Zimbra installation - DNS/LDAP problem

Ask questions about your setup or get help installing ZCS server (ZD section below).
mateusscheper
Posts: 17
Joined: Tue May 29, 2018 12:49 pm

Zimbra installation - DNS/LDAP problem

Post by mateusscheper »

Hello! I'm new on Zimbra and I'm trying to install it.

After a few hours of research, I found this link https://www.missioncriticalemail.com/20 ... ick-start/ but I'm not sure I'm doing it right.
After editing /etc/hosts, /etc/resolv.conf and /etc/hostname, I cannot access internet anymore. I think it's because I cannot access my own PCs from outside the network (only with 10.1.1.x). Plus, I have a firewall server which is my gateway (10.1.1.1).

To access my zimbra server from outside, I was thinking about using mateuscentos7.hopto.org:2600 to redirect to my server, which is 10.1.1.43 (not sure the port yet. 8080 maybe?).

I already tried this tutorial too (the bind part) https://wiki.zimbra.com/wiki/Split_DNS, but I get this:

Code: Select all

[root@mail ~]# service zimbra start
Host 10.1.1.43
Unable to start TLS: hostname verification failed when connecting to ldap master.
I was going to uninstall Zimbra to do the missioncriticalemail.com steps, but I lost my internet connection due to the files' changes, so I didn't.
/etc/hosts:

Code: Select all

127.0.0.1   localhost localhost.localdomain localhost4 localhost4.localdomain4
#::1         localhost localhost.localdomain localhost6 localhost6.localdomain6
177.3.171.151   mail.mateuscentos7.hopto.org mail
/etc/resolv.conf:

Code: Select all

# Generated by NetworkManager
nameserver 127.0.0.1
search mateuscentos7.hopto.org
hostname:

Code: Select all

[root@mail ~]# hostname
mail
Sorry if my english is bad and/or I said something stupid. I'm new at this.
Thank you very much!
phoenix
Ambassador
Ambassador
Posts: 27272
Joined: Fri Sep 12, 2014 9:56 pm
Location: Liverpool, England

Re: Zimbra installation - DNS/LDAP problem

Post by phoenix »

Your hosts file is incorrect, the IP address should point to the LAN IP of your ZCS server not your public IP - this is fully explained in the Split DNS wiki article (and all over the forums).
Regards

Bill

Rspamd: A high performance spamassassin replacement

Per ardua ad astra
mateusscheper
Posts: 17
Joined: Tue May 29, 2018 12:49 pm

Re: Zimbra installation - DNS/LDAP problem

Post by mateusscheper »

phoenix wrote:Your hosts file is incorrect, the IP address should point to the LAN IP of your ZCS server not your public IP - this is fully explained in the Split DNS wiki article (and all over the forums).
I'm sorry, I didn't see the dnsmasq part of the wiki article because it said to do only Bind or dnsmasq, so I skipped the /etc/hosts part. My bad.

Anyway, I changed the /etc/hosts to 10.1.1.43 mail.mateuscentos7.hopto.org mail, but nothing. I think the problem is that all external connections goes to the 10.1.1.1 first.
phoenix
Ambassador
Ambassador
Posts: 27272
Joined: Fri Sep 12, 2014 9:56 pm
Location: Liverpool, England

Re: Zimbra installation - DNS/LDAP problem

Post by phoenix »

Are you actually using a local DNS server (you should be)? If you have valid local DNS A & MX records then it should be working, check your configuration again with the 'Verify...' section of the Split DNS article.
Regards

Bill

Rspamd: A high performance spamassassin replacement

Per ardua ad astra
mateusscheper
Posts: 17
Joined: Tue May 29, 2018 12:49 pm

Re: Zimbra installation - DNS/LDAP problem

Post by mateusscheper »

Code: Select all

[root@mail ~]# dig mateuscentos7.hopto.org mx

; <<>> DiG 9.9.4-RedHat-9.9.4-61.el7 <<>> mateuscentos7.hopto.org mx
;; global options: +cmd
;; connection timed out; no servers could be reached
[root@mail ~]# dig mateuscentos7.hopto.org any

; <<>> DiG 9.9.4-RedHat-9.9.4-61.el7 <<>> mateuscentos7.hopto.org any
;; global options: +cmd
;; connection timed out; no servers could be reached
[root@mail ~]# host $(hostname)
;; connection timed out; no servers could be reached
phoenix wrote:Are you actually using a local DNS server (you should be)? If you have valid local DNS A & MX records then it should be working, check your configuration again with the 'Verify...' section of the Split DNS article.
Do you mean this? https://www.youtube.com/watch?v=67tbQnI-Ix4

db.mateuscentos7.hopto.org:

Code: Select all

$TTL 86400
@       IN       SOA    mail.mateuscentos7.hopto.org.     admin.mateuscentos7.hopto.org.    (
                        1               ;Serial
                        3600            ;Refresh
                        1800            ;Retry
                        604800          ;Expire
                        86400           ;Minimum TTL
                        )
@                       NS      mail.mateuscentos7.hopto.org.
@                       NS      slave.mateuscentos7.hopto.org.
@                       MX      10      mail.mateuscentos7.hopto.org.


@               IN      A               177.3.171.151
www             IN      A               177.3.171.151
mail            IN      A               177.3.171.151

mail.mateuscentos7.hopto.org.     IN      TXT     "v=spf1 a mx ~all"
mateuscentos7.hopto.org.          IN      TXT     "v=spf1 a mx ~all"
db.mateuscentos7.hopto.org-reverso:

Code: Select all

 $TTL 86400
@       IN       SOA    mail.mateuscentos7.hopto.org.     admin.mateuscentos7.hopto.org.    (
                        1               ;Serial
                        3600            ;Refresh
                        1800            ;Retry
                        604800          ;Expire
                        86400           ;Minimum TTL
                        )
@       IN              NS      mail.mateuscentos7.hopto.org.
@       IN              NS      slave.mateuscentos7.hopto.org.
@       IN              MX      10      mail.mateuscentos7.hopto.org.
@       IN              PTR     mail.mateuscentos7.hopto.org.

150     IN      PTR     mail.mateuscentos7.hopto.org
I copied these from another Zimbra server that I can login.
My /etc/hosts, /etc/resolv.conf and /etc/hostname are the ones I first posted.

EDIT:
I changed my /etc/resolv.conf to nameserver 10.1.1.1 (my firewall server) and I can ping again.

Code: Select all

[root@mail named]# dig mail.mateuscentos7.hopto.org any

; <<>> DiG 9.9.4-RedHat-9.9.4-61.el7 <<>> mail.mateuscentos7.hopto.org any
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37261
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;mail.mateuscentos7.hopto.org.  IN      ANY

;; AUTHORITY SECTION:
hopto.org.              59      IN      SOA     nf1.no-ip.com. hostmaster.no-ip.com. 2048149150 600 300 604800 600

;; Query time: 227 msec
;; SERVER: 10.1.1.1#53(10.1.1.1)
;; WHEN: Ter Mai 29 14:24:05 -03 2018
;; MSG SIZE  rcvd: 117

Code: Select all

[root@mail named]# dig mail.mateuscentos7.hopto.org mx

; <<>> DiG 9.9.4-RedHat-9.9.4-61.el7 <<>> mail.mateuscentos7.hopto.org mx
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54324
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;mail.mateuscentos7.hopto.org.  IN      MX

;; AUTHORITY SECTION:
hopto.org.              57      IN      SOA     nf1.no-ip.com. hostmaster.no-ip.com. 2048149150 600 300 604800 600

;; Query time: 1 msec
;; SERVER: 10.1.1.1#53(10.1.1.1)
;; WHEN: Ter Mai 29 14:24:08 -03 2018
;; MSG SIZE  rcvd: 117

Code: Select all

[root@mail named]# host $(hostname)
Host mail not found: 3(NXDOMAIN)
phoenix
Ambassador
Ambassador
Posts: 27272
Joined: Fri Sep 12, 2014 9:56 pm
Location: Liverpool, England

Re: Zimbra installation - DNS/LDAP problem

Post by phoenix »

None of the records you've posted show you as having a local dns server and the article you should follow is this one: https://wiki.zimbra.com/wiki/Split_DNS
Regards

Bill

Rspamd: A high performance spamassassin replacement

Per ardua ad astra
mateusscheper
Posts: 17
Joined: Tue May 29, 2018 12:49 pm

Re: Zimbra installation - DNS/LDAP problem

Post by mateusscheper »

phoenix wrote:None of the records you've posted show you as having a local dns server and the article you should follow is this one: https://wiki.zimbra.com/wiki/Split_DNS
Then how can I show?

I followed that one.
I edited the named.conf:

Code: Select all

//
// named.conf
//
// Provided by Red Hat bind package to configure the ISC BIND named(8) DNS
// server as a caching only nameserver (as a localhost DNS resolver only).
//
// See /usr/share/doc/bind*/sample/ for example named configuration files.
//
// See the BIND Administrator's Reference Manual (ARM) for details about the
// configuration located in /usr/share/doc/bind-{version}/Bv9ARM.html

options {
        listen-on port 53 { 127.0.0.1; };
        listen-on-v6 port 53 { ::1; };
        directory       "/var/named";
        dump-file       "/var/named/data/cache_dump.db";
        statistics-file "/var/named/data/named_stats.txt";
        memstatistics-file "/var/named/data/named_mem_stats.txt";
        allow-query     { any; };


        /*
         - If you are building an AUTHORITATIVE DNS server, do NOT enable recursion.
         - If you are building a RECURSIVE (caching) DNS server, you need to enable
           recursion.
         - If your recursive DNS server has a public IP address, you MUST enable access
           control to limit queries to your legitimate users. Failing to do so will
           cause your server to become part of large scale DNS amplification
           attacks. Implementing BCP38 within your network would greatly
           reduce such attack surface
        */
        recursion yes;

        dnssec-enable yes;
        dnssec-validation yes;
        dnssec-lookaside auto;

        /* Path to ISC DLV key */
        bindkeys-file "/etc/named.iscdlv.key";

        managed-keys-directory "/var/named/dynamic";

        pid-file "/run/named/named.pid";
        session-keyfile "/run/named/session.key";
};

logging {
        channel default_debug {
                file "data/named.run";
                severity dynamic;
        };
};

zone "." IN {
        type forward;
        forward only;
forwarders { 8.8.8.8;8.8.4.4; };



zone "mateuscentos7.hopto.org" IN {
        type master;
        file "mateuscentos7.hopto.org";
        allow-update { none; };
};


#zone "." IN {
#       type hint;
#       file "named.ca";
#};

zone "1.1.10.in-addr.arpa" IN {
        type master;
        file "1.1.10.in-addr.arpa.ns";
        allow-update { none; };
};

include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";
Then I created the zone file:

Code: Select all

;
;       Addresses and other host information.
;
@       IN      SOA     mateuscentos7.hopto.org. hostmaster.mateuscentos7.hopto.org. (
                               10119      ; Serial
                               43200      ; Refresh
                               3600       ; Retry
                               3600000    ; Expire
                               2592000 )  ; Minimum
;       Define the nameservers and the mail servers
        IN      NS      10.1.1.43
mateuscentos7.hopto.org.         IN      MX      10 mail.mateuscentos7.hopto.org.
mail.mateuscentos7.hopto.org    IN      A       10.1.1.43
And I changed the /etc/resolv.conf:

Code: Select all

# Generated by NetworkManager
search mateuscentos7.hopto.org
nameserver 10.1.1.1
The only thing that worked was changing the resolv.conf to 10.1.1.1.
When I run systemctl named start, I get this:

Code: Select all

[root@mail named]# systemctl start named
Job for named.service failed because the control process exited with error code. See "systemctl status named.service" and "journalctl -xe" for details.
[root@mail named]# systemctl status named.service
● named.service - Berkeley Internet Name Domain (DNS)
   Loaded: loaded (/usr/lib/systemd/system/named.service; enabled; vendor preset: disabled)
   Active: failed (Result: exit-code) since Ter 2018-05-29 15:22:19 -03; 24s ago
  Process: 18166 ExecStartPre=/bin/bash -c if [ ! "$DISABLE_ZONE_CHECKING" == "yes" ]; then /usr/sbin/named-checkconf -z "$NAMEDCONF"; else echo "Checking of zone files is disabled"; fi (code=exited, status=1/FAILURE)

Mai 29 15:22:19 mail bash[18166]: zone 1.1.10.in-addr.arpa/IN: loaded serial 1
Mai 29 15:22:19 mail bash[18166]: zone localhost.localdomain/IN: loaded serial 0
Mai 29 15:22:19 mail bash[18166]: zone localhost/IN: loaded serial 0
Mai 29 15:22:19 mail bash[18166]: zone 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 0
Mai 29 15:22:19 mail bash[18166]: zone 1.0.0.127.in-addr.arpa/IN: loaded serial 0
Mai 29 15:22:19 mail bash[18166]: zone 0.in-addr.arpa/IN: loaded serial 0
Mai 29 15:22:19 mail systemd[1]: named.service: control process exited, code=exited status=1
Mai 29 15:22:19 mail systemd[1]: Failed to start Berkeley Internet Name Domain (DNS).
Mai 29 15:22:19 mail systemd[1]: Unit named.service entered failed state.
Mai 29 15:22:19 mail systemd[1]: named.service failed.
EDIT: I updated my zone file and I can now start named.

Code: Select all

[root@mail named]# service named start
Redirecting to /bin/systemctl start named.service
[root@mail named]# systemctl status named
● named.service - Berkeley Internet Name Domain (DNS)
   Loaded: loaded (/usr/lib/systemd/system/named.service; enabled; vendor preset: disabled)
   Active: active (running) since Ter 2018-05-29 17:20:45 -03; 8s ago
  Process: 28059 ExecStart=/usr/sbin/named -u named -c ${NAMEDCONF} $OPTIONS (code=exited, status=0/SUCCESS)
  Process: 28056 ExecStartPre=/bin/bash -c if [ ! "$DISABLE_ZONE_CHECKING" == "yes" ]; then /usr/sbin/named-checkconf -z "$NAMEDCONF"; else echo "Checking of zone files is disabled"; fi (code=exited, status=0/SUCCESS)
 Main PID: 28061 (named)
   CGroup: /system.slice/named.service
           └─28061 /usr/sbin/named -u named -c /etc/named.conf

Mai 29 17:20:45 mail named[28061]: zone 1.1.10.in-addr.arpa/IN: loaded serial 1
Mai 29 17:20:45 mail named[28061]: zone localhost.localdomain/IN: loaded serial 0
Mai 29 17:20:45 mail named[28061]: zone 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 0
Mai 29 17:20:45 mail named[28061]: zone localhost/IN: loaded serial 0
Mai 29 17:20:45 mail systemd[1]: Started Berkeley Internet Name Domain (DNS).
Mai 29 17:20:45 mail named[28061]: mateuscentos7.hopto.org:4: no TTL specified; using SOA MINTTL instead
Mai 29 17:20:45 mail named[28061]: zone mateuscentos7.hopto.org/IN: loaded serial 10120
Mai 29 17:20:45 mail named[28061]: all zones loaded
Mai 29 17:20:45 mail named[28061]: running
Mai 29 17:20:45 mail named[28061]: zone 1.1.10.in-addr.arpa/IN: sending notifies (serial 1)

Code: Select all

;
;       Addresses and other host information.
;
@       IN      SOA    mail.mateuscentos7.hopto.org. hostmaster.mateuscentos7.hopto.org. (
                               10120      ; Serial
                               43200      ; Refresh
                               3600       ; Retry
                               3600000    ; Expire
                               2592000 )  ; Minimum


;       Define the nameservers and the mail servers
@         IN      NS      mail.mateuscentos7.hopto.org.
@         IN      MX      10            mail.mateuscentos7.hopto.org.


@                           IN      A       177.3.171.151
mail                        IN      A       177.3.171.151

mail.mateuscentos7.hopto.org.     IN      TXT     "v=spf1 a mx ~all"
Tests:

Code: Select all

[root@mail named]# host mateuscentos7.hopto.org
mateuscentos7.hopto.org has address 177.3.171.151

Code: Select all

[root@mail named]# dig mateuscentos7.hopto.org any

; <<>> DiG 9.9.4-RedHat-9.9.4-61.el7 <<>> mateuscentos7.hopto.org any
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 49264
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 13, ADDITIONAL: 27

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;mateuscentos7.hopto.org.       IN      ANY

;; ANSWER SECTION:
mateuscentos7.hopto.org. 59     IN      A       177.3.171.151

;; AUTHORITY SECTION:
.                       21867   IN      NS      a.root-servers.net.
.                       21867   IN      NS      b.root-servers.net.
.                       21867   IN      NS      c.root-servers.net.
.                       21867   IN      NS      d.root-servers.net.
.                       21867   IN      NS      e.root-servers.net.
.                       21867   IN      NS      f.root-servers.net.
.                       21867   IN      NS      g.root-servers.net.
.                       21867   IN      NS      h.root-servers.net.
.                       21867   IN      NS      i.root-servers.net.
.                       21867   IN      NS      j.root-servers.net.
.                       21867   IN      NS      k.root-servers.net.
.                       21867   IN      NS      l.root-servers.net.
.                       21867   IN      NS      m.root-servers.net.

;; ADDITIONAL SECTION:
a.root-servers.net.     518096  IN      A       198.41.0.4
a.root-servers.net.     518096  IN      AAAA    2001:503:ba3e::2:30
b.root-servers.net.     518096  IN      A       199.9.14.201
b.root-servers.net.     518096  IN      AAAA    2001:500:200::b
c.root-servers.net.     518096  IN      A       192.33.4.12
c.root-servers.net.     518096  IN      AAAA    2001:500:2::c
d.root-servers.net.     518096  IN      A       199.7.91.13
d.root-servers.net.     518096  IN      AAAA    2001:500:2d::d
e.root-servers.net.     518096  IN      A       192.203.230.10
e.root-servers.net.     518096  IN      AAAA    2001:500:a8::e
f.root-servers.net.     518096  IN      A       192.5.5.241
f.root-servers.net.     518096  IN      AAAA    2001:500:2f::f
g.root-servers.net.     518096  IN      A       192.112.36.4
g.root-servers.net.     518096  IN      AAAA    2001:500:12::d0d
h.root-servers.net.     518096  IN      A       198.97.190.53
h.root-servers.net.     518096  IN      AAAA    2001:500:1::53
i.root-servers.net.     518096  IN      A       192.36.148.17
i.root-servers.net.     518096  IN      AAAA    2001:7fe::53
j.root-servers.net.     518096  IN      A       192.58.128.30
j.root-servers.net.     518096  IN      AAAA    2001:503:c27::2:30
k.root-servers.net.     518096  IN      A       193.0.14.129
k.root-servers.net.     518096  IN      AAAA    2001:7fd::1
l.root-servers.net.     518096  IN      A       199.7.83.42
l.root-servers.net.     518096  IN      AAAA    2001:500:9f::42
m.root-servers.net.     518096  IN      A       202.12.27.33
m.root-servers.net.     518096  IN      AAAA    2001:dc3::35

;; Query time: 304 msec
;; SERVER: 10.1.1.1#53(10.1.1.1)
;; WHEN: Ter Mai 29 17:29:04 -03 2018
;; MSG SIZE  rcvd: 851

Code: Select all

[root@mail named]# dig mateuscentos7.hopto.org mx

; <<>> DiG 9.9.4-RedHat-9.9.4-61.el7 <<>> mateuscentos7.hopto.org mx
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 17481
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;mateuscentos7.hopto.org.       IN      MX

;; AUTHORITY SECTION:
hopto.org.              59      IN      SOA     nf1.no-ip.com. hostmaster.no-ip.com. 2048151290 600 300 604800 600

;; Query time: 255 msec
;; SERVER: 10.1.1.1#53(10.1.1.1)
;; WHEN: Ter Mai 29 17:29:47 -03 2018
;; MSG SIZE  rcvd: 112
Now, the only problem I'm having is:

Code: Select all

[root@mail named]# service zimbra start
Host mateuscentos7.hopto.org
        Starting ldap...Done.
Failed.
Failed to start slapd.  Attempting debug start to determine error.
5b0dba53 daemon: bind(7) failed errno=99 (Cannot assign requested address)
5b0dba53 slap_open_listener: failed on ldap://mateuscentos7.hopto.org:389
mateusscheper
Posts: 17
Joined: Tue May 29, 2018 12:49 pm

Re: Zimbra installation - DNS/LDAP problem

Post by mateusscheper »

I managed to start Zimbra, but dnscache only starts if I stop named. I don't know why exactly, but I cannot access Zimbra via browser. If I only access mateuscentos7.hopto.org, it will stop at my firewall server, so I redirected the port 2600 to 10.1.1.43:8443, but still doesn't work.
I need to keep named on, right? If so, do I need dnscache too?

nmap -v 10.1.1.43:

Code: Select all

Nmap scan report for mail.mateuscentos7.hopto.org (10.1.1.43)
Host is up (0.000028s latency).
Not shown: 987 closed ports
PORT     STATE SERVICE
22/tcp   open  ssh
25/tcp   open  smtp
110/tcp  open  pop3
111/tcp  open  rpcbind
143/tcp  open  imap
389/tcp  open  ldap
443/tcp  open  https
465/tcp  open  smtps
587/tcp  open  submission
993/tcp  open  imaps
995/tcp  open  pop3s
7025/tcp open  vmsvc-2
8443/tcp open  https-alt
Zimbra status:

Code: Select all

[root@mail var]# service zimbra status
Host mail.mateuscentos7.hopto.org
        amavis                  Running
        antispam                Running
        antivirus               Running
        dnscache                Running
        ldap                    Running
        logger                  Running
        mailbox                 Running
        memcached               Running
        mta                     Running
        opendkim                Running
        proxy                   Running
        service webapp          Running
        snmp                    Running
        spell                   Running
        stats                   Running
        zimbra webapp           Running
        zimbraAdmin webapp      Running
        zimlet webapp           Running
        zmconfigd               Running
/etc/hosts:

Code: Select all

[root@mail var]# cat /etc/hosts
127.0.0.1   localhost localhost.localdomain #localhost4 localhost4.localdomain4
#::1         localhost localhost.localdomain localhost6 localhost6.localdomain6
10.1.1.43  mail.mateuscentos7.hopto.org mail
/etc/resolv.conf:

Code: Select all

[root@mail var]# cat /etc/resolv.conf
nameserver 127.0.0.1
# Generated by NetworkManager
search mateuscentos7.hopto.org
zone file:

Code: Select all

[root@mail var]# cat /var/named/mateuscentos7.hopto.org
;
;       Addresses and other host information.
;
@       IN      SOA    mail.mateuscentos7.hopto.org. hostmaster.mateuscentos7.hopto.org. (
                               10120      ; Serial
                               43200      ; Refresh
                               3600       ; Retry
                               3600000    ; Expire
                               2592000 )  ; Minimum


;       Define the nameservers and the mail servers
@         IN      NS      mail.mateuscentos7.hopto.org.
@         IN      MX      10            mail.mateuscentos7.hopto.org.


@                           IN      A     10.1.1.43
mail                        IN      A     10.1.1.43

mail.mateuscentos7.hopto.org.     IN      TXT     "v=spf1 a mx ~all"
User avatar
L. Mark Stone
Ambassador
Ambassador
Posts: 2796
Joined: Wed Oct 09, 2013 11:35 am
Location: Portland, Maine, US
ZCS/ZD Version: 10.0.6 Network Edition
Contact:

Re: Zimbra installation - DNS/LDAP problem

Post by L. Mark Stone »

I posted four DNS tests in a recent blog post intended to help people get started with Zimbra quickly.

You are free to use whatever you want for a DNS server for Zimbra, but if you can't pass the four tests you can expect Zimbra will not work correctly.

Hope that helps,
Mark

https://www.missioncriticalemail.com/20 ... ick-start/
___________________________________
L. Mark Stone
Mission Critical Email - Zimbra VAR/BSP/Training Partner https://www.missioncriticalemail.com/
AWS Certified Solutions Architect-Associate
mateusscheper
Posts: 17
Joined: Tue May 29, 2018 12:49 pm

Re: Zimbra installation - DNS/LDAP problem

Post by mateusscheper »

L. Mark Stone wrote:I posted four DNS tests in a recent blog post intended to help people get started with Zimbra quickly.

You are free to use whatever you want for a DNS server for Zimbra, but if you can't pass the four tests you can expect Zimbra will not work correctly.

Hope that helps,
Mark

https://www.missioncriticalemail.com/20 ... ick-start/
Hi!
I saw your tests the other day. My tests results:

Code: Select all

[root@mail ~]# host mail.mateuscentos7.hopto.org
Host mail.mateuscentos7.hopto.org not found: 3(NXDOMAIN)

Code: Select all

[root@mail ~]# host mail
Host mail not found: 3(NXDOMAIN)
I don't know why they are not being found. :cry:

Here the test is returning my internet provider, not my domain.

Code: Select all

[root@mail ~]# host 177.3.171.151
151.171.3.177.in-addr.arpa domain name pointer 4836320013.e.brasiltelecom.net.br.

Code: Select all

[root@mail ~]# host www.yahoo.com
www.yahoo.com is an alias for atsv2-fp.wg1.b.yahoo.com.
atsv2-fp.wg1.b.yahoo.com has address 72.30.35.10
atsv2-fp.wg1.b.yahoo.com has address 72.30.35.9
atsv2-fp.wg1.b.yahoo.com has IPv6 address 2001:4998:58:1836::10
atsv2-fp.wg1.b.yahoo.com has IPv6 address 2001:4998:58:1836::11
[root@mail ~]# dig mateuscentos7.hopto.org mx

; <<>> DiG 9.9.4-RedHat-9.9.4-61.el7 <<>> mateuscentos7.hopto.org mx
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 62843
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;mateuscentos7.hopto.org.       IN      MX

;; AUTHORITY SECTION:
hopto.org.              59      IN      SOA     nf1.no-ip.com. hostmaster.no-ip.com. 2048167746 600 300 604800 600

;; Query time: 578 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Qua Mai 30 17:46:19 -03 2018
;; MSG SIZE  rcvd: 112
Could you help me, please?
Post Reply