Misconfigured slave?

Torsten toto at the-damian.de
Thu Apr 29 11:10:49 UTC 2010


Am Thu, 29 Apr 2010 10:33:37 +0200
schrieb Claes Gyllenswärd <letharion at gmail.com>:

> Hello bind-users
> 
> I have recently set up my first two BIND-instances, and I believe that
> I have gotten things nearly right, but something is amiss.
> "Internetstiftelsen", handles the TLD .se, and they have a self-test
> one can run on ones DNS's before actually using them. Running this
> test, it returns a number of errors:
> 
> 1) You only have 1 DNS

There is only one working NS in your zonefile (ns1.letharion.se). 

> 2) Glue for DNS-server ns1.letharion.se differs between child and
> parent zone. This is a configuration problem that should be corrected.

According to the .se nameservers the authoritative Nameservers for
letharion.se should be:

letharion.se. 	604800	IN NS ns3.everlast.se.
letharion.se.	604800	IN NS ns1.everlast.se.
letharion.se.	604800  IN NS ns2.everlast.se.

> 3) I can find no adress for SLAVE_IP.letharion.se. Incorrect hostname
> or adress for SLAVE_IP.letharion.se.

There's no A record for a host slave_ip in your zone file.

In case you're using acl's for MY_IP and SLAVE_IP, those are not
working within a zone file.

> Below are what I believe to be the relevant configuration files. I
> have used sed to replace the ip-adresses of both servers,
> which verified that all ip have been typed in correctly. I also
> removed any logging for brevity.
> 
> I will appreciate any input on what I have done wrong.
> 
> Master config:
> options {
>         directory "/var/bind";
>         listen-on-v6 { none; };
>         listen-on port 53 { 127.0.0.1; MY_IP; };
>         pid-file "/var/run/named/named.pid";
> };
> view "external" {
>         match-clients { any; };
>         recursion no;
>         zone "." IN {
>                 type hint;
>                 file "named.ca";
>         };
>         zone "127.in-addr.arpa" IN {
>                 type master;
>                 file "pri/127.zone";
>                 allow-update { none; };
>                 notify no;
>         };
>         zone "letharion.se" {
>                 type master;
>                 file "pri/letharion.se.external";
>                 allow-query { any; };
>                 allow-transfer { SLAVE_IP; };
>         };
> };
> Zonefile:
> $TTL 2d
> @  IN SOA   ns1.letharion.se. ADMIN.letharion.se. (
>    10042601 ;serial
>    3h ;refresh
>    1h ;retry
>    1w ;expiry
>    1d )  ;minimum
> 
> letharion.se.        IN MX 0 mail.letharion.se.
> letharion.se.        IN TXT   "v=spf1 ip4:MY_IP/32 mx ptr
> mx:mail.letharion.se ~all"
> letharion.se.        IN NS ns1.letharion.se.
> letharion.se.        IN NS SLAVE_IP
> www.letharion.se.    IN A  MY_IP
> ns1.letharion.se.    IN A  MY_IP
> mail.letharion.se.   IN A  MY_IP
> 
> Slave config:
> options {
>         directory "/var/bind";
>         listen-on-v6 { none; };
>         listen-on port 53 { 127.0.0.1; SLAVE_IP; };
>         pid-file "/var/run/named/named.pid";
> };
> 
> view "external" {
>         match-clients { any; };
>         recursion no;
>         zone "." IN {
>                 type hint;
>                 file "named.ca";
>         };
>         zone "127.in-addr.arpa" IN {
>                 type master;
>                 file "pri/127.zone";
>                 allow-update { none; };
>                 notify no;
>         };
>         zone "letharion.se" {
>                 type slave;
>                 file "pri/letharion.se.external.bak";
>                 allow-query { any; };
>                 masters { MY_IP; };
>         };
> };
> _______________________________________________
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users



More information about the bind-users mailing list