Delegation not working

Thu May 7 16:31:12 UTC 2009

I attempted to delegate a subdomain last night, but it didn't work. When I
slave that subdomain it works fine, so I know that connectivity is not the
problem. The server is running BIND 9.3.4. Here is the dig response:

; <<>> DiG 9.3.4 <<>> +norec @athena adm.bart.gov NS
; (1 server found)
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 57085
;; flags: qr ra; QUERY: 1, ANSWER: 0, AUTHORITY: 2, ADDITIONAL: 2

;; QUESTION SECTION:
;adm.bart.gov.                  IN      NS

;; AUTHORITY SECTION:
adm.bart.gov.           14400   IN      NS      mrep-02.adm.bart.gov.
adm.bart.gov.           14400   IN      NS      dhcp-01.adm.bart.gov.

;; ADDITIONAL SECTION:
dhcp-01.adm.bart.gov.   14400   IN      A       148.165.126.87
mrep-02.adm.bart.gov.   14400   IN      A       10.2.242.222

;; Query time: 0 msec
;; SERVER: 148.165.30.30#53(148.165.30.30)
;; WHEN: Wed May  6 22:52:25 2009
;; MSG SIZE  rcvd: 106

So it seems we are reading the delegation info correctly, but not getting
answers, or perhaps not asking? Here is my named.conf, and the db records.
Since I'm using h2n, the delegation info in the db files is actually via
$include statements pointing at spcl files. I know the $includes are read
properly because there is other info in them that works.

We are forwarding for internet names to our outside-facing server. I'm
wondering if forwarding is the problem? I was unable to experiment with
removing this as it's a production system.

***named.conf***
options {
        directory "/var/named";
        query-source address 148.165.30.30 port 53;
        forwarders { 148.165.3.10; };
        forward only;
        allow-transfer { 148.165.7.200; 148.165.126.87; 10.2.242.222; };
        transfer-source 148.165.30.30;
        notify-source 148.165.30.30;
        recursive-clients 2000;
        zone-statistics yes;
};

zone "bart.gov" {
        type master;
        file "db.bart";
};

zone "165.148.in-addr.arpa" {
        type master;
        file "db.148.165";
};

zone "." {
        type hint;
        file "db.cache";
);

***db.bart***
$TTL 4H
@       SOA     athena bernhardt ( 2009050701 4H 10M 1w3d 10M )
        NS      athena
        NS      Apollo
adm            IN      NS      dhcp-01.adm.bart.gov.
               IN      NS      mrep-02.adm.bart.gov.
dhcp-01.adm.bart.gov.  IN      A       148.165.126.87
mrep-02.adm.bart.gov.  IN      A       10.2.242.222

***db.10***
$TTL 4H
@       SOA     athena.bart.gov. bernhardt.bart.gov. ( 2009050701 4H 10M
1w3d 10M )
        NS      athena.bart.gov.
        NS      apollo.bart.gov.
$GENERATE       0-127 $.10 NS   dhcp-01.adm.bart.gov.
$GENERATE       0-127 $.10 NS   mrep-02.adm.bart.gov.

Assistance appreciated!