Delegation doesn't seem to be working

Curt Shaffer cshaffer at gmail.com
Tue May 23 19:53:51 UTC 2006


I am trying to delegate a sub domain abc.domain.com so the admin at
that site can have responsibility. I would also like the domain.com NS
server to be a slave for the sub domain abc.domain.com and the sub
domain NS server be a slave for the root domain.

Here are my configs:

domain.com
################
master/domain.com
################
$TTL 86400
domain.com.                IN      SOA     NS1.domain.com.
root.domain.com. (
                                                2006052302      ;
Serial
                                                10800           ;
Refresh
                                                3600            ; Retry
                                                1209600         ;
Expire
                                                86400 )         ;
Minimum TTL


;DNS Servers
                          IN      NS      NS1.domain.com.
                          IN      NS      NS2.domain.com.
abc                     IN      NS      NS3.abc.domain.com.
abc                     IN      NS      NS1.domain.com.

#################
named.conf on domain.com
##################
zone "domain.com"{
        type master;
        file "master/domain.com";
        allow-transfer {IP of sub NS server;};
        };
zone "abc.domain.com"{
        type slave;
        file "slave/slave.abc.domain.com";
        masters {IP of sub NS server;};
        };


#######################
master/abc.domain.com on abc.domain.com
#######################
$TTL 86400
abc.domain.com.     IN SOA  NS3.abc.domain.com. root.abc.domain.com. (
                                2006052301 ; serial
                                10800          ; refresh
                                3600            ; retry
                                1209600       ; expire
                                86400          ; minimum
                                )
                        NS      NS3.abc.domain.com.
                        NS      NS1.domain.com.
########################
named.conf on abc.domain.com
########################
zone "abc.domain.com"{
        type master;
        file "master/abc.domain.com";
        allow-transfer {IP of root NS server;};
        };
zone "domain.com"{
        type slave;
        file "slave/slave.domain.com";
        masters {IP of root NS server;};
        };

When I do an nslookup for a www record in the abc.domain.com domain I
get the following error:

** server can't find www.abc.domain.com: NXDOMAIN

After I reload the domain on domain.com I get the following in my
/var/log/messages:

 client IP.OF.ROOT.NS#53884: received notify for zone 'abc.domain.com':
not authoritative

If I do the lookups on the local server (the NS of the sub domain)
everything seems to work fine, but it does not seem to work top down.

Both OSes FreeBSD 6, BIND 9.3.1

If you need further information just ask. I have been googling this for
days and really can't find anything that helps. Also if anyone out
there has good reading material for this type of set up, feel free to
point me in that direction as well.

Thanks

Curt



More information about the bind-users mailing list