Permision Denied... Transfer Zone

Mark Andrews Mark_Andrews at isc.org
Thu Aug 26 23:12:16 UTC 2004 


> Hi there,
>  
> 
> There's 2 Bind Servers. Primary and Secondary for several zones.
> 
>  
> 
> I did on Primary for each zone:
> 
>  
> 
> zone "myzone" in {
> 
>         type master;
> 
>         file "myzone.es.zone";
> 
>         allow-transfer {10.0.0.2; };
> 
> };
> 
>  
> 
> And on Secondary:
> 
>  
> 
> zone "myzone" in {
> 
>         type slave;
> 
>         file "myzone.es.zone";
> 
>         masters {10.0.0.1; };
> 
> };
> 
>  
> 
> In both servers there's anything specifyed on options tag.
> 
>  
> 
> Restarting both server's I got these messages on /var/log/messages
> 
>  
> 
> Primary
> 
>  
> 
> Aug 26 18:58:48 myprimary named[195]: client ::ffff:10.0.0.2#33373: zone
> transfer 'myzone.es.zone/IN' denied
> 
>  
> 
> Secondary
> 
>  
> 
> Aug 26 21:58:45 mysecondarynamed[11155]: transfer of 'myzone.es.zone/IN'
> from 10.0.0.1#53: failed while receiving responses: REFUSED
> 
>  
> 
> However, if I change the field 
> 
>  
> 
>             Allow-transfer {10.0.0.2; }; in the primary zone tag for
> Allow-transfer { any; };
> 
>  
> 
> It works, perfectly
> 
>  
> 
> Both servers are Bind9 Server on SuSe Linux Box
> 
>  
> 
> Am I missing something?
> 

	A sane IPv6 stack.

	See match-mapped-addresses;
  
> 
> Thanks in advance
> 
>  
> 
>  
> 
>  
> 
> pere
> 
> 
> 
> -----------------------------------------------------------------------------
> ---
> Aquest missatge electronic pot  contenir informacio confidencial o privilegia
> da.
> Si voste no es el destinatari del  missatge, o l'ha rebut per error, si us pl
> au
> notifiqui-ho al remitent i destrueixi el missatge amb tot el seu contingut.
> Esta completament  prohibida  qualsevol  copia, us o distribucio no autoritza
> da
> del contingut d'aquest missatge electronic.
> -----------------------------------------------------------------------------
> ---
> Este mensaje electronico puede contener informacion confidencial o privilegia
> da.
> Si usted  no es  el destinatario de este mensaje o lo ha recibido por error, 
> por
> favor notifiquelo al remitente y destruya el mensaje con todo su contenido.
> Queda  expresamente  prohibida  cualquier  copia, utilizacion o  distribucion
>  no
> autorizada del contenido de este mensaje electronico.
> -----------------------------------------------------------------------------
> ---
> This e-mail may contain confidential and/or privileged information.
> If you  are  not the  intended recipient (or have received this e-mail in err
> or)
> please notify the sender immediately and destroy this e-mail.
> Any  unauthorized  copying,  disclosure  or distribution of the material in t
> his
> e-mail is strictly forbidden.
> -----------------------------------------------------------------------------
> ---
> 
> 
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: Mark_Andrews at isc.org

More information about the bind-users mailing list