Still puzzled.
Mark_Andrews at iengines.com
Mark_Andrews at iengines.com
Mon Nov 29 04:55:57 UTC 1999
> > Is kesrith.neandertal.org listed as a nameserver for
> > webgalactic.com?
> Yes in both the zone and arpa.
>
> >
> > Kesrith.neandertal.org has an A record?
>
> Not in the zone file for webgalactic after all it is a different
> network address (192.168.1.0 net vs 10.0.0.0 for webgalactic)
> However I do have it in etc/hosts and host.conf does bind first then
> hosts.
Ignore /etc/hosts nameserver *never* looks at its contents.
>
> > If you prime primary #2 with kesrith.neandertal.org address
> > does it work?
> >
> > Mark
> >
> I am not sure what you mean by priming but
dig kesrith.neandertal.org @babylon.webgalactic.com
I suspect this will be failing. You effectively have two private
name spaces (neandertal.org and webgalactic.com). Primary #1 can
see both wheras primary #2 can ony see webgalactic.com.
On babylon.webgalactic.com add a forward/slave/sub zone for
neandertal.org.
Mark
> The IP address is in /etc/hosts and in resolv.conf
>
> I put in an also-notify and that works just fine so it seems to either
> not like or ignore the acl. But there are no errors in syslog. I speak
> from error experience when I first did version 8 conf files I was
> cursed soundly by bind everytime for missing a ; or { or $TTL.
>
> Do you want a snippet of syslog on
> a restart?
>
> > > > > Included files:
> > > > > Primary #1 named.conf = kesrith.neandertal.org
> > > > >
> > > > > // generated by named-bootconf.pl
> > > > >
> > > > > options {
> > > > > directory "/var/named";
> > > > > version "Surely you must be joking";
> > > > > /*
> > > > > * If there is a firewall between you and nameservers you want
> > > > > * to talk to, you might need to uncomment the query-source
> > > > > * directive below. Previous versions of BIND always asked
> > > > > * questions using port 53, but BIND 8.1 uses an unprivileged
> > > > > * port by default.
> > > > > */
> > > > > // query-source address * port 53;
> > > > > };
> > > > >
> > > > > //
> > > > > // Official and stealth secondaries
> > > > > //
> > > > > acl "neandertal-xfer" {
> > > > > { 192.168.1.4; // shonjir.neandertal.org (slave)
> > > > > };
> > > > > };
> > > > >
> > > > > acl "webgalactic-xfer" {
> > > > > { 10.0.0.9; // babylon.webgalactic.com (master)
> > > > > };
> > > > > };
> > > > >
> > > > >
> > > > > zone "." {
> > > > > type hint;
> > > > > file "named.ca";
> > > > > };
> > > > >
> > > > > zone "0.0.127.in-addr.arpa" {
> > > > > type master;
> > > > > file "primary/0.0.127.in-addr.arpa";
> > > > > };
> > > > >
> > > > > zone "1.168.192.in-addr.arpa" {
> > > > > type master;
> > > > > file "primary/1.168.192.in-addr.arpa";
> > > > > allow-query {
> > > > > any;
> > > > > };
> > > > > allow-transfer {
> > > > > localhost;
> > > > > neandertal-xfer;
> > > > > };
> > > > > };
> > > > >
> > > > > zone "neandertal.org" {
> > > > > type master;
> > > > > file "primary/neandertal.org";
> > > > > allow-query {
> > > > > any;
> > > > > };
> > > > > allow-transfer {
> > > > > localhost;
> > > > > neandertal-xfer;
> > > > > };
> > > > > };
> > > > >
> > > > > zone "0.0.10.in-addr.arpa" {
> > > > > type slave;
> > > > > file "secondary/0.0.10.in-addr.arpa";
> > > > > masters { 10.0.0.9; };
> > > > > allow-query {
> > > > > any;
> > > > > };
> > > > > allow-transfer {
> > > > > localhost;
> > > > > webgalactic-xfer;
> > > > > };
> > > > > };
> > > > >
> > > > > zone "webgalactic.com" {
> > > > > type slave;
> > > > > file "secondary/webgalactic.com";
> > > > > masters { 10.0.0.9; };
> > > > > allow-query {
> > > > > any;
> > > > > };
> > > > > allow-transfer {
> > > > > localhost;
> > > > > webgalactic-xfer;
> > > > > };
> > > > > };
> > > > >
>
> > > > > Slave #1 named.conf: =shonjir.neandertal.org
> > > > >
> > > > > // generated by named-bootconf.pl
> > > > >
> > > > > options {
> > > > > directory "/var/named";
> > > > > version "Surely you must be joking";
> > > > > /*
> > > > > * If there is a firewall between you and nameservers you want
> > > > > * to talk to, you might need to uncomment the query-source
> > > > > * directive below. Previous versions of BIND always asked
> > > > > * questions using port 53, but BIND 8.1 uses an unprivileged
> > > > > * port by default.
> > > > > */
> > > > > // query-source address * port 53;
> > > > > };
> > > > >
> > > > > //
> > > > > // An official slave (secondary) server.
> > > > > //
> > > > > acl "neandertal-xfer" {
> > > > > 192.168.1.1;
> > > > > 192.168.1.2;
> > > > > };
> > > > > zone "." {
> > > > > type hint;
> > > > > file "named.ca";
> > > > > };
> > > > >
> > > > > zone "0.0.127.in-addr.arpa" {
> > > > > type master;
> > > > > file "primary/0.0.127.in-addr.arpa";
> > > > > };
> > > > >
> > > > > zone "1.168.192.in-addr.arpa" {
> > > > > type slave;
> > > > > file "secondary/1.168.192.in-addr.arpa";
> > > > > masters { 192.168.1.1; };
> > > > > allow-query {
> > > > > any;
> > > > > };
> > > > > allow-transfer {
> > > > > localhost;
> > > > > neandertal-xfer;
> > > > > };
> > > > > };
> > > > >
> > > > > zone "neandertal.org" {
> > > > > type slave;
> > > > > file "secondary/neandertal.org";
> > > > > masters { 192.168.1.1; };
> > > > > allow-query {
> > > > > any;
> > > > > };
> > > > > allow-transfer {
> > > > > localhost;
> > > > > neandertal-xfer;
> > > > > };
> > > > > };
> > > > >
>
> > > > > Primary #2 named.conf = babylon.webgalactic.com
> > > > > // generated by named-bootconf.pl
> > > > >
> > > > > options {
> > > > > directory "/var/named";
> > > > > version "Surely you must be joking";
> > > > > /*
> > > > > * If there is a firewall between you and nameservers you want
> > > > > * to talk to, you might need to uncomment the query-source
> > > > > * directive below. Previous versions of BIND always asked
> > > > > * questions using port 53, but BIND 8.1 uses an unprivileged
> > > > > * port by default.
> > > > > */
> > > > > // query-source address * port 53;
> > > > > };
> > > > >
> > > > > //
> > > > > // Official and stealth secondaries
> > > > > //
> > > > > acl "webgalactic-xfer" {
> > > > > { 192.168.1.1; // kesrith (slave)
> > > > > };
> > > > > };
> > > > >
> > > > >
> > > > > zone "." {
> > > > > type hint;
> > > > > file "named.ca";
> > > > };
> > > > >
> > > > > zone "0.0.127.in-addr.arpa" {
> > > > > type master;
> > > > > file "primary/0.0.127.in-addr.arpa";
> > > > > };
> > > > >
> > > > > zone "0.0.10.in-addr.arpa" {
> > > > > type master;
> > > > > file "primary/0.0.10.in-addr.arpa";
> > > > > allow-query {
> > > > > any;
> > > > > };
> > > > > allow-transfer {
> > > > > localhost;
> > > > > webgalactic-xfer;
> > > > > };
> > > > > };
> > > > >
> > > > > zone "webgalactic.com" {
> > > > > type master;
> > > > > file "primary/webgalactic.com";
> > > > > allow-query {
> > > > > any;
> > > > > };
> > > > > allow-transfer {
> > > > > localhost;
> > > > > webgalactic-xfer;
> > > > > };
> > > > > };
>
> Regards,
> Henri
>
> -------------------------------------------------------------
> My .sig file can beat up your .sig file!
> Biologically, anything past the age of 35 is bonus!
> "The weak shall perish!" Species 8472
> "The Geezer Geek"
> -------------------------------------------------------------
>
--
Mark Andrews, Internet Engines Inc. / Internet Software Consortium
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark_Andrews at iengines.com
More information about the bind-users
mailing list