NEED HELP PLEASE

Kevin Darcy kcd at daimlerchrysler.com
Thu Jul 5 16:36:10 UTC 2001 

The file changed because you enabled the zone for Dynamic Update and then made
a change to the zone. named eventually dumped the zonefile in a format that it
finds easy to parse on bootup. Hopefully you realize that once you enable a
zone for Dynamic Update, the only reasonable way to make *any* change to the
zone from that point forward is through Dynamic Update, right?

As for the new entries -- ZOHOUR, macG4, etc. -- presumably those were written
there by the Domain Controller.

Note that the delegation records for the subzones of aleppo.shern.edu have
disappeared from the zone file. This is probably *not* because the Domain
Controller deleted them, but rather because of a bug with BIND 8, combined
with the fact that you have defined yourself as authoritative for all of those
subzones. This bug is rather benign in BIND 8 since it "mixes glue" on zone
transfers, i.e. all of those delegation records will (re)appear in a zone
transfer of aleppo.shern.edu, so slaves -- and everyone else for that matter
-- won't know that the delegations have gone missing from the zonefile. If you
ever *stop* being authoritative for any of those subzones, however, make sure
you restore the delegation records, otherwise the subzone(s) may become
unresolvable.

By the way, why are you delegating these subzones to "alepw2k" and then
defining them as master zones on your nameserver? This means your nameserver
will be blind to the zone contents that will be visible to everyone else on
"alepw2k".


- Kevin

Computer Center. wrote:

> i have the following configuration in the camp at the university
>
> 1 - dns server : dns01, with ip address : 10.128.16.14 - bind ver 8.2.4
> 2 - dhcp server : ftp01, with ip address : 10.128.16.20 - dhcp ver 3.0.rc10
> 3 - win2k ad server : alepw2k, with ip address : 10.128.16.23
>
> we have the following configuration for the dhcp:
>
> use-host-decl-names on;
> ddns-domainname "aleppo.shern.edu";
> # Sample /etc/dhcpd.conf
> # for aleppo University
> default-lease-time 604800;
> max-lease-time 2419200;
> ddns-update-style ad-hoc;
> option subnet-mask 255.0.0.0;
> option broadcast-address 10.128.255.255;
> option routers 10.128.16.23;
> option domain-name-servers 10.128.16.14;
> option domain-name "aleppo.shern.edu";
> ddns-updates on;
> ddns-rev-domainname "10.in-addr.arpa";
>
> subnet 10.0.0.0 netmask 255.0.0.0 {
> max-lease-time 2419200;
> default-lease-time 604800;
> ddns-rev-domainname "10.in-addr.arpa";
> ddns-updates on;
> ddns-domainname "aleppo.shern.edu";
> allow unknown-clients;
> range 10.128.1.10 10.128.15.250;
> range 10.128.17.10 10.128.250.250;
> }
> zone 10.in-addr.arpa. { # the name of the ptr zone
> # The ip address of the primary name server
> primary 10.128.16.14;
> }
> zone aleppo.shern.edu. { # the name of the forward zone
> # the ip address of the primary name server
> primary 10.128.16.14;
> }
>
> and for the named.conf
>
> // generated by named-bootconf.pl
>
> options {
> directory "/var/named";
> /*
> * If there is a firewall between you and nameservers you want
> * to talk to, you might need to uncomment the query-source
> * directive below. Previous versions of BIND always asked
> * questions using port 53, but BIND 8.1 uses an unprivileged
> * port by default.
> */
> // query-source address port 53;
> forward first;
> forwarders {
> 192.168.2.6;
> };
> };
>
> //
> // a caching only nameserver config
> //
> zone "." {
> type hint;
> file "named.cash";
> };
>
> zone "127.in-addr.arpa" {
> type master;
> file "127.local";
> };
>
> zone "10.in-addr.arpa" {
> type master;
> file "db.10.zone";
> allow-update {
> 10.128.16.20;
> };
> };
>
> zone "aleppo.shern.edu" {
> type master;
> file "db.aleppo.hosts";
> allow-update {
> 10.128.16.20;
> };
> };
> zone "_tcp.aleppo.shern.edu" {
> type master;
> file "/var/named/_tcp.aleppo.shern.edu.hosts";
> allow-update {
> 10.128.16.23;
> };
> check-names ignore;
> };
>
> zone "_udp.aleppo.shern.edu" {
> type master;
> file "/var/named/_udp.aleppo.shern.edu.hosts";
> check-names ignore;
> allow-update {
> 10.128.16.23;
> };
> };
>
> zone "_msdcs.aleppo.shern.edu" {
> type master;
> file "/var/named/_msdcs.aleppo.shern.edu.hosts";
> check-names ignore;
> allow-update {
> 10.128.16.23;
> };
> };
>
> zone "_sites.aleppo.shern.edu" {
> type master;
> file "/var/named/_sites.aleppo.shern.edu.hosts";
> check-names ignore;
> allow-update {
> 10.128.16.23;
> };
> };
>
> Why my Files in the dns server changer from :
> EXAMPLE: MY db.aleppo.shern.edu FILE;
>
> $TTL    86400
> @       IN      SOA     dns01.aleppo.shern.edu.
> dns01.mail01.aleppo.shern.edu. (
>                          20010701000      ; serial
>                          28800            ; refresh, seconds
>                          14400            ; retry, seconds
>                          86400            ; expire, seconds
>                          3600000 )        ; minimum, seconds
>
>                  IN      NS      dns01.aleppo.shern.edu.
>                  IN      MX      10 mail01.aleppo.shern.edu.
> localhost.aleppo.shern.edu.     IN      A       127.0.0.1
> mail01.aleppo.shern.edu.        IN      A       10.128.16.11
> dns01.aleppo.shern.edu.         IN      A       10.128.16.14
> web01.aleppo.shern.edu.         IN      A       10.128.16.17
> www                             IN      CNAME   web01
> ftp01.aleppo.shern.edu.         IN      A       10.128.16.20
> ftp                             IN      CNAME   ftp01
> P550.aleppo.shern.edu.          IN      A       10.128.16.254
> iris.aleppo.shern.edu           IN      A       10.128.16.8
> alepw2k.aleppo.shern.edu.       IN      A       10.128.16.23
> _msdcs.aleppo.shern.edu.        IN      NS      alepw2k.aleppo.shern.edu.
> _tcp.aleppo.shern.edu.          IN      NS      alepw2k.aleppo.shern.edu.
> _sites.aleppo.shern.edu.        IN      NS      alepw2k.aleppo.shern.edu.
> _udp.aleppo.shern.edu.          IN      NS      alepw2k.aleppo.shern.edu.
>
> To This one:
>
> ;BIND DUMP V8
> $ORIGIN shern.edu.
> aleppo  86400   IN      MX      10 mail01.aleppo.shern.edu.     ;Cl=3
>          86400   IN      NS      dns01.aleppo.shern.edu. ;Cl=3
>          86400   IN      SOA     dns01.aleppo.shern.edu.
> dns01.mail01.aleppo.shern.edu. (
>                  2830831824 28800 14400 86400 3600000 )  ;Cl=3
> $ORIGIN aleppo.shern.edu.
> king1   302400  IN      A       10.128.1.27     ;Cl=3
> eng3    302400  IN      A       10.128.1.28     ;Cl=3
> input   302400  IN      A       10.128.1.44     ;Cl=3
> mail01  86400   IN      A       10.128.16.11    ;Cl=3
> omar    302400  IN      A       10.128.248.253  ;Cl=3
> webdes1 302400  IN      A       10.128.1.30     ;Cl=3
> Ent1    302400  IN      A       10.128.1.37     ;Cl=3
> webdes3 302400  IN      A       10.128.1.32     ;Cl=3
> Ent2    302400  IN      A       10.128.1.14     ;Cl=3
> ftp01   86400   IN      A       10.128.16.20    ;Cl=3
> webdes4 302400  IN      A       10.128.1.39     ;Cl=3
> localhost       86400   IN      A       127.0.0.1       ;Cl=3
> macG4   1209600 IN      A       10.128.250.249  ;Cl=3
> ZOHOUR  302400  IN      A       10.128.246.254  ;Cl=3
> au      302400  IN      A       10.128.1.41     ;Cl=3
> alepw2k 86400   IN      A       10.128.16.23    ;Cl=3
> P550    86400   IN      A       10.128.16.254   ;Cl=3
> www     86400   IN      CNAME   web01.aleppo.shern.edu. ;Cl=3
> dns01   86400   IN      A       10.128.16.14    ;Cl=3
> web01   86400   IN      A       10.128.16.17    ;Cl=3
> ftp     86400   IN      CNAME   ftp01.aleppo.shern.edu. ;Cl=3
> $ORIGIN aleppo.shern.edu.aleppo.shern.edu.
> iris    86400   IN      A       10.128.16.8     ;Cl=3
>
> what is wrong please help, is this correct.
> this is the first time we setup DNS server in the university
>
> thank you in advance
>
> MLK

More information about the bind-users mailing list