From owner-freebsd-questions@FreeBSD.ORG Thu Sep 22 21:29:07 2011 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 00CDE106566B for ; Thu, 22 Sep 2011 21:29:07 +0000 (UTC) (envelope-from editor@d3photography.com) Received: from server.cwis.biz (70-89-202-5-invergrove-mn.hfc.comcastbusiness.net [70.89.202.5]) by mx1.freebsd.org (Postfix) with ESMTP id B46318FC08 for ; Thu, 22 Sep 2011 21:29:06 +0000 (UTC) Received: from server.cwis.biz (localhost [127.0.0.1]) by server.cwis.biz (Postfix) with ESMTP id 4A46F26DA3C4; Thu, 22 Sep 2011 16:31:06 -0500 (CDT) X-Virus-Scanned: amavisd-new at cwis.biz Received: from server.cwis.biz ([127.0.0.1]) by server.cwis.biz (server.cwis.biz [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 15DT5j4X+yX6; Thu, 22 Sep 2011 16:30:53 -0500 (CDT) Received: from [192.168.250.254] (unknown [12.161.8.194]) by server.cwis.biz (Postfix) with ESMTPSA id 7AC1426DA3C3; Thu, 22 Sep 2011 16:30:53 -0500 (CDT) Mime-Version: 1.0 (Apple Message framework v1244.3) Content-Type: text/plain; charset=windows-1252 From: Ryan Coleman In-Reply-To: <201109222014.p8MKEobt083145@mail.r-bonomi.com> Date: Thu, 22 Sep 2011 16:28:50 -0500 Content-Transfer-Encoding: quoted-printable Message-Id: <4B62F4A4-4B49-4CB5-91F1-A3C3E624251F@d3photography.com> References: <201109222014.p8MKEobt083145@mail.r-bonomi.com> To: Robert Bonomi X-Mailer: Apple Mail (2.1244.3) Cc: kline@thought.org, freebsd-questions@freebsd.org Subject: Re: much to my surprise.... X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 22 Sep 2011 21:29:07 -0000 On Sep 22, 2011, at 3:14 PM, Robert Bonomi wrote: >> =46rom owner-freebsd-questions@freebsd.org Thu Sep 22 14:30:49 2011 >> Date: Thu, 22 Sep 2011 12:30:54 -0700 >> From: Gary Kline >> To: FreeBSD Mailing List >> Cc:=20 >> Subject: much to my surprise.... >>=20 >>=20 >> guys, >>=20 >> well, after a forced, unexpected, and emergency 5 days away, i got >> back to my desk and could not ping. while mail seemed to be working,=20= >> and my *local* ping worked---I could ping around from my freebsd = server >> to my other computers--i spent 3+ hours trying to ping various >> sites. Zero. i tried everything i could think of. NOTHING worked. =20= >> i tried the -d -f -f to named and on and on and on. nothing. >>=20 >> *Finally*, i saw that my telco router was displaying "INT" in red >> LED's. i didn't know they displayed in any other color but the >> default green, but after power-cycling, voila! back to green. =20 >> and now, yes, i can ping freebsd.org. and i'm pretty sure other >> network things will work too. =20 >>=20 >> from any/all sysadmin types or others:: >> i would like tricks, tips, insights--whatever--about named and >> whatever else. i thought i had collected many. nope. i've got >> bind 9.8 installed and it was working fine until my recent >> 'vacation.' Other than checking one's routers (hub/switch), and = other=20 >> hardware (including server, computers, cables, etc) does anybody have = a >> checklist of what to do to diagnose this? are there any other >> utilities i can try besides ping and named -d 3 -f -g? other >> network utilities with a debug flag? i'm running 7.3 on a dell 530. >>=20 >> tia for any insights, >=20 > You should _really_ consider hiring a professional to maintain your=20 > systems. >=20 > Diagnosing _this_ problem should have taken no more than about 30 > *seconds*.=20 >=20 > If you can't get somewhere 'by name', you try to get there 'by = address'. >=20 > If 'by address' works and 'by name' doesn't, *that* is the indication = of > a DNS problem. >=20 > If you can't get there 'by address', it is *NOT* a DNS problem, and = you=20 > start looking for a 'connectivity' problem. >=20 > The *BASIC* tools for that start with 'traceroute'. Which would have > *immediately* (well, within abut ten seconds :) indicated exactly = _where_=20 > the problem was. >=20 > Those who don't understand these kind dof things are "too dangerous" > to be trusted with the superuser password. >=20 > Bluntly, not only do you not know the things you need to know to = manage > a (even 'personal') network, you "DON'T KNOW _what_ you don't know", = and=20 > until you *do* learn the basics, you'll save youself a *LOT* of hair- > tearing if you hire someone to solve the problems for you. I whole-heartedly agree with Robert's points. I host in my apartment... but I have more than a decade's experience = maintaining networks and systems and, while the occasional issue stumps = me, I'm pretty good at getting to the root of issues in minutes vs = hours. Yes, I was once a... for lack of a better term... moron on these things = and I relied heavily on the tech who pushed me (gently) towards =83BSD = from RHL and I am gracious every day for that nudge. Experience is the best way to pick up the "quick list" of things to = check on if there's a problem on your connectivity... but there's one = thing I *must* stress: NEVER EVER EVER run your own DNS service. It's = too much of a PITA. When I quit doing my own DNS my issues revolving = around that ended. I use DynDNS to run my primary domain and all the = others run through GoDaddy's free DNS manager. This is because I use the = primary domain's hostname as my MX record on all the others. While GD's = DNS is functional, it's also cumbersome, too cumbersome to update on a = semi-regular basis. I highly suggest that you do the same. $20/year for DynDNS' full domain = service is worth the price. My two bits (and a nibble). -- Ryan=