DNS is internal service (ticked in services list) is it OK?
I've rebooted system many times.
nmap doesn't say anything because it can't see the server.
Firewall is it's original state:
Filtering rules from internal networks to Zentyal - many rules allowing all including dns, only deny rule is for LDAP
Filtering rules for internal networks - only one rule, allow all
Filtering rules for traffic coming out from Zentyal - only one rule, allow all
This is really strange, from server everything seems to work, I can ssh to clients. From client, I can't ping zentyal, but client gets IP from server as well server MAC is in ARP table.