ID mismatch

Mark Andrews Mark_Andrews at isc.org
Wed Sep 15 14:01:53 UTC 2004


> Mark Andrews wrote:
> >>Hello,
> >>
> >>one of our customers has his own primary DNS. We aren't able to transfer 
> >>  zone from him.
> >>
> >>[root at kobyla etc]# dig @80.188.222.162 mikroregion-nymbursko.cz -t axfr
> >>
> >>; <<>> DiG 9.2.2 <<>> @80.188.222.162 mikroregion-nymbursko.cz -t axfr
> >>;; global options:  printcmd
> >>mikroregion-nymbursko.cz. 86400 IN      SOA     gran.meu-nbk.cz. 
> >>admin.meu-nbk.cz. 2004091411 10800 3600 604800 86400
> >>;; ERROR: ID mismatch: expected ID 56851, got 0
> >>
> >>Unfortunately I don't know what remote system is. Ours are older RedHat 
> >>Linuxes, running Bind 9.2.2. Anybody knows what to do with it? 
> >>Suggestions are welcome, further information will be obtained. Thanks!
> >>
> >>Pavel Urban
> > 
> >  
> > 	DNS messages have a ID field in them.  This is supposed to be
> > 	copied into the answer to allow them to be matched up with the
> > 	question.  This is true for both TCP and UDP.  You can have
> > 	multiple outstanding queries on a TCP connection.
> > 
> > 	The master is a old system which doesn't copy the ID field into all
> > 	of the messages in the AXFR stream.  It adds them to the starting
> > 	SOA and finishing SOA (see below).
> > 
> > 1483.   [bug]           dig axfr failed if the message id in the answer fail
> ed
> >                         to match that in the request.  Only the id in the fi
> rst
> >                         message is required to match. [RT #8138]
> > 
> > 	Mark
> > 	
> 
> I see. Interesting. So, I should suggest our customer to upgrade, or set 
> 'transfer-format' to one-answer ?

	You should upgrade.  He is already sending one-answer.  If
	he is running a old BIND release then he should also upgrade
	as any version of named with this old bug in it really
	should not be run.
 
> Thank you!
> 
> Pavel Urban
> 
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: Mark_Andrews at isc.org


More information about the bind-users mailing list