I am currently working on setting up BIND on a personal server that I run in my apartment. Here is every thing I have tried/tested to get it working. If I change the DNS server of my laptop to my server's IP, I can go to my site properly, and dig can get the A record of my website from my server without recursion when I query it manually, and it shows that my server is authoritative for that domain. However when I switched the name servers of my domain to my DNS server with up the proper glue record, no IPs other than a few local ones can query my DNS server, so I have since switched back to using my registrar's DNS.
This online tool ( which can test undelegated nameservers says that it can't query my server's DNS because it times out.
I used an online port tester site to check if my ISP is blocking port 53. It says it cant see a service from my laptop, but it can see a service on port 53 when I access it while proxying through my server, so I do not think that my ISP is blocking port 53.
I am using a BIND config file for an authoritative only server copied verbatim from the latest BIND manual, with my domain substituted. it does have allow-query { any; };, and this isn't over ridden in the section for my zone. I have used the BIND command line tools to test my config file and my zone file, and it says they are both fine.
I am not currently using any firewall, I don't need port forwarding because all my devices get their own public IPs, and my ISP has no IPv6 support to complicate things.
I'm not sure what else could be causing this issue, and I do not know how to debug it much further. Suggestions about this? How do I find out if my ISP is affecting DNS traffic beyond a simple port check tool? Is there a problem with my zone file (below) or with hosting the DNS server on the same IP that the site is hosted on? I could easily host them on different public IPs.
$ORIGIN mydomain.co.
$TTL 23h
mydomain.co. IN SOA ns.mydomain.co. webmaster.mydomain.co. ( 2013070201 1d 2h 4w 1h )
mydomain.co. IN MX 10 mail.mydomain.co.
mydomain.co. IN A [my IP]
ns IN A [my IP]
www IN CNAME mydomain.co.
mail IN A [my IP]
*.mydomain.co. IN A [my IP]
mydomain.co. IN NS ns
mydomain.co. IN NS slv1.1and1.com.
This online tool ( which can test undelegated nameservers says that it can't query my server's DNS because it times out.
I used an online port tester site to check if my ISP is blocking port 53. It says it cant see a service from my laptop, but it can see a service on port 53 when I access it while proxying through my server, so I do not think that my ISP is blocking port 53.
I am using a BIND config file for an authoritative only server copied verbatim from the latest BIND manual, with my domain substituted. it does have allow-query { any; };, and this isn't over ridden in the section for my zone. I have used the BIND command line tools to test my config file and my zone file, and it says they are both fine.
I am not currently using any firewall, I don't need port forwarding because all my devices get their own public IPs, and my ISP has no IPv6 support to complicate things.
I'm not sure what else could be causing this issue, and I do not know how to debug it much further. Suggestions about this? How do I find out if my ISP is affecting DNS traffic beyond a simple port check tool? Is there a problem with my zone file (below) or with hosting the DNS server on the same IP that the site is hosted on? I could easily host them on different public IPs.
$ORIGIN mydomain.co.
$TTL 23h
mydomain.co. IN SOA ns.mydomain.co. webmaster.mydomain.co. ( 2013070201 1d 2h 4w 1h )
mydomain.co. IN MX 10 mail.mydomain.co.
mydomain.co. IN A [my IP]
ns IN A [my IP]
www IN CNAME mydomain.co.
mail IN A [my IP]
*.mydomain.co. IN A [my IP]
mydomain.co. IN NS ns
mydomain.co. IN NS slv1.1and1.com.
