[Resolvido] Problemas configuração Bind e Apache

[zekkerj]

Bem, fiz alguns testes daqui (inclusive um portscan udp), seu servidor não está respondendo às consultas. Verifique se o firewall está configurado corretamente.

[Master_]

Vou aguardar resposta do suporte técnico quanto a essa porta.

[Master_]

Os técnicos informaram que a porta 53 está aberta, confira a resposta deles:

Prezado cliente,

A porta 53 do seu servidor está aberta, tanto para conexões UDP quanto para conexões TCP.

tcp 0 0 66.7.220.134:53 0.0.0.0:* LISTEN
tcp 0 0 66.7.220.133:53 0.0.0.0:* LISTEN
tcp 0 0 66.7.220.132:53 0.0.0.0:* LISTEN
tcp 0 0 66.7.220.131:53 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:953 0.0.0.0:* LISTEN
tcp6 0 0 :::53 :::* LISTEN
tcp6 0 0 ::1:953 :::* LISTEN

# Allow incoming TCP ports
TCP_IN = "20,21,22,25,53,80,110,143,443,465,587,993,995,1157, 10000"

# Allow outgoing TCP ports
TCP_OUT = "20,21,22,25,53,80,110,113,443"

# Allow incoming UDP ports
UDP_IN = "20,21,53"

# Allow outgoing UDP ports
# To allow outgoing traceroute add 33434:33523 to this list
UDP_OUT = "20,21,53,113,123"

[zekkerj]

OK. Fiz um dump dos acessos, e consegui ver respostas de sua máquina --- só "SERVFAIL".

Tem como postar a saída do comando abaixo?

grep -i named /var/log/syslog | tail -50

[Master_]

Segue o resuktado:

Código:

> grep -i named /var/log/syslog | tail -50
Feb 16 20:51:04 servidor named[801]: last message repeated 38 times
Feb 16 20:51:04 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:51:06 servidor named[801]: last message repeated 14 times
Feb 16 20:51:06 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:51:07 servidor named[801]: last message repeated 5 times
Feb 16 20:51:07 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:51:13 servidor named[801]: last message repeated 35 times
Feb 16 20:51:13 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:51:13 servidor named[801]: last message repeated 5 times
Feb 16 20:51:14 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:51:14 servidor named[801]: last message repeated 2 times
Feb 16 20:51:14 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:51:21 servidor named[801]: last message repeated 44 times
Feb 16 20:51:21 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:51:23 servidor named[801]: last message repeated 14 times
Feb 16 20:51:23 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:51:26 servidor named[801]: last message repeated 14 times
Feb 16 20:51:26 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:51:28 servidor named[801]: last message repeated 11 times
Feb 16 20:51:28 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:51:34 servidor named[801]: last message repeated 35 times
Feb 16 20:51:34 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:51:36 servidor named[801]: last message repeated 17 times
Feb 16 20:51:37 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:51:37 servidor named[801]: last message repeated 2 times
Feb 16 20:51:37 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:51:37 servidor named[801]: last message repeated 2 times
Feb 16 20:51:38 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:51:42 servidor named[801]: last message repeated 29 times
Feb 16 20:51:42 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:51:43 servidor named[801]: last message repeated 5 times
Feb 16 20:51:43 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:51:43 servidor named[801]: last message repeated 2 times
Feb 16 20:51:43 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:51:44 servidor named[801]: last message repeated 2 times
Feb 16 20:51:44 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:51:51 servidor named[801]: last message repeated 47 times
Feb 16 20:51:52 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:51:53 servidor named[801]: last message repeated 11 times
Feb 16 20:51:54 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:51:56 servidor named[801]: last message repeated 17 times
Feb 16 20:51:56 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:51:58 servidor named[801]: last message repeated 8 times
Feb 16 20:51:58 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:52:04 servidor named[801]: last message repeated 38 times
Feb 16 20:52:04 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:52:06 servidor named[801]: last message repeated 14 times
Feb 16 20:52:06 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 20:52:07 servidor named[801]: last message repeated 5 times
Feb 16 20:52:07 servidor named[801]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied

[zekkerj]

Droga... bem que eu pensei que deveria ter reiniciado o serviço antes. De novo, por favor:

sudo service bind9 restart
grep -i named /var/log/syslog | tail -50

[Master_]

rsrs

Código:

> sudo service bind9 restart
 * Stopping domain name service... bind9
   ...done.
 * Starting domain name service... bind9
   ...done.
> grep -i named /var/log/syslog | tail -50
Feb 16 21:03:54 servidor named[801]: stopping command channel on ::1#953
Feb 16 21:03:54 servidor named[801]: no longer listening on ::#53
Feb 16 21:03:54 servidor named[801]: no longer listening on 127.0.0.1#53
Feb 16 21:03:54 servidor named[801]: no longer listening on 66.7.220.131#53
Feb 16 21:03:54 servidor named[801]: no longer listening on 66.7.220.132#53
Feb 16 21:03:54 servidor named[801]: no longer listening on 66.7.220.133#53
Feb 16 21:03:54 servidor named[801]: no longer listening on 66.7.220.134#53
Feb 16 21:03:54 servidor named[801]: exiting
Feb 16 21:03:55 servidor named[16802]: starting BIND 9.7.0-P1 -u bind
Feb 16 21:03:55 servidor named[16802]: built with '--prefix=/usr' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--sysconfdir=/etc/bind' '--localstatedir=/var' '--enable-threads' '--enable-largefile' '--with-libtool' '--enable-shared' '--enable-static' '--with-openssl=/usr' '--with-gssapi=/usr' '--with-gnu-ld' '--with-dlz-postgres=no' '--with-dlz-mysql=no' '--with-dlz-bdb=yes' '--with-dlz-filesystem=yes' '--with-dlz-ldap=yes' '--with-dlz-stub=yes' '--with-geoip=/usr' '--enable-ipv6' 'CFLAGS=-fno-strict-aliasing -DDIG_SIGCHASE -O2' 'LDFLAGS=-Wl,-Bsymbolic-functions' 'CPPFLAGS='
Feb 16 21:03:55 servidor named[16802]: adjusted limit on open files from 1024 to 1048576
Feb 16 21:03:55 servidor named[16802]: found 1 CPU, using 1 worker thread
Feb 16 21:03:55 servidor named[16802]: using up to 4096 sockets
Feb 16 21:03:55 servidor named[16802]: loading configuration from '/etc/bind/named.conf'
Feb 16 21:03:55 servidor named[16802]: reading built-in trusted keys from file '/etc/bind/bind.keys'
Feb 16 21:03:55 servidor named[16802]: using default UDP/IPv4 port range: [1024, 65535]
Feb 16 21:03:55 servidor named[16802]: using default UDP/IPv6 port range: [1024, 65535]
Feb 16 21:03:55 servidor named[16802]: listening on IPv6 interfaces, port 53
Feb 16 21:03:55 servidor named[16802]: listening on IPv4 interface lo, 127.0.0.1#53
Feb 16 21:03:55 servidor named[16802]: listening on IPv4 interface eth0, 66.7.220.131#53
Feb 16 21:03:55 servidor named[16802]: listening on IPv4 interface eth0:1, 66.7.220.132#53
Feb 16 21:03:55 servidor named[16802]: listening on IPv4 interface eth0:2, 66.7.220.133#53
Feb 16 21:03:55 servidor named[16802]: listening on IPv4 interface eth0:3, 66.7.220.134#53
Feb 16 21:03:55 servidor named[16802]: generating session key for dynamic DNS
Feb 16 21:03:55 servidor named[16802]: automatic empty zone: 254.169.IN-ADDR.ARPA
Feb 16 21:03:55 servidor named[16802]: automatic empty zone: 2.0.192.IN-ADDR.ARPA
Feb 16 21:03:55 servidor named[16802]: automatic empty zone: 255.255.255.255.IN-ADDR.ARPA
Feb 16 21:03:55 servidor named[16802]: automatic empty zone: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Feb 16 21:03:55 servidor named[16802]: automatic empty zone: 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Feb 16 21:03:55 servidor named[16802]: automatic empty zone: D.F.IP6.ARPA
Feb 16 21:03:55 servidor named[16802]: automatic empty zone: 8.E.F.IP6.ARPA
Feb 16 21:03:55 servidor named[16802]: automatic empty zone: 9.E.F.IP6.ARPA
Feb 16 21:03:55 servidor named[16802]: automatic empty zone: A.E.F.IP6.ARPA
Feb 16 21:03:55 servidor named[16802]: automatic empty zone: B.E.F.IP6.ARPA
Feb 16 21:03:55 servidor named[16802]: command channel listening on 127.0.0.1#953
Feb 16 21:03:55 servidor named[16802]: command channel listening on ::1#953
Feb 16 21:03:55 servidor named[16802]: zone 0.in-addr.arpa/IN: loaded serial 1
Feb 16 21:03:55 servidor named[16802]: zone 127.in-addr.arpa/IN: loaded serial 1
Feb 16 21:03:55 servidor named[16802]: zone 255.in-addr.arpa/IN: loaded serial 1
Feb 16 21:03:55 servidor named[16802]: /etc/bind/db.luisr:1: no TTL specified; using SOA MINTTL instead
Feb 16 21:03:55 servidor named[16802]: zone luisr.com.br/IN: NS 'servidor.luisr.com.br' has no address records (A or AAAA)
Feb 16 21:03:55 servidor named[16802]: zone luisr.com.br/IN: not loaded due to errors.
Feb 16 21:03:55 servidor named[16802]: zone localhost/IN: loaded serial 2
Feb 16 21:03:55 servidor named[16802]: running
Feb 16 21:03:56 servidor named[16802]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 21:03:56 servidor named[16802]: last message repeated 5 times
Feb 16 21:03:57 servidor named[16802]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 21:03:58 servidor named[16802]: last message repeated 11 times
Feb 16 21:03:58 servidor named[16802]: client 74.63.54.71#27016: query (cache) './ANY/IN' denied
Feb 16 21:04:05 servidor named[16802]: last message repeated 47 times

[zekkerj]

zone luisr.com.br/IN: NS 'servidor.luisr.com.br' has no address records (A or AAAA)
zone luisr.com.br/IN: not loaded due to errors.

Bingo.

Lembra que eu falei sobre o arquivo de zona?

(...)
Mas se vc declarar um nome qq como "NS" da sua zona, esse nome tem que existir.
(...)

Então: vc declarou que o NS de sua zona é "servidor.luisr.com.br", mas não definiu esse nome. Defina-o, ou mude o registro NS.

Outra boa prática é definir um TTL (tempo de vida) pra zona.
Sugestão, deixe seu arquivo de zona assim:

Código:

$ORIGIN .
$TTL 86400 ; 1 dia

luisr     IN SOA  servidor.luisr.com.br. hostmaster.luisr.com.br. (
          2011021700 3H 15M 1W 1D )
          NS servidor.luisr.com.br.
          NS ns2.luisr.com.br.
          IN MX 10 luisr.com.br.

$ORIGIN luisr.com.br.

localhost       IN A    127.0.0.1

servidor        IN A    66.7.220.131

luisr.com.br.   IN A    66.7.220.131
ns2             IN A    66.7.220.132
www             IN A    66.7.220.131
ftp             IN A    66.7.220.131

Tem 4 mudanças importantes a partir do primeiro arquivo "db.luisr" que vc postou:
1. As linhas "$ORIGIN ." e "$TTL 86400" no início do arquivo.
2. O número de série da zona, alterado para a data de hoje.
3. A linha "$ORIGIN luisr.coml.br." logo após a definição do MX.
4. A linha "servidor IN A 66.7.220.131". Essa é a mais importante, é a falta dessa linha que está impedindo seu servidor de funcionar agora.

Quando vc fizer a alteração, reinicie o servidor novamente, repita o comando pra filtrar os logs, e cole novamente as 50 últimas linhas aqui.

[rvgugisch]

Cá estamos novamente!

Espero que o MASTER resolva o problema dele com essa última dica!

 

[Master_]

Também espero resolver rvgugisch!

zekkerj, lá vai!

Código:

root@servidor:~# sudo service bind9 restart
 * Stopping domain name service... bind9                                                                                                                                                                                              [ OK ]
 * Starting domain name service... bind9                                                                                                                                                                                              [ OK ]
root@servidor:~# grep -i named /var/log/syslog | tail -50
Feb 17 07:24:28 servidor named[16802]: received control channel command 'stop -p'
Feb 17 07:24:28 servidor named[16802]: shutting down: flushing changes
Feb 17 07:24:28 servidor named[16802]: stopping command channel on 127.0.0.1#953
Feb 17 07:24:28 servidor named[16802]: stopping command channel on ::1#953
Feb 17 07:24:28 servidor named[16802]: no longer listening on ::#53
Feb 17 07:24:28 servidor named[16802]: no longer listening on 127.0.0.1#53
Feb 17 07:24:28 servidor named[16802]: no longer listening on 66.7.220.131#53
Feb 17 07:24:28 servidor named[16802]: no longer listening on 66.7.220.132#53
Feb 17 07:24:28 servidor named[16802]: no longer listening on 66.7.220.133#53
Feb 17 07:24:28 servidor named[16802]: no longer listening on 66.7.220.134#53
Feb 17 07:24:28 servidor named[16802]: exiting
Feb 17 07:24:29 servidor named[22088]: starting BIND 9.7.0-P1 -u bind
Feb 17 07:24:29 servidor named[22088]: built with '--prefix=/usr' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--sysconfdir=/etc/bind' '--localstatedir=/var' '--enable-threads' '--enable-largefile' '--with-libtool' '--enable-shared' '--enable-static' '--with-openssl=/usr' '--with-gssapi=/usr' '--with-gnu-ld' '--with-dlz-postgres=no' '--with-dlz-mysql=no' '--with-dlz-bdb=yes' '--with-dlz-filesystem=yes' '--with-dlz-ldap=yes' '--with-dlz-stub=yes' '--with-geoip=/usr' '--enable-ipv6' 'CFLAGS=-fno-strict-aliasing -DDIG_SIGCHASE -O2' 'LDFLAGS=-Wl,-Bsymbolic-functions' 'CPPFLAGS='
Feb 17 07:24:29 servidor named[22088]: adjusted limit on open files from 1024 to 1048576
Feb 17 07:24:29 servidor named[22088]: found 1 CPU, using 1 worker thread
Feb 17 07:24:29 servidor named[22088]: using up to 4096 sockets
Feb 17 07:24:29 servidor named[22088]: loading configuration from '/etc/bind/named.conf'
Feb 17 07:24:29 servidor named[22088]: reading built-in trusted keys from file '/etc/bind/bind.keys'
Feb 17 07:24:29 servidor named[22088]: using default UDP/IPv4 port range: [1024, 65535]
Feb 17 07:24:29 servidor named[22088]: using default UDP/IPv6 port range: [1024, 65535]
Feb 17 07:24:29 servidor named[22088]: listening on IPv6 interfaces, port 53
Feb 17 07:24:29 servidor named[22088]: listening on IPv4 interface lo, 127.0.0.1#53
Feb 17 07:24:29 servidor named[22088]: listening on IPv4 interface eth0, 66.7.220.131#53
Feb 17 07:24:29 servidor named[22088]: listening on IPv4 interface eth0:1, 66.7.220.132#53
Feb 17 07:24:29 servidor named[22088]: listening on IPv4 interface eth0:2, 66.7.220.133#53
Feb 17 07:24:29 servidor named[22088]: listening on IPv4 interface eth0:3, 66.7.220.134#53
Feb 17 07:24:29 servidor named[22088]: generating session key for dynamic DNS
Feb 17 07:24:30 servidor named[22088]: automatic empty zone: 254.169.IN-ADDR.ARPA
Feb 17 07:24:30 servidor named[22088]: automatic empty zone: 2.0.192.IN-ADDR.ARPA
Feb 17 07:24:30 servidor named[22088]: automatic empty zone: 255.255.255.255.IN-ADDR.ARPA
Feb 17 07:24:30 servidor named[22088]: automatic empty zone: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Feb 17 07:24:30 servidor named[22088]: automatic empty zone: 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Feb 17 07:24:30 servidor named[22088]: automatic empty zone: D.F.IP6.ARPA
Feb 17 07:24:30 servidor named[22088]: automatic empty zone: 8.E.F.IP6.ARPA
Feb 17 07:24:30 servidor named[22088]: automatic empty zone: 9.E.F.IP6.ARPA
Feb 17 07:24:30 servidor named[22088]: automatic empty zone: A.E.F.IP6.ARPA
Feb 17 07:24:30 servidor named[22088]: automatic empty zone: B.E.F.IP6.ARPA
Feb 17 07:24:30 servidor named[22088]: command channel listening on 127.0.0.1#953
Feb 17 07:24:30 servidor named[22088]: command channel listening on ::1#953
Feb 17 07:24:30 servidor named[22088]: zone 0.in-addr.arpa/IN: loaded serial 1
Feb 17 07:24:30 servidor named[22088]: zone 127.in-addr.arpa/IN: loaded serial 1
Feb 17 07:24:30 servidor named[22088]: zone 255.in-addr.arpa/IN: loaded serial 1
Feb 17 07:24:30 servidor named[22088]: /etc/bind/db.luisr:4: ignoring out-of-zone data (luisr)
Feb 17 07:24:30 servidor named[22088]: zone luisr.com.br/IN: has 0 SOA records
Feb 17 07:24:30 servidor named[22088]: zone luisr.com.br/IN: has no NS records
Feb 17 07:24:30 servidor named[22088]: zone luisr.com.br/IN: not loaded due to errors.
Feb 17 07:24:30 servidor named[22088]: zone localhost/IN: loaded serial 2
Feb 17 07:24:30 servidor named[22088]: running

[zekkerj]

Muda a linha do "SOA", no início da linha está "luisr", muda pra "@".

[Master_]

Achei estranho mesmo, hehehe:

Código:

root@servidor:~# sudo service bind9 restart
 * Stopping domain name service... bind9                                                                                                                                                                                              [ OK ]
 * Starting domain name service... bind9                                                                                                                                                                                              [ OK ]
root@servidor:~# grep -i named /var/log/syslog | tail -50
Feb 17 07:24:30 servidor named[22088]: zone localhost/IN: loaded serial 2
Feb 17 07:24:30 servidor named[22088]: running
Feb 17 07:33:38 servidor named[22088]: received control channel command 'stop -p'
Feb 17 07:33:38 servidor named[22088]: shutting down: flushing changes
Feb 17 07:33:38 servidor named[22088]: stopping command channel on 127.0.0.1#953
Feb 17 07:33:38 servidor named[22088]: stopping command channel on ::1#953
Feb 17 07:33:38 servidor named[22088]: no longer listening on ::#53
Feb 17 07:33:38 servidor named[22088]: no longer listening on 127.0.0.1#53
Feb 17 07:33:38 servidor named[22088]: no longer listening on 66.7.220.131#53
Feb 17 07:33:38 servidor named[22088]: no longer listening on 66.7.220.132#53
Feb 17 07:33:38 servidor named[22088]: no longer listening on 66.7.220.133#53
Feb 17 07:33:38 servidor named[22088]: no longer listening on 66.7.220.134#53
Feb 17 07:33:38 servidor named[22088]: exiting
Feb 17 07:33:39 servidor named[22590]: starting BIND 9.7.0-P1 -u bind
Feb 17 07:33:39 servidor named[22590]: built with '--prefix=/usr' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--sysconfdir=/etc/bind' '--localstatedir=/var' '--enable-threads' '--enable-largefile' '--with-libtool' '--enable-shared' '--enable-static' '--with-openssl=/usr' '--with-gssapi=/usr' '--with-gnu-ld' '--with-dlz-postgres=no' '--with-dlz-mysql=no' '--with-dlz-bdb=yes' '--with-dlz-filesystem=yes' '--with-dlz-ldap=yes' '--with-dlz-stub=yes' '--with-geoip=/usr' '--enable-ipv6' 'CFLAGS=-fno-strict-aliasing -DDIG_SIGCHASE -O2' 'LDFLAGS=-Wl,-Bsymbolic-functions' 'CPPFLAGS='
Feb 17 07:33:39 servidor named[22590]: adjusted limit on open files from 1024 to 1048576
Feb 17 07:33:39 servidor named[22590]: found 1 CPU, using 1 worker thread
Feb 17 07:33:39 servidor named[22590]: using up to 4096 sockets
Feb 17 07:33:39 servidor named[22590]: loading configuration from '/etc/bind/named.conf'
Feb 17 07:33:39 servidor named[22590]: reading built-in trusted keys from file '/etc/bind/bind.keys'
Feb 17 07:33:39 servidor named[22590]: using default UDP/IPv4 port range: [1024, 65535]
Feb 17 07:33:39 servidor named[22590]: using default UDP/IPv6 port range: [1024, 65535]
Feb 17 07:33:39 servidor named[22590]: listening on IPv6 interfaces, port 53
Feb 17 07:33:39 servidor named[22590]: listening on IPv4 interface lo, 127.0.0.1#53
Feb 17 07:33:39 servidor named[22590]: listening on IPv4 interface eth0, 66.7.220.131#53
Feb 17 07:33:39 servidor named[22590]: listening on IPv4 interface eth0:1, 66.7.220.132#53
Feb 17 07:33:39 servidor named[22590]: listening on IPv4 interface eth0:2, 66.7.220.133#53
Feb 17 07:33:39 servidor named[22590]: listening on IPv4 interface eth0:3, 66.7.220.134#53
Feb 17 07:33:39 servidor named[22590]: generating session key for dynamic DNS
Feb 17 07:33:39 servidor named[22590]: automatic empty zone: 254.169.IN-ADDR.ARPA
Feb 17 07:33:39 servidor named[22590]: automatic empty zone: 2.0.192.IN-ADDR.ARPA
Feb 17 07:33:39 servidor named[22590]: automatic empty zone: 255.255.255.255.IN-ADDR.ARPA
Feb 17 07:33:39 servidor named[22590]: automatic empty zone: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Feb 17 07:33:39 servidor named[22590]: automatic empty zone: 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Feb 17 07:33:39 servidor named[22590]: automatic empty zone: D.F.IP6.ARPA
Feb 17 07:33:39 servidor named[22590]: automatic empty zone: 8.E.F.IP6.ARPA
Feb 17 07:33:39 servidor named[22590]: automatic empty zone: 9.E.F.IP6.ARPA
Feb 17 07:33:39 servidor named[22590]: automatic empty zone: A.E.F.IP6.ARPA
Feb 17 07:33:39 servidor named[22590]: automatic empty zone: B.E.F.IP6.ARPA
Feb 17 07:33:39 servidor named[22590]: command channel listening on 127.0.0.1#953
Feb 17 07:33:39 servidor named[22590]: command channel listening on ::1#953
Feb 17 07:33:39 servidor named[22590]: zone 0.in-addr.arpa/IN: loaded serial 1
Feb 17 07:33:39 servidor named[22590]: zone 127.in-addr.arpa/IN: loaded serial 1
Feb 17 07:33:39 servidor named[22590]: zone 255.in-addr.arpa/IN: loaded serial 1
Feb 17 07:33:39 servidor named[22590]: /etc/bind/db.luisr:4: ignoring out-of-zone data (.)
Feb 17 07:33:39 servidor named[22590]: zone luisr.com.br/IN: has 0 SOA records
Feb 17 07:33:39 servidor named[22590]: zone luisr.com.br/IN: has no NS records
Feb 17 07:33:39 servidor named[22590]: zone luisr.com.br/IN: not loaded due to errors.
Feb 17 07:33:39 servidor named[22590]: zone localhost/IN: loaded serial 2
Feb 17 07:33:39 servidor named[22590]: running

[zekkerj]

Mostra como está o arquivo agora, pq o erro continua.

[Master_]

Código:

$ORIGIN .
$TTL 86400 ; 1 dia

@         IN SOA  servidor.luisr.com.br. hostmaster.luisr.com.br. (
          2011021700 3H 15M 1W 1D )
          NS servidor.luisr.com.br.
          NS ns2.luisr.com.br.
          IN MX 10 luisr.com.br.

$ORIGIN luisr.com.br.

localhost       IN A    127.0.0.1

servidor        IN A    66.7.220.131

luisr.com.br.   IN A    66.7.220.131
ns2             IN A    66.7.220.132
www             IN A    66.7.220.131
ftp             IN A    66.7.220.131

[zekkerj]

Eu "colei" essa inicialização de uma zona que configurei; fui conferir agora em outro arquivo, de outro servidor, e não há a primeira linha ("$ORIGIN ."). Tente retirá-la, veja se a zona carrega.

A gente pode usar também o comando "named-checkzone" pra verificar a sintaxe da zona, pra não ter que recarregar o servidor a cada tentativa.