No subject
Tue Apr 2 00:56:56 UTC 2013
SYMPTOMS
Incremental zone transfers that are requested by Windows 2000-based
secondary servers from a Bind primary may not succeed. When this occurs,
event ID 6524 is recorded in the DNS event log.
Sample DNS event ID 6524 record:
Event Type: Error
Event Source: DNS
Event Category: None
Event ID: 6524
Date: 4/18/2000
Time: 10:55:48 AM
User: N/A
Computer: MYCOMPUTER
Description: Invalid response from master DNS server at 192.168.0.10 during
attempted zone transfer of zone test.microsoft.com. Check The DNS server at
192.168.0.10 and insure that it is authoritative for this zone. This can be
done by viewing or updating the list of authoritative servers for the zone.
When using the DNS console, select zone test.microsoft.com Properties at
server 192.168.0.10 and click the Name Servers tab. If needed, you can add
or update this server in the list there. As an alternative solution, you
could also modify settings in the Zone Transfer tab to allow transfer of the
zone to this and other DNS servers.
CAUSE
The Bind server is not sending back a response of type "Incremental zone
transfer." This causes the transfer not to succeed because the response type
must match the query for zone transfers.
MORE INFORMATION
For additional information about the response format for incremental zone
transfers, see RFC 1995.
-------------------------------------------
/*
* Master nameserver config.
* Replaced ip adresses with bogus values x.y.z/v/w
*/
#acl internal {
# x.y.z.0/24;
# x.y.v.0/24;
# x.y.w.0/24;
#};
acl trusted {
# internal;
x.y.z.0/24;
x.y.v.0/24;
x.y.w.0/24;
129.242.4.254/32; /* benoni.uit.no */
129.241.1.99/32; /* aun.uninett.no */
};
options {
directory "/global/dns";
# check-names master fail;
check-names master ignore;
check-names response ignore;
# transfer-format many-answers;
named-xfer "/usr/local/sbin/named-xfer";
dump-file "/var/named/dump/named_dump.db";
statistics-file "/var/named/dump/named.stats";
pid-file "/var/named/etc/named.pid";
memstatistics-file "/var/named/dump/named.memstats";
rfc2308-type1 yes;
use-id-pool yes;
allow-transfer {
trusted;
};
/* allow-query {
trusted;
};*/
/*
* If there is a firewall between you and nameservers you want
* to talk to, you might need to uncomment the query-source
* directive below. Previous versions of BIND always asked
* questions using port 53, but BIND 8.1 uses an unprivileged
* port by default.
*/
// query-source address * port 53;
};
zone "0.0.127.IN-ADDR.ARPA" {
type master;
file "db.127.0.0";
notify no;
};
zone "unik.no" {
type master;
file "db.unik";
allow-update {
x.y.v.30;
x.y.v.32;
x.y.z.215;
x.y.z.204;
};
};
zone "ms.unik.no" {
type master;
file "db.ms";
};
zone "win.unik.no" {
type master;
file "db.win";
};
zone "w.y.x.IN-ADDR.ARPA" {
type master;
file "db.x.y.w";
allow-update {
x.y.v.30;
x.y.v.32;
x.y.z.215;
x.y.z.204;
};
};
zone "z.y.x.IN-ADDR.ARPA" {
type master;
file "db.x.y.z";
allow-update {
x.y.v.30;
x.y.v.32;
x.y.z.215;
x.y.z.204;
};
};
zone "v.y.x.IN-ADDR.ARPA" {
type master;
file "db.x.y.v";
allow-update {
x.y.v.30;
x.y.v.32;
x.y.z.215;
x.y.z.204;
};
};
zone "." {
type hint;
file "db.cache";
};
logging {
category lame-servers { default_syslog; };
// category lame-servers { null; };
};
--
------------------------------------------------------------------------
Ingvar Hagelund Phone: (+47) 22740512
E-mail: ingvar at unik.no WWW: http://www.ifi.uio.no/~ingvarha
Adress: Ringshusveien 10, N-1176 OSLO, NORWAY
Experience GNU/Linux!
-------------------------------------------------------------------------
More information about the bind-users
mailing list