DNS bind-9.3.3-8

slr sweetgrass at zen2now.com
Fri Jun 22 13:49:05 MST 2007


i'm having some issues with my new master/slave setup and i cant figure it out on my own. so i'm hoping someone in PLUG can help me out with this one.

first issue:
master is authoritive for the zones listed in my named.conf,.i know the fix for one of the zones as i had to change the nameserver registration and then i was able to transfer successfully. but one of the zones is for internal use only and is not a FQDN. so i get 
"named[13446]: zone ic/IN/view1: refresh: non-authoritative answer from master 192.168.6.55#53 (source 0.0.0.0#0)", in the log everytime the master tries to transfer.

second issue:
when i do a dig or use nslookup for a zone i know the master has, it fails to find any records. but if i set my resolv.conf to use only the master as its nameserver i can successfully dig the zone i had previously tried to dig on the master.

heres a snip-it of on named.conf on the master:

options {
        listen-on port 53 { master_local_ip; };
        directory "/var/named";
        dump-file "/var/named/data/cache_dump.db";
        statistics-file "/var/named/data/named_stats.txt";
        memstatistics-file "/var/named/data/named_mem_stats.txt";
        query-source    port 53;
        zone-statistics yes;
        notify explicit;
        dnssec-enable yes;
        allow-query     { slave_local_ip; master_local_ip; company_local_subnet; slave_public_ip; };
};
logging {
        channel query_file {
                file "/var/log/query.log";
                severity info;
                print-severity yes;
                print-time yes;
        };
        category queries { query_file; };
};

key "TRANSFER" {
        algorithm hmac-md5;
        secret "xPNB2+v8jXzRxZDvANDKZg==";
};

server slave_local_ip {
        keys {
        TRANSFER;
    };
};
view "view1" {
        match-clients{ accepted_client_list; };
        recursion yes;
        allow-recursion { 192.168.0.0/16; 127.0.0.1/32; };
        zone "ic" IN {
        type master;
        allow-transfer { slave_local_ip; };
        also-notify { slave_local_ip; };
        file "view1/.ic.dns";
        };
        zone "furrybuddies.com" IN {
        type master;
        allow-transfer { slave_local_ip; };
        also-notify { slave_local_ip; };
        file "view1/furrybuddies.com.dns";
};
};

this mainly deals with the authorative issue. i'll try to work through this one first and if need be i'll post the config for the zone the master cant seem to resolve. thanks for any and all help.

slr
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.PLUG.phoenix.az.us/pipermail/plug-discuss/attachments/20070622/c5dd5d17/attachment.htm 


More information about the PLUG-discuss mailing list