'succesful' nsupdate of remote server not persistent across nameserver restart?

jasonsu at mail-central.com jasonsu at mail-central.com
Sun Apr 24 19:04:15 UTC 2016 

I'm doing an nsupdate to a remote server from my desktop

	cat nsupdate.txt
	 server ns01.example.com
	 debug yes
	 zone example.net.
	 update add test.example.net. 500 in TXT "TEST STRING"
	 show
	 send

	nsupdate -k ./jason-key ./nsupdate.txt

On the nameserver, logs show what appears to be 'success',

	Apr 24 11:47:07 ns01 named[23053]: 24-Apr-2016 11:47:07.949 update-security: info: client 10.0.0.17#4218/key jason-key: view internal: signer "jason-key" approved
	Apr 24 11:47:08 ns01 named[23053]: 24-Apr-2016 11:47:07.949 update: info: client 10.0.0.17#4218/key jason-key: view internal: updating zone 'example.net/IN': adding an RR at 'test.example.net' TXT "TEST STRING"

checking with dig, it's NOT in 'TXT' where I expected it

	dig TXT example.net +short
		(empty)

instead it's in 'AXFR'

	dig AXFR example.net

	; <<>> DiG 9.10.3-P4 <<>> AXFR example.net
		;; global options: +cmd
		example.net.             5       IN      SOA     ns01.example.com. ns-admin.example.com. 1461435298 7200 1800 604800 5
		example.net.             5       IN      NS      ns01.example.com.
		example.net.             5       IN      A       127.0.0.1
		test.example.net. 500 IN      TXT     "TEST STRING"
		example.net.             5       IN      SOA     ns01.example.com. ns-admin.example.com. 1461435298 7200 1800 604800 5
		;; Query time: 1 msec
		;; SERVER: 10.0.0.53#53(10.0.0.53)
		;; WHEN: Sun Apr 24 11:48:58 PDT 2016
		;; XFR size: 5 records (messages 1, bytes 213)

The journal HAS been modified

	cd <named chroot>
	grep -rlni acme .
		./namedb/master/internal.example.net.zone.jnl

After a bind restart, which iiuc is supposed to flush the journal to files,

	systemctl stop  named.service
	systemctl start named.service

checking with dig, the update's missing

	dig AXFR example.net

		; <<>> DiG 9.10.3-P4 <<>> AXFR example.net
		;; global options: +cmd
		example.net.             5       IN      SOA     ns01.example.com. ns-admin.example.com. 1461435297 7200 1800 604800 5
		example.net.             5       IN      NS      ns01.example.com.
		example.net.             5       IN      A       127.0.0.1
		example.net.             5       IN      SOA     ns01.example.com. ns-admin.example.com. 1461435297 7200 1800 604800 5
		;; Query time: 2829 msec
		;; SERVER: 10.0.0.53#53(10.0.0.53)
		;; WHEN: Sun Apr 24 11:52:32 PDT 2016
		;; XFR size: 4 records (messages 1, bytes 178)

	cd <named chroot>
	grep -rlni acme .
		(empty)

What am I failing to do to make this update persistent across flush/restart, as intended?

Jason

More information about the bind-users mailing list