bind port problems

Mark Andrews Mark_Andrews at isc.org
Sun Jan 27 13:03:21 UTC 2008


> Hello,
> 
> I'm trying to set up a secondary name serveur, on a server managed with 
> plesk and behind a firewall with port 53 TCP and UDP open but I cannot 
> manage to get a successfull zone transfer.
> 
> This is what I het in my syslog :
> 
> Jan 27 07:35:07 Serv1 named[4000]: client 92.193.254.8#59962: zone 
> transfer 'domain.fr/IN' denied
> 
>  From what I understand from this message is that it failed to do a zone 
> tranfer on 92.193.254.8 on port 59962 so normal it is denied as firwall 
> blocks this port.

	No.  The acl on the master blocked the transfer.

> However in my /etc/named.conf I've got :
> 
> query-source address * port 53;
> 
> I've done a /etc/init.d/bind9 reload
> 
> And have waited for over 24 hours. And it still looks up on the wrond 
> port. Any ideas where this error could come from?

	The port designator only applies to the source port for
	UDP queries.  AXFR uses TCP.  Also the correct control
	is transfer-source not query-source.
 
> I've alse added 92.193.254.8 to my ACL list in Plesk so this server 
> should not be blocked.

	Which server?  The master or the slave?  Did you reload?
 
> Is the wrong port a problem on my side or is it a setting on the 
> secondary name server?
> 
> Thanks in advance for any advice, and if you need to see more of my 
> settings please let me know.
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: Mark_Andrews at isc.org



More information about the bind-users mailing list