Submitted by mike8 on Sun, 08/01/2010 - 14:45
When I run the Connectivity Check, I get this response "Response contained no valid lines : "File a support ticket with Virtualmin. I'm not sure what the problem is, looking through the Log, I don't see anything. I can connect to the Site over the local network, but it looks like it is not accessible over the Internet. Where do I look for the problem?
Michael
Status:
Closed (fixed)
Comments
Is the server behind a NAT router/firewall? Consumer-level routers, in particular, often are unable to actually route...they can't deal with traffic from inside the network coming back into the network on the public IP.
I'm not actually sure what this particular error means, though. I'm guessing it's one of the tests where our server makes a request of yours and expects a specific response, and in this case, got something else. This could indicate a misconfigured NAT or DMZ setting in the router, or something altogether different.
Submitted by mike8 on Sun, 08/01/2010 - 16:22 Comment #2
I ran the test again and got this response
.
Nameserver mismatch None of the nameservers match this system : dns2.nameresolvers.com. dns3.nameresolvers.com. dns4.nameresolvers.com. dns1.nameresolvers.com. Verify with your DNS registrar that nameservers for the domain are set correctly.
Website request failed 500 Can't connect to asrservice.com:80 (Bad hostname 'asrservice.com') Make sure your system's web server is running, that port 80 is not blocked by a firewall, and that the domain has a valid index page.
Failed to ping IP address Ping of 74.87.143.202 did not response in 5 seconds Verify firewall and routing settings between your system and the Internet.
SMTP connection timed out Failed to connect in 10 seconds Check if your system's firewall is blocking port 25.
Everything was working fine on the 28th, I was out of town this week, and when I got back yesterday, I noticed the server was locked up, so I restarted, and PostFix would not start, also ClamD would not. start. The server stopped responding on the 31st, in the morning. I had to stop "SendMail" not sure how it got started, as it was disabled. So I don't know if it was an update, or what. All the Firewalls are disabled too. so that's not it.
Michael
First up, your DNS is misconfigured at your registrar, unless you aren't hosting your own DNS (in which case, you'd want to disable DNS in Virtualmin, so it's not expecting DNS to be pointing to your server). We don't have any control over that, and it's not something you can fix in Virtualmin...you need to fix it at your registrar.
The website error is probably because of the registrar misconfiguration. Bad hostname means a lookup of that name fails.
Pings not working could be any number of things. Many consumer-level routers don't forward pings, or have to be explicitly configured to do so (or they may respond to pings themselves, rather than forwarding, when in a DMZ or NAT configuration). That IP address is a RoadRunner address, so I'm going to guess you are behind some sort of Linksys or Netgear or Belkin or whatever router that is doing NAT, and maybe you have the DMZ configured? This would definitely fall into the category of "consumer router", and so it's not going to behave appropriately in some situations. Pings may simply not work with that configuration, and there may be nothing to be done about it. That said, port 80 is not responding, at all, on that address, so if Apache is running then it's probably a misconfiguration in your router.
I think you're looking for problems in the wrong place: The Virtualmin server is probably not responsible for any of the problems you're seeing (though Sendmail being running is weird and maybe a little worrisome). DNS isn't working because your registrar is serving out name servers that don't know about your domain, and networking isn't working because your router isn't doing whatever it is that needs to be done to get traffic from the world to your server. (I'm guessing. More troubleshooting is needed to isolate the network problems. Like, can you get a response back from the server by hitting its private IP address?)
Submitted by mike8 on Sun, 08/01/2010 - 17:55 Comment #4
1st off, I have 5 Static IP's, 4 of which go directly from the Cable Modem to the Server, IP 202-205 No Router involved. I do have a Router, but I only have 1 IP going to the Router ip 206. My main Network for my office. all on DHCP through the Netgear Router. But my Server is stand alone. it doesn't connect to the Router at all.
2nd, I have seen this error with the DNS ever sense I put this Server together. But wasn't able to figure out how to correct it. It has been working up until now. So something must have happened when the Server Locked up. I had to hit the reset Button to get it to shut off. Then restarted. that's when I noticed that ClamD "Failed" to start. And after the server came back up, that Postfix would not run correctly. By turning off "SendMail" then restarting Postfix, it now runs again. Like I said before, Sendmail was disabled until the Server Locked up, so maybe something changed at restart. You said I could disable DNS, and just use the DNS from my Host. When I set up my Network on this server, I set the DNS to the Roadrunner's DNS, so unless something has changed by its self. I haven't messed with it.
I guess I just not sure on how to set up a DNS server, to get it working. Or If I can just use the DNS from Roadrunner, or if I have to use the DNS from the Host for the Domain Names are registered.
Any thoughts on this would be greatly appreciated. I don't know if there are any step by step directions for setting up a DNS Server with-in Virtualmin, that would help.
Michael
1st off, I have 5 Static IP's, 4 of which go directly from the Cable Modem to the Server, IP 202-205 No Router involved. I do have a Router, but I only have 1 IP going to the Router ip 206. My main Network for my office. all on DHCP through the Netgear Router. But my Server is stand alone. it doesn't connect to the Router at all.
OK, it's a matter of figuring out why the server isn't responding.
What does the ifconfig command print out on your server?
And, route -n?
The last few steps of the traceroute to your 74.87.143.202 address look like this:
5 ge-7-0-0.pr0.sea20.tbone.rr.com (66.109.9.77) 1.859 ms 1.904 ms 1.950 ms 6 ae-1-0.cr0.sea20.tbone.rr.com (66.109.6.144) 1.996 ms 1.573 ms 0.666 ms 7 so-1-0-0.cralid-rtr1.natnow.rr.com (66.109.6.87) 8.205 ms 8.187 ms 8.249 ms 8 gig1-11-1.cralid-bb11.natnow.rr.com (65.28.216.2) 9.612 ms 9.872 ms 10.092 ms 9 * * *
Which means it's either never making it to your server, or your server is not responding the the ICMP query.
nmap shows it down as well, so it's not just ICMP messages that aren't working...look like nothing is responding. So, either that IP isn't up on the server, a firewall is blocking it, or your ISP isn't routing traffic to that address.
I guess I just not sure on how to set up a DNS server, to get it working. Or If I can just use the DNS from Roadrunner, or if I have to use the DNS from the Host for the Domain Names are registered.
Virtualmin handles the DNS server side of things. You shouldn't need to do anything to your DNS server, it's all automatic.
The error you're seeing does not indicate a problem with the DNS server. It indicates that your domain registrar is serving out name servers that are not your Virtualmin server...and thus the DNS that Virtualmin is configuring for you simply isn't doing anything--no one knows to ask your server for DNS information. The registrar distributes your name server information to the world via the root name servers, people query the root name servers, and once they know who to ask, they send a request to the name server provided by the root server. In your case, the root servers are telling the world that your name servers are:
Name Server: DNS1.NAMERESOLVERS.COM Name Server: DNS2.NAMERESOLVERS.COM Name Server: DNS3.NAMERESOLVERS.COM Name Server: DNS4.NAMERESOLVERS.COM
They now appear to be responding appropriately, at least for www.asrservice.com. The MX record looks a little suspicious with forward100.nameresolvers.com as the mail server for your zone (which is fine, if that's what you intend and you want to forward mail through nameresolvers.com).
Again, if you want to use DNS service that is not running on your Virtualmin server, you should disable DNS service for that domain (click Edit Virtual Server for that domain, and then in "Enabled features" uncheck DNS and save it). If you do want to let Virtualmin manage your DNS, you would need to change the name servers at your registrar to point to the Virtualmin system. Disabling DNS on the server, will make this error during configuration and connection checks go away, because it won't be trying to resolve your hostname on the local box.
I don't know that RoadRunner provides DNS service. Even if they do, I'm certain they are not the people you want managing your DNS. But, right now, your DNS is handled by nameresolvers.com (which redirects to namejuice.com). Any DNS problems you have will have to be dealt with using their interface or whatever means they provide for editing DNS records.
Submitted by mike8 on Sun, 08/01/2010 - 19:53 Comment #6
Thanks for the help here Joe, I really appreciate it.
When I run the command "ifconfig" I get this.
[root@asrservice ~]# ifconfig eth0 Link encap:Ethernet HWaddr FE:FF:FF:FF:FF:FF inet addr:74.87.143.202 Bcast:74.87.143.207 Mask:255.255.255.248 inet6 addr: fe80::fcff:ffff:feff:ffff/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:2065 errors:0 dropped:0 overruns:0 frame:0 TX packets:1016 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:125100 (122.1 KiB) TX bytes:49337 (48.1 KiB) eth1 Link encap:Ethernet HWaddr 00:1B:2F:C9:82:35 inet addr:74.87.143.203 Bcast:74.87.143.207 Mask:255.255.255.248 inet6 addr: fe80::21b:2fff:fec9:8235/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:7741 errors:0 dropped:0 overruns:0 frame:0 TX packets:77856 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:3604982 (3.4 MiB) TX bytes:19080915 (18.1 MiB) Interrupt:18 Base address:0xc900 eth2 Link encap:Ethernet HWaddr 00:1E:2A:47:A7:81 inet addr:74.87.143.204 Bcast:74.87.143.207 Mask:255.255.255.248 inet6 addr: fe80::21e:2aff:fe47:a781/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:68887 errors:0 dropped:0 overruns:0 frame:0 TX packets:1602 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:9450946 (9.0 MiB) TX bytes:74674 (72.9 KiB) Interrupt:20 Base address:0x800 eth3 Link encap:Ethernet HWaddr 00:13:20:A5:57:B1 inet addr:74.87.143.205 Bcast:74.87.143.207 Mask:255.255.255.248 inet6 addr: fe80::213:20ff:fea5:57b1/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:4487 errors:0 dropped:0 overruns:0 frame:0 TX packets:1040 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:358742 (350.3 KiB) TX bytes:51070 (49.8 KiB) Memory:90100000-90120000 lo Link encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 inet6 addr: ::1/128 Scope:Host UP LOOPBACK RUNNING MTU:16436 Metric:1 RX packets:12123 errors:0 dropped:0 overruns:0 frame:0 TX packets:12123 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:5330909 (5.0 MiB) TX bytes:5330909 (5.0 MiB) peth0 Link encap:Ethernet HWaddr FE:FF:FF:FF:FF:FF inet6 addr: fe80::fcff:ffff:feff:ffff/64 Scope:Link UP BROADCAST RUNNING NOARP MTU:1500 Metric:1 RX packets:12549 errors:0 dropped:0 overruns:0 frame:0 TX packets:1155 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:916845 (895.3 KiB) TX bytes:63820 (62.3 KiB) Interrupt:21 Base address:0xaa00 vif0.0 Link encap:Ethernet HWaddr FE:FF:FF:FF:FF:FF inet6 addr: fe80::fcff:ffff:feff:ffff/64 Scope:Link UP BROADCAST RUNNING NOARP MTU:1500 Metric:1 RX packets:1016 errors:0 dropped:0 overruns:0 frame:0 TX packets:2065 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:49337 (48.1 KiB) TX bytes:125100 (122.1 KiB) virbr0 Link encap:Ethernet HWaddr 00:00:00:00:00:00 inet addr:192.168.122.1 Bcast:192.168.122.255 Mask:255.255.255.0 inet6 addr: fe80::200:ff:fe00:0/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:30 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:0 (0.0 b) TX bytes:7052 (6.8 KiB) xenbr0 Link encap:Ethernet HWaddr FE:FF:FF:FF:FF:FF UP BROADCAST RUNNING NOARP MTU:1500 Metric:1 RX packets:12364 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:717621 (700.8 KiB) TX bytes:0 (0.0 b)And with the "route -n" I get.
I hae 4 sites running. 2 are www.asrservice.com, and www.lectraink.com these are through "Name Juice" thats Brandon Gray. Thats where those 2 domain names are registered.
The other 2 are "www.pattiespretties.com" and "www.tvtechcenter.com" both of theres are Registered through GoDaddy.com.
As far as the DNS Server is conserned. I am new to Linux, this is my 1st server. I'm just trying to get everything working. I see where I can disable the DNS Server for all 4 sites, but I would really like to get the DNS Server working on this box, and transfer it from the Domain registrys server to my local box. I'm just not sure on how to do that. You said Virtualmin handles the DNS for me, and that I don't need to do anything, then I must have done something wrong, because there not working.
As for the Mail server, here again, I just want it to work. All 4 of my sites need to be able to send mail out to my customers, and any mail that comes in be sent to my Default E-Mail address.
When I installed CentOS 5.5 on this server, I did a very basic install, and then ran the script to install Virtualmin, but from there I tried to configure the server the best I could, not knowing what I was doing, but managed to get it all working, till something went south..
I think the only things I seem to be having trouble with is the DNS Server, and the Mail Server. I think I have everything else working.. But here I need help.
On the DNS server, I would like to set it up on this server, but don't know how. If there was a guide I could follow, I think I could do it. The same thing with the Mail Server. The only thing I want is to have all 4 sites to be able to send out mail to my customers e-mail address. and all incomming mail to go to my default e-mail address, I think I have that set. But don't know if its right. Here again if I had a Guide to read for setting it up, I think I could do it. I don't mind reading.
Michael
So, some interesting stuff shakes out from that.
ifconfig indicates you have four physical ethernet ports on the server. Is that right?
Are all of them plugged in? It looks like just one of them is, when I try to ping your various IP addresses (203 responds to ping).
My spidey sense is telling me that you turned on routing within your kernel in the past, in a non-permanent way, and then the reboot turned it back off (since it's not on, by default). This would kill all of the ports that are not directly plugged in.
Two options in that case...turn routing back on (and this time do it permanently), or move those addresses onto a single physical interface (there's no reason to divide them up across a bunch of interfaces if you want them all facing the world).
Turning routing back on will probably get you back to where you were before the system was rebooted.
To do that browse to:
Webmin->Networking->Network Configuration->Routing and Gateways
Set "Act as router?" to Yes, save it, and apply configuration.
This will probably get those other addresses responding. You'll still have an odd and unnecessarily complex configuration (a server doesn't usually need to act as a router), but it will probably be working.
I'm going to go ahead and send this response, since I think it's all that's keeping your system from working as it was before. And then I'll post another reply about DNS, as it's a much deeper subject.
OK, DNS...where to begin?
You're missing one of the steps I described above in my discussion about DNS.
There's your DNS server, which is running your Virtualmin system. We can test that, since we now know that 203 is up and running, so I did:
-bash-3.2$ host asrservice.com 74.87.143.203 Using domain server: Name: 74.87.143.203 Address: 74.87.143.203#53 Aliases:
asrservice.com has address 74.87.143.202 asrservice.com mail is handled by 5 mail.asrservice.com.
Bam! Working DNS server! Virtualmin did its job, and you don't have to think about your DNS server. As I said, Virtualmin is already managing your DNS server for you. You don't need a tutorial on setting up a DNS server, because it's already setup and working fine.
However, the DNS server is not the only piece of the puzzle in providing DNS service.
Your registrar has to know about your DNS server in order for it to refer requests to your server. How you go about changing the name servers at your registrar is completely out of our control, and I'm wholly unfamiliar with namejuice.com. This is not something that happens on your server. No amount of configuring your DNS server will make this step happen.
Since you've indicated you're not afraid to read, I'll refer you to Jamie's introduction to the BIND DNS system section in the Webmin wiki:
http://doxfer.com/Webmin/BINDDNSServer#Introduction_to_the_Domain_Name
This will, hopefully, give you a reasonable mental map of how DNS works, and why things aren't working the way you think they are. There's also tons of BIND documentation there, but, as we've already established with testing, your DNS server is working fine. Nothing wrong with the configuration there, and you didn't do anything wrong. Virtualmin is managing your DNS zones without issue. Only thing missing is that the registrars are not pointing to your server, and you have to do that at the registrar not in Virtualmin.
I will offer a couple of tips:
When you configure a name server at your registrar it needs to be for a name that already resolves.
So, you need to create a couple of A (address) records at your current DNS server (nameresolvers.com) to point to your Virtualmin server IP. You'd want to create ns1.asrservice.com to point to 74.87.143.202 and ns2.asrservice.com to point to 74.87.143.203, for example.
Once those have propagated, and answering correctly, you can use those names as your nameservers at your registrar. That will start sending name server requests to your name server, instead of the ones at nameresolvers.com, and then you don't have to think about DNS anymore, because Virtualmin will handle.
Actually, I take that back, there is one other step required, since you didn't plan from the get-go to use Virtualmin to manage your DNS (or you perhaps did, but didn't realize all the intricacies of DNS). Virtualmin defaults to using the hostname of your server, whatever that might be, for the NS (name server) record on new DNS zones. This probably isn't ns1.asrservice.com, since you didn't plan for it to be your name server. So, you need to manually configure Virtualmin to use this name in NS records in the Virtualmin configuration. I'll just borrow for the docs for that step:
If, for some reason, you don't like the default name of the first NS record (taken from the hostname of your server), you can change it in the Server Template(s) that you use, in the BIND DNS domain section. The field is labeled Master DNS server hostname. Just like with the slave servers, this name must be valid and point to the correct IP address, otherwise name service will not work, or will be unreliable.
And, if you want to setup a DNS slave, you'd want to follow this: http://www.virtualmin.com/documentation/dns/slave-configuration
Submitted by mike8 on Mon, 08/02/2010 - 18:17 Comment #9
OK I have been reading sense last night, and I think I understand how DSN works. I have made some changes to see if I can get this all working the right way. But I guess I have messed something up, because now Bind DNS won't start. I get this error.
Failed to start service : Failed to start BIND : Starting named: /bin/chown: `named:named': invalid user Error in named configuration: /etc/named.conf:1: syntax error near ';' [FAILED]This is getting very frustrating. I almost just formatted the Server, and started all over. Except all the work I have gone through to set it all up. Once I get this set up, I can go to the register of the Domain and transfer the DNS to this server. But I don't know what this error means.
Thanks Michael
Wait, why are you changing your BIND configuration? I've already pointed out that your DNS server was working fine. There was nothing wrong with your DNS server. It was answering queries for your zones without trouble. I only referred to the documentation because you wanted to understand DNS better, not because I wanted you to go poking at your configuration.
The only change you need to make to DNS is at your registrar (namejuice.com). Nothing on your Virtualmin server needs changing (well, now it does, I guess...).
Do not format your server, please. We'll really be in for a long haul if you do that. ;-)
Pause for a moment, take a step back, and let's work through the problems on at a time.
I can login to your system and figure out what went wrong with you DNS server and put it back to rights, if you'd like. I can't do anything at your registrar, of course...you'll need to do that. See here for how to enable remote access using our Support module:
http://www.virtualmin.com/documentation/system/support
As I mentioned in my next to last reply, if this server was working in the past, merely enabling routing should have made everything start working again the way it was. Did you do that?
Submitted by mike8 on Tue, 08/03/2010 - 17:13 Comment #11
Hi Joe,
thanks for the reply, but too late, I have already Formatted, and reinstalled. I was having problems with other thing, after the crash. Looks like everything is working again. I have all 4 sites back up, and databases re-imported. I know I can go to the Registrar and transfer DNS to this server. I also now how to do that., but just not sure what to change it to. Do I use a IP Address, and a site name? Do I need to set up a Primary, and Secondary DNS. This is the part I just don't understand. I understand how the DNS works, but don't understand how it works in Virtualmin.
I think the only thing left to set up, is the Mail Server, and I would like to upgrade my PHP back to 5.2 Then finish the DNS stuff. I would love to set it up and have you look at the server, and see if everything is set right.
The Server is no longer acting as a Router. And I have people logging in to the sites so it must be working. ( not sure how that got turned on in the 1st place)
The only thing I need help with is what to tell my Registrar. I have a setting in my account to use "there DNS", or "mine". All I have to is change it to "Use Mine", and then enter the address to send it too. Same thing with GoDaddy. So how to get Virtualmin set up so I can give them that info. And what that info is.
The only other thing I need help with, is setting up the mail Server. I just want the Sites to be able to send out mail to the customers. I have 3 stores, so I need them to be able to send e-mail out to my customers. The store software will automatically send out an e-mail, I just need the Mail Server to allow it to go out. As for incoming mail, all the sites when sending out mail, lists the return address as webmaster@site.com (what ever the site name is) So I just need all incoming mail to go to my home e-mail address. and I think I can get that OK. I think!
I will read the Document you sent me on setting up the server for you to log in. and let you know when its ready.
Thanks Joe.
Michael
Submitted by mike8 on Thu, 08/05/2010 - 10:03 Comment #12