Bind master keeps saying it is not authoritative

Xavier Humbert xavier.humbert at
Thu Mar 2 08:32:51 UTC 2017

Hello, I cannot fix a master/slave problem on RHEL7 with bind 9.9.4. It
is a server in building process, in a LAN, so I cannot use tools like
Zonecheck. Please note that my boss explicitely asked me to anonymize
the zone name. I know this is useless.

I can provide named.conf files for both servers, but basically, I
disabled (commented out) all security related options, and added "any"
to all acls. The zones declaration are double checked :

Master :
zone "" {
        type master;
        file "/etc/named/internal/";
        allow-transfer {my-slaves; };

Slave :
zone "" {
        type slave;
        file "/etc/named/slave/";
        masters {; };

When I initiate a zone transfer manually it works :

[root at slave etc]# dig @master axfr

; <<>> DiG 9.9.4-RedHat-9.9.4-38.el7_3.2 <<>> @master axfr
; (1 server found)
;; global options: +cmd 86400 IN     SOA 2017021602 28800 7200 604800 86400

But, in normal operation (all zones loaded OK), when I look at the
master I got this :

xfer-out: info: client ( bad zone transfer request: '': non-authoritative zone (NOTAUTH)

And on the slave :

general: info: zone refresh: unexpected rcode (REFUSED) from master (source
general: info: zone Transfer started.
xfer-in: info: transfer of '' from connected using
xfer-in: error: transfer of '' from failed while receiving responses: NOTAUTH
xfer-in: info: transfer of '' from Transfer completed: 0 messages, 0 records, 0 bytes, 0.001 secs (0 bytes/sec)

I'm really lost. I've configured dozens of DNSs with no such problems.
Did I miss something obvious ?

Thanks in advance,


Xavier Humbert
CRT Supervision et Exploitation de Niveau 1
Rectorat de Nancy-Metz
03 83 86 27 39

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the bind-users mailing list