Troubleshooting. Why Troubleshoot? What Can Go Wrong? –Misconfigured zone –Misconfigured server –Misconfigured host –Misconfigured network.

Slides:



Advertisements
Similar presentations
Static Routing Exercise AFNOG 2003/ Track 2 # 1 Static Routing Exercise u Unix network interface configuration u Cisco network interface configuration.
Advertisements

1 Dynamic DNS. 2 Module - Dynamic DNS ♦ Overview The domain names and IP addresses of hosts and the devices may change for many reasons. This module focuses.
NETS Training Troubleshooting Scot Colburn and David Mitchell 5/1/07.
SYSTEM ADMINISTRATION Chapter 19
11 TROUBLESHOOTING Chapter 12. Chapter 12: TROUBLESHOOTING2 OVERVIEW  Determine whether a network communications problem is related to TCP/IP.  Understand.
Chapter 13: Troubleshooting network connectivity Unit objectives Identify TCP/IP troubleshooting tools Discuss the Telnet utility and its functions Discuss.
1 Linux Networking and Security Chapter 2. 2 Configuring Basic Networking Describe how networking devices differ from other Linux devices Configure Linux.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.1 Troubleshooting Working at a Small-to-Medium Business or ISP – Chapter 9.
Linux Networking TCP/IP stack kernel controls the TCP/IP protocol Ethernet adapter is hooked to the kernel in with the ipconfig command ifconfig sets the.
Hands-On Microsoft Windows Server 2003 Networking Chapter 6 Domain Name System.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 8: Managing and Troubleshooting DNS.
Hands-On Microsoft Windows Server 2003 Administration Chapter 9 Administering DNS.
Common network diagnostic and configuration utilities A ‘toolkit’ for network users and managers when ‘troubleshooting’ is needed on your network.
Chapter 23: ARP, ICMP, DHCP IS333 Spring 2015.
TCP/IP Tools Lesson 5. Objectives Skills/ConceptsObjective Domain Description Objective Domain Number Using basic TCP/IP commands Understanding TCP/IP3.6.
Click to edit Master subtitle style Chapter 17: Troubleshooting Tools Instructor:
Linux Networking Commands
IST 228\Ch3\IP Addressing1 TCP/IP and DoD Model (TCP/IP Model)
Installing Windows Deployment Service
Ch 8-3 Working with domains and Active Directory.
SUSE Linux Enterprise Server Administration (Course 3037) Chapter 7 Connect the SUSE Linux Enterprise Server to the Network.
1 Version 3.1 Module 4 Learning About Other Devices.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Troubleshooting Your Network Networking for Home and Small Businesses.
Hands-on Networking Fundamentals
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Troubleshooting Your Network Networking for Home and Small Businesses.
Mr. Mturi Elias University Computing Centre SYSTEMS ADMIN TRAINING WORKSHOP.
Network Tools TCP/IP interface configuration query - MAC (HW) address and IP address – Linux - /sbin/ifconfig – MS Windows – ipconfig/all 1.
Chapter 10 Networking and the Internet ITSC 1458.
70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 7: Domain Name System.
Objectives Configure routing in Windows Server 2008 Configure Routing and Remote Access Services in Windows Server 2008 Network Address Translation 1.
Module 12: Routing Fundamentals. Routing Overview Configuring Routing and Remote Access as a Router Quality of Service.
Cisco S2 C4 Router Components. Configure a Router You can configure a router from –from the console terminal (a computer connected to the router –through.
1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA 2 Module 9 Basic Router Troubleshooting.
Links and LANs Link between two computers via cross cable The most simple way to connect two hosts is to link the two hosts with a cross cable.
Module 8 DNS Tools & Diagnostics. Objectives Understand dig and nslookup Understand BIND toolset Understand BIND logs Understand wire level messages.
Day 14 Introduction to Networking. Unix Networking Unix is very frequently used as a server. –Server is a machine which “serves” some function Web Server.
Hour 7 The Application Layer 1. What Is the Application Layer? The Application layer is the top layer in TCP/IP's protocol suite Some of the components.
Linux Networking and Security
1 Implementing Monitoring and Reporting. 2 Why Should Implement Monitoring? One of the biggest complaints we hear about firewall products from almost.
CCNA 2 Week 9 Router Troubleshooting. Copyright © 2005 University of Bolton Topics Routing Table Overview Network Testing Troubleshooting Router Issues.
TCP/IP Management GO TCPADM GO TCPADM. TCP/IP Management Using the TCP/IP management tools to keep TCP/IP on your AS/400 robust, reliable and effective.
Linux Networking #1 Dr. Michael L. Collard 1.
Module 8 DNS Tools & Diagnostics. Dig always available with BIND (*nix) and windows Nslookup available on windows and *nix Dig on windows – unpack zip,
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Static Routing Routing Protocols and Concepts – Chapter 2.
1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA 2 v3.0 Module 9 Basic Router Troubleshooting.
Sniffer, tcpdump, Ethereal, ntop
TESTING THE WIRELESS NETWORK INTERFACE CARD
1 © 2004, Cisco Systems, Inc. All rights reserved. CCNA 2 v3.1 Module 9 Basic Router Troubleshooting.
ERICSON BRANDON M. BASCUG Alternate - REGIONAL NETWORK ADMINISTRATOR HOW TO TROUBLESHOOT TCP/IP CONNECTIVITY.
Firewalls A brief introduction to firewalls. What does a Firewall do? Firewalls are essential tools in managing and controlling network traffic Firewalls.
1 CMPT 471 Networking II DNS © Janice Regan,
OPTION section It is the first section of the named.conf User can use only one option statement and many option-value pair under the section. Syntax is.
1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA 2 v3.0 Module 9 Basic Router Troubleshooting.
Command Line Interface Introduction Configuration Example Alcatel-Lucent Security Products Configuration Example Series.
Chapter 4: server services. The Complete Guide to Linux System Administration2 Objectives Configure network interfaces using command- line and graphical.
Troubleshooting. Why Troubleshoot? What Can Go Wrong? –Misconfigured zone –Misconfigured server –Misconfigured host –Misconfigured network.
Chapter 7: Using Network Clients The Complete Guide To Linux System Administration.
Click to edit Master subtitle style
Troubleshooting a Network
Troubleshooting ip Chapter 5e.
Network Commands 2 Linux Ubuntu A.S.
Network Tools and Utilities
Instructor Materials Chapter 9: Testing and Troubleshooting
Linux Ubuntu Network Commands 3 A.S.
Introduction to Networking
Chapter 2: Static Routing
Chapter 2: Static Routing
TCP/IP Networking An Example
CS580 Special Project: IOS Firewall Setup using CISCO 1600 router
Troubleshooting ip Chapter 5e.
Presentation transcript:

Troubleshooting

Why Troubleshoot? What Can Go Wrong? –Misconfigured zone –Misconfigured server –Misconfigured host –Misconfigured network

Tools BIND Logging Facility named's built-in options ping and traceroute tcpdump and ethereal dig and nslookup

The Best Way To Handle Mistakes Assume You Will Make Them Prepare The Name Server via Logging

BIND Logging Telling named which messages to send –category specification Telling named where to send messages –channel specification

BIND Categories BIND has many categories Short descriptions of each can be found in the Administrator's Reference Manual (ARM) –Section , page 49 –Example: category dnssec { dnssec_log; };

BIND channels BIND can use syslog BIND can direct output to other files –Example: channel dnssec_log { file "seclog" versions 3 size 10m; print-time yes; print-category yes; print-severity yes; severity debug 3; };

So You've Set Up A Server What testing should be done? From Basic liveness –Is the (right) server running? –Is the machine set up correctly? To data being served –Has the zone loaded? –Have zone transfers happened?

Checking the Configuration To see named start, use the -g flag –Keeps named process in the foreground –Prints some diagnostics –But does not execute logging When satisfied with named's start, kill the process and start without –g flag Other option –named-checkconf –checks syntax only

Is the Server Running? Once the name server is thought to be running, make sure it is > version.bind chaos txt > named -v This makes the name server do the simplest lookup it can - its version string This also confirms which version you started –Common upgrade error: running the old version, forgetting to 'make install'

Is the Server Data Correct? Now that the server is the right one (executable) soa Check the serial number to make sure the zone has loaded Also test changed data in case you forgot to update the serial number When we get to secondary servers, this check is made to see if the zone transferred

Is the Server Reachable? If the dig tests fail, its time to test the environment (machine, network) –ping This tests basic network flow, common errors –Network interface not UP –Routing to machine not correct Pinging 'locally' is useful, believe it or not –Confirms that the IP address is correctly configured

Is the Server Listening? If the server does not respond, but machine responds to ping –look at system log files –telnet server 53 –firewall running? Server will run even if it can't open the network port –logs will show this –telnet opens a TCP connection, tests whether port was opened at all

Is the Server Logging the Right Stuff? Provoking and examining the logs –Log files only appear when needed –For example, dnssec logs will start only if 'trusted-keys' are configured and are used –Each category is triggered differently Triggers may not be obvious

Using the Tools named itself dig/nslookup host diagnostics packet sniffers

Built in to named named -g to retain command line –named -g -c –keeps named in foreground named -d –sets the debug output volume – 's aren't strictly defined –-d 3 is popular, -d 99 gives a lot of detail

dig domain internet groper –already used in examples –best tool for testing –shows query and response syntax –documentation man dig dig -help Included in named distribution

Non-BIND Tools Tools to make sure environment is right –Tools to look at server machine –Tools to test network –Tools to see what messages are on the network

ifconfig InterFace CONFIGuration > ifconfig -a –shows the status of interfaces –operating system utility Warning, during boot up, ifconfig may configure interfaces after named is started –named can't open delayed addresses Documentation >man ifconfig

ping Checks routing, machine health –Most useful if run from another host –Could be reason "no servers are reached" –Can be useful on local machine - to see if the interface is properly configured

traceroute If ping fails, traceroute can help pinpoint where trouble lies –the problem may be routing –if so - it's not named that needs fixing! –but is it important to know...

tcpdump and ethereal Once confident in the environment, problems with DNS setup may exist To see what is happening in the protocol, use traffic sniffers These tools can help debug "forwarding" of queries ethereal can be retrived from –

Questions?

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.