Are you sure that this is the same address that is shown in your allow-notify
statement on the slave? You really don't need allow-notify at all, and removing
it may help in tracking this down.
Regards,
Chris Buxton
BlueCat Networks
On Jan 5, 2011, at 6:42 PM, Steve Zeng wrote:
> On slave, it s
Ich bin abwesend und kehre am 12.01.2011 zurück.
Danke für Ihre E-Mail-Nachricht.
Ich bin bis 11. Januar 2011 nicht im Büro.
In dringenden Angelegenheiten kontaktieren Sie bitte DENIC IT-Services
(E-Mail: i...@denic.de, Tel: (069) 27235-160 oder -250).
-
Thank you for your email message.
I a
On slave, it sees the public IPs. tcpdump shows:
01:38:51.035945 IP A.A.A.A.domain > C.C.C.C.domain: 7545 notify [b2&3=0x2400]
[1a] SOA? airg.com. (72)
01:38:51.036174 IP C.C.C.C.domain > A.A.A.A.domain: 7545 notify Refused- 0/0/0
(26)
Steve
-Original Message-
From: Mark Andrews [mai
In message <8b5c6f575422414aa91b46c454126b6c02666af...@exchmvs.exchange.airg>,
Steve Zeng writes:
> Tcpdump on master(A.A.A.A) shows the following:
And what source address does the slave see?
> 23:59:54.788272 IP A.A.A.A.domain > C.C.C.C.domain: 26512 notify [b2&3=0x240
> 0] [1a] SOA? mydom
Tcpdump on master(A.A.A.A) shows the following:
23:59:54.788272 IP A.A.A.A.domain > C.C.C.C.domain: 26512 notify [b2&3=0x2400]
[1a] SOA? mydomain.com. (72)
23:59:54.788898 IP C.C.C.C.domain > A.A.A.A.domain: 26512 notify Refused-
0/0/0 (26)
So it looks like master did sent notify out but refu
On 05/01/11 01:50, Steve Zeng wrote:
> I don't have NS record for both of the slaves (windows DNS slave and
> Linux DNS slave). I use "also-notify" and it works for Windows DNS
> slave. But not for BIND/Linux.
On 05/01/11 19:56, Steve Zeng wrote:
> Rndc transfer (initialized at the slave side) wor
On 05/01/11 21:36, vr wrote:
> I'm having a query problem and hope I'm at the right mailing list...
Formally, probably not, since what you describe isn't a BIND
issue. That said, the people on this list are likely among
those who can best give you helpful advice.
> I get
I'm having a query problem and hope I'm at the right mailing list...
I get a "recursion not available" message intermittently when using
nslookup. The message will appear on the first query, presumably to
un-cached IP/hostname and subsequent queries to the same IP/hostname
will succeed withou
Rndc transfer (initialized at the slave side) works fine...
Steve
-Original Message-
From: Paul Ooi Cong Jen [mailto:paul...@takizo.com]
Sent: Tuesday, January 04, 2011 6:01 PM
To: Steve Zeng
Cc: Robert Spangler; bind-users@lists.isc.org
Subject: Re: bind slave not get DNS update
Steve
Thanks, it does not matter much, more for the understanding.
I had forgotten about signing, without it might have been a question.
On 05/01/11 13:29, Phil Mayers wrote:
> On 01/05/2011 11:45 AM, Sten Carlsen wrote:
>> Maybe just a detail without much significance. Will the zone become
>> dynami
On Tuesday 04 January 2011 20:50, Steve Zeng wrote:
> I don't have NS record for both of the slaves (windows DNS slave and Linux
> DNS slave). I use "also-notify" and it works for Windows DNS slave. But not
> for BIND/Linux.
Is SELinux running on this system? I seen you are running CentOS and i
Hello Phil Mayers,
Am 2011-01-05 09:19:11, hacktest Du folgendes herunter:
> Do you mean you have signed your zone?
Yes
> If so, you are aware that bind requires the zone-signing key to be
> available in order to perform updates - like this:
>
> zone "$name" {
> type master;
> allow-update
On 01/05/2011 11:45 AM, Sten Carlsen wrote:
Maybe just a detail without much significance. Will the zone become
dynamic when you enable updates OR when you have actually done the first
update - i.e. created the .jnl file?
A dynamic zone is a zone that allows dynamic updates, so the former. Yo
Maybe just a detail without much significance. Will the zone become
dynamic when you enable updates OR when you have actually done the first
update - i.e. created the .jnl file?
On 05/01/11 10:15, Phil Mayers wrote:
> On 01/05/2011 03:01 AM, p...@mail.nsbeta.info wrote:
>>
>> Hello,
>>
>> When add
On 01/05/2011 08:09 AM, Michelle Konzack wrote:
I have update my to DNSSEC and now I have two probems...
Do you mean you have signed your zone?
If so, you are aware that bind requires the zone-signing key to be
available in order to perform updates - like this:
zone "$name" {
type master
On 01/05/2011 03:01 AM, p...@mail.nsbeta.info wrote:
Hello,
When adding a statement of something like:
allow-update { 127.0.0.1; };
to the zone configuration, this zone will become a dynamic zone, is it?
Yes.
You can also do:
allow-update { key NAME; };
...and in newer versions of bind I
My method for solving this problem is to have a local DNS with two views:
- internal view (recursing), responding to internal clients with local
addresses
- external view (not recursing), that is used as a hidden master for my
DNS-provider
No forwarding, the local server does all its own resolving
On 01/05/2011 03:32 AM, Paul Ooi Cong Jen wrote:
Hi,
Nope. Dynamic zone require keys exchange for zone transfer.
This is not correct.
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Note: My nsupdate script us an autogenerated file like:
if ($_GET['nsupdate'] == 'on') {
$tmp_file = tempnam('/tmp', 'tdphp-vserver.');
chmod($tmp_file, 0700);
$fh = fopen($tmp_file, 'a');
fwrite($fh, "server dns1.tamay-dogan.net\n");
fwr
Hi everyone!
First and foremost, Happy New Year!
Secondly, this is my first post in this list and my first
question is part technical, part administrative. Basically,
I have hosted a webserver with a hosting company,
who also manages my domain. Now, I have decided to
setup a local mail server th
I have update my to DNSSEC and now I have two probems...
1) does not more update
2) "nsupdate" from my admin website does not more work and give me an
ExitStatus 2. Unfortunately the manpage does not tell me what 2 is.
But I assume it hast the same problem like
Can someone tell m
21 matches
Mail list logo
