IXFR under bind 8.2.1

Mark_Andrews at isc.org Mark_Andrews at isc.org
Thu Sep 16 00:35:35 UTC 1999 

	To get the master to answer with an IXFR you need to add data
	dynamically (there is no tool to generate a delta from the
	previous version).  And for those of you worried about dynamic
	updates being spoofed they can be TSIG verified if you want.

	However IXFR is still broken so don't turn it on in 8.2.1.

	Mark

> Hi y'all,
> 
> I think I've missed the point somewhere on ixfr under bind 8.2.1.  I can't
> seem to find any references to how to put it together other than the syntax
> for the various named.conf options.  I have a master and a slave configured
> as per below.
> 
> The way I read the slaves log indicates that it is trying an ixfr but the
> master always shows axfr.
> 
> On master server ns1.myzone.org.nz (10.184.0.29)
> 
> options {
>          directory "/var/opt/dns";
>          maintain-ixfr-base yes; // not sure if this is required on the
>                                  // master??
>          notify yes;
> };
> 
> 
> server 10.184.0.29 {
>         support-ixfr yes;   // is this required on both slave and master?
> };
> 
> 
> 
> On slave server ns2.myzone.org.nz (10.184.0.29)
> 
> options {
>          directory "/var/opt/dns";
>          maintain-ixfr-base yes;
> };
> 
> server 10.184.0.28 {
>          support-ixfr yes;      
> };
> 
> zone "myzone.org.nz" in {
>                       type slave;
>                       file "db.myzone.org.nz";
>                       ixfr-base  "db.myzone.org.nz.ixfr";
>                       masters { 10.184.0.28; };
> };
> 
> 
> logged at debug level 1 on ns1.myzone.org.nz  (master)
> 
> approved AXFR from [10.184.0.29].33035 for "myzone.org.nz"
> zone transfer (AXFR) of "myzone.org.nz" (IN) to [10.184.0.29].33035
> 
> logged at debug level 1 on ns2.myzone.org.nz 
> 
> rcvd NOTIFY(myzone.org.nz, IN, SOA) from [10.184.0.28].32860
> qserial_query(myzone.org.nz)
> sysquery: send -> [10.184.0.28].53 dfd=5 nsid=59092 id=0 retry=937438744
> qserial_query(myzone.org.nz) QUEUED
> next maintenance for zone 'myzone.org.nz' in 8856 sec
> ns_req: answer -> [10.184.0.28].32860 fd=22 id=30488 size=29 rc=0
> datagram from [10.184.0.28].53, fd 5, len 189
> qserial_answer(myzone.org.nz): [10.184.0.28] -> 1999091600
> qserial_answer after sort: [10.184.0.28] -> 1999091600
> qserial_answer: zone is out of date
> startxfer() myzone.org.nz
> /opt/PUBbind/sbin/named-xfer -z myzone.org.nz -f db.myzone.org.nz -i
> db.myzone.org.nz.ixfr.tmp -s 1999091502 -C 1 -P 53 -T myzone.org.nz.17598 -d
> 1 -l xfer.ddt 10.184.0.28 
> started xfer child 17606
> next maintenance for zone 'myzone.org.nz' in 7200 sec
> 
> endxfer: child 17606 zone myzone.org.nz returned status=6 termsig=-1
> loadxfer() "myzone.org.nz"
> purge_zone(myzone.org.nz,1)
> purge_zone(myzone.org.nz,1)
> db_load(db.myzone.org.nz, myzone.org.nz, 2, Nil, Normal)
> next maintenance for zone 'myzone.org.nz' in 10185 sec
> slave zone "myzone.org.nz" (IN) loaded (serial 1999091600)
> no schedule change for zone 'myzone.org.nz'
> 
> What have I missed.
> 
> Cheers
> 
> James
> 
--
Mark Andrews, Internet Software Consortium
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: marka at isc.org

More information about the bind-users mailing list