Timed out while zone transfer
Stephane Bortzmeyer
bortzmeyer at nic.fr
Wed Oct 31 16:11:12 UTC 2007
On Wed, Oct 31, 2007 at 04:58:13PM +0100,
Johan Schröder <mail at johnny.eu> wrote
a message of 19 lines which said:
> named[22513]: transfer of 'domain.com/IN' from xxx.xxx.xxx.xxx#53:
> failed to connect: timed out
>
> I checked the primary, the secondary nameserver and also the firewall,
> but I do not understand why the zone transfer is not successfull. Any idea?
Which checks did you perform? The first one should be, on the
secondary ("dig @secondary AXFR thezone."). Things that can go wrong:
routing (ping to see), filtering (telnet to port 53 and ping may give
different results), MTU (probably not your case since even the connect
failed), source port filtering (dig uses > 1024 by default so it may
give different results than BIND), etc.
tcpdump would certainly help.
More information about the bind-users
mailing list