------- Subject: Re: [hobbit] DNS not ok using xymon but ok using BB From: Buchan Milne <bgmilne at staff.telkomsa.net> To: hobbit at hswn.dk CC: Bill Wagner <william.wagner at ipacc.com> Date: 8/5/2009 9:06 AM
On Tuesday, 4 August 2009 21:44:56 Bill Wagner wrote:
I have recently installed xymon 4.2.3 on a solaris 10 platform. I also have BB running on another solaris 10 server. The BB server has been running for years.
My issue: I am monitoring seven DNS servers. BB reports all seven as DNS OK. However xymon reports five servers as 'not ok'. I am unable to determine why the DNS test fails on these servers.
I have tested by changing hobbitlaunch.cfg to use:
CMD bbtest-net --no-ares --debug --report --ping --checkresponseI did not see any useful information from the log:
2009-08-04 15:33:30 Adding to combo msg: status <server>.dns red <!-- [flags:ordastLe] --> Tue Aug 4 15:33:07 2009 dns NOT ok status <server>.dns red <!-- [flags:ordastLe] --> Tue Aug 4 15:33:07 2009 dns NOT ok
By default, the DNS test tries to resolve the host's own hostname, e.g. if this server is server.mydomain.com, you should test with:
$ dig @server.mydomain.com server.mydomain.com
You can have it test any other DNS record for any domain, please see 'man bb- hosts' for more information.
Regards, Buchan
participants (4)
-
asparks@doublesparks.net
-
bgmilne@staff.telkomsa.net
-
glh.forums@gmail.com
-
william.wagner@ipacc.com