allow-transfer from slave server

Ronni Jensen roj at
Mon Apr 24 09:52:34 UTC 2006


I have a master (ns0) and 2 slave servers (ns1 & ns2).

ns0 is not accessible from WAN, and only allows zone tranfers to ns1 and
ns2 on RFC1918 addresses.
ns1 and ns2 are accessible from outside, where a WAN public IP is NAT'ed
to their local IP-address.

On a server ( at another location, I want to pull zones
from either ns1 or ns2.. I have this config on ns1:

zone "" IN {
        type slave;
        file "/var/named/slave/";
        masters {; };   // this is the master server (ns0)
        allow-transfer {; }; // this is the outside
server which want to pull the zone

..But when I initiate a zone transfer from which has
this config in named.conf:

zone "" IN {
        type slave;
        file "/etc/bind/data/";
        masters {; }; // this is ns1's public IP-address

..I get this error in my activity log:

24-Apr-2006 11:40:45.659 general: info: zone Transfer
24-Apr-2006 11:40:45.695 xfer-in: info: transfer of '' from connected using
24-Apr-2006 11:40:45.761 xfer-in: error: transfer of ''
from failed while receiving responses: REFUSED
24-Apr-2006 11:40:45.761 xfer-in: info: transfer of '' from end of transfer

Can you tell me why I get that error? :-/


