Now I am puzzled.
Mark_Andrews at iengines.com
Mark_Andrews at iengines.com
Sun Nov 28 21:52:44 UTC 1999
Is kesrith.neandertal.org listed as a nameserver for
webgalactic.com?
Kesrith.neandertal.org has an A record?
If you prime primary #2 with kesrith.neandertal.org address
does it work?
Mark
> Sorry this isnt about a slave letting another slave know, this is
> about a primary(webgalactic.com) not running NOTIFY to it's
> slave (kesrith.neandertal.org) which happens to
> be a primary for another machine(shonjir.neandertal.org).
> The second primary (kesrith) sends it's
> notify to its slave (shonjir) just fine every time.
> As a stop gap the also-notify does work but I am still curious as to
> why it doesnt send a notify.
>
>
>
>
> >
> >
> > The following should address the issue. We wern't following
> > RFC 1996 in that when a slave loads it should attempt to let
> > all other slave know.
> >
> > You could also work around this bug by setting also-notify.
> >
> > Mark
> >
> > Index: src/bin/named/ns_notify.c
> > ===================================================================
> > RCS file: /proj/cvs/isc/bind/src/bin/named/ns_notify.c,v
> > retrieving revision 8.5
> > diff -c -r8.5 ns_notify.c
> > *** ns_notify.c 1999/11/16 06:01:39 8.5
> > --- ns_notify.c 1999/11/28 13:30:59
> > ***************
> > *** 218,226 ****
> > }
> > zname = zp->z_origin;
> > nns = na = 0;
> > ! if (zp->z_type == z_master)
> > ! sysnotify_slaves(dname, zname, class, type,
> > ! zp - zones, &nns, &na);
> >
> > /*
> > * Handle any global or zone-specific also-notify clauses
> > --- 244,250 ----
> > }
> > zname = zp->z_origin;
> > nns = na = 0;
> > ! sysnotify_slaves(dname, zname, class, type, zp - zones, &nns, &na);
> >
> > /*
> > * Handle any global or zone-specific also-notify clauses
> >
> > > Here is my situation. I have 8.2.2.p5 installed on all machines.
> > > The primary/slave functions work just fine with two machines.
> > > I have a third machine that is a primary and is supposed to send
> > > updates to the primary #1 which is secondary to it.
> > > Primary #1 sends notifies to slave #1 just fine.
> > > Primary #2 sends no notifies but approves AFXR from primary #1
> > > (e.g. I wipe out the files and it cheerfully dumps them to #1
> > > but no notify what so ever)
> > >
> > > And the bueaty of it all is that there are no errors.
> > >
> > > Included files:
> > > Primary #1 named.conf = kesrith.neandertal.org
> > >
> > > // generated by named-bootconf.pl
> > >
> > > options {
> > > directory "/var/named";
> > > version "Surely you must be joking";
> > > /*
> > > * If there is a firewall between you and nameservers you want
> > > * to talk to, you might need to uncomment the query-source
> > > * directive below. Previous versions of BIND always asked
> > > * questions using port 53, but BIND 8.1 uses an unprivileged
> > > * port by default.
> > > */
> > > // query-source address * port 53;
> > > };
> > >
> > > //
> > > // Official and stealth secondaries
> > > //
> > > acl "neandertal-xfer" {
> > > { 192.168.1.4; // shonjir.neandertal.org (slave)
> > > };
> > > };
> > >
> > > acl "webgalactic-xfer" {
> > > { 10.0.0.9; // babylon.webgalactic.com (master)
> > > };
> > > };
> > >
> > >
> > > zone "." {
> > > type hint;
> > > file "named.ca";
> > > };
> > >
> > > zone "0.0.127.in-addr.arpa" {
> > > type master;
> > > file "primary/0.0.127.in-addr.arpa";
> > > };
> > >
> > > zone "1.168.192.in-addr.arpa" {
> > > type master;
> > > file "primary/1.168.192.in-addr.arpa";
> > > allow-query {
> > > any;
> > > };
> > > allow-transfer {
> > > localhost;
> > > neandertal-xfer;
> > > };
> > > };
> > >
> > > zone "neandertal.org" {
> > > type master;
> > > file "primary/neandertal.org";
> > > allow-query {
> > > any;
> > > };
> > > allow-transfer {
> > > localhost;
> > > neandertal-xfer;
> > > };
> > > };
> > >
> > > zone "0.0.10.in-addr.arpa" {
> > > type slave;
> > > file "secondary/0.0.10.in-addr.arpa";
> > > masters { 10.0.0.9; };
> > > allow-query {
> > > any;
> > > };
> > > allow-transfer {
> > > localhost;
> > > webgalactic-xfer;
> > > };
> > > };
> > >
> > > zone "webgalactic.com" {
> > > type slave;
> > > file "secondary/webgalactic.com";
> > > masters { 10.0.0.9; };
> > > allow-query {
> > > any;
> > > };
> > > allow-transfer {
> > > localhost;
> > > webgalactic-xfer;
> > > };
> > > };
> > >
> > > Slave #1 named.conf: =shonjir.neandertal.org
> > >
> > > // generated by named-bootconf.pl
> > >
> > > options {
> > > directory "/var/named";
> > > version "Surely you must be joking";
> > > /*
> > > * If there is a firewall between you and nameservers you want
> > > * to talk to, you might need to uncomment the query-source
> > > * directive below. Previous versions of BIND always asked
> > > * questions using port 53, but BIND 8.1 uses an unprivileged
> > > * port by default.
> > > */
> > > // query-source address * port 53;
> > > };
> > >
> > > //
> > > // An official slave (secondary) server.
> > > //
> > > acl "neandertal-xfer" {
> > > 192.168.1.1;
> > > 192.168.1.2;
> > > };
> > > zone "." {
> > > type hint;
> > > file "named.ca";
> > > };
> > >
> > > zone "0.0.127.in-addr.arpa" {
> > > type master;
> > > file "primary/0.0.127.in-addr.arpa";
> > > };
> > >
> > > zone "1.168.192.in-addr.arpa" {
> > > type slave;
> > > file "secondary/1.168.192.in-addr.arpa";
> > > masters { 192.168.1.1; };
> > > allow-query {
> > > any;
> > > };
> > > allow-transfer {
> > > localhost;
> > > neandertal-xfer;
> > > };
> > > };
> > >
> > > zone "neandertal.org" {
> > > type slave;
> > > file "secondary/neandertal.org";
> > > masters { 192.168.1.1; };
> > > allow-query {
> > > any;
> > > };
> > > allow-transfer {
> > > localhost;
> > > neandertal-xfer;
> > > };
> > > };
> > >
> > > Primary #2 named.conf (the one that doesnt send notifies) = babylon.webga
> lact
> > > ic.com (this is a customer machine that will go away and then it wont mat
> ter
> > > but
> > > I still want to know why!)
> > >
> > > // generated by named-bootconf.pl
> > >
> > > options {
> > > directory "/var/named";
> > > version "Surely you must be joking";
> > > /*
> > > * If there is a firewall between you and nameservers you want
> > > * to talk to, you might need to uncomment the query-source
> > > * directive below. Previous versions of BIND always asked
> > > * questions using port 53, but BIND 8.1 uses an unprivileged
> > > * port by default.
> > > */
> > > // query-source address * port 53;
> > > };
> > >
> > > //
> > > // Official and stealth secondaries
> > > //
> > > acl "webgalactic-xfer" {
> > > { 192.168.1.1; // kesrith (slave)
> > > };
> > > };
> > >
> > >
> > > zone "." {
> > > type hint;
> > > file "named.ca";
> > };
> > >
> > > zone "0.0.127.in-addr.arpa" {
> > > type master;
> > > file "primary/0.0.127.in-addr.arpa";
> > > };
> > >
> > > zone "0.0.10.in-addr.arpa" {
> > > type master;
> > > file "primary/0.0.10.in-addr.arpa";
> > > allow-query {
> > > any;
> > > };
> > > allow-transfer {
> > > localhost;
> > > webgalactic-xfer;
> > > };
> > > };
> > >
> > > zone "webgalactic.com" {
> > > type master;
> > > file "primary/webgalactic.com";
> > > allow-query {
> > > any;
> > > };
> > > allow-transfer {
> > > localhost;
> > > webgalactic-xfer;
> > > };
> > > };
> > >
> > > So what might I be missing? The #2 primary has a different IP
> > > but the routing tables work, I can ping by full name only unless I
> > > add an entry into /etc/hosts. nslookup/dig both will cough up the
> > > correct names (full only).
> > >
> > > All machines are running RH6.0 and bind-p5.
> > >
> > > #2 just wont send a NOTIFY when the stuff changes. grrrrrrr!
> > >
> > > TIA
> > > Henri
> > >
> > > -------------------------------------------------------------
> > > My .sig file can beat up your .sig file!
> > > Biologically, anything past the age of 35 is bonus!
> > > "The weak shall perish!" Species 8472
> > > "The Geezer Geek"
> > > -------------------------------------------------------------
> > >
> > --
> > Mark Andrews, Internet Engines Inc. / Internet Software Consortium
> > 1 Seymour St., Dundas Valley, NSW 2117, Australia
> > PHONE: +61 2 9871 4742 INTERNET: Mark_Andrews at iengines.com
> >
>
>
> --
> -------------------------------------------------------------
> My .sig file can beat up your .sig file!
> Biologically, anything past the age of 35 is bonus!
> "The weak shall perish!" Species 8472
> "The Geezer Geek"
> -------------------------------------------------------------
--
Mark Andrews, Internet Engines Inc. / Internet Software Consortium
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark_Andrews at iengines.com
More information about the bind-users
mailing list