<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-2">
<meta name="Generator" content="Microsoft Exchange Server">
<!-- converted from text --><style><!-- .EmailQuote { margin-left: 1pt; padding-left: 4pt; border-left: #800000 2px solid; } --></style>
</head>
<body>
<div>
<div dir="auto" style="direction:ltr; margin:0; padding:0; font-family:sans-serif; font-size:11pt; color:black">
Yed we have quite several times by now when trying to find the culprit. Also the whole windows 2019 server. And it is not only this domain/zone, but all of them.<br>
<br>
</div>
<div dir="auto" style="direction:ltr; margin:0; padding:0; font-family:sans-serif; font-size:11pt; color:black">
<span id="x_OutlookSignature">
<div dir="auto" style="direction:ltr; margin:0; padding:0; font-family:sans-serif; font-size:11pt; color:black">
Get <a href="https://aka.ms/ghei36">Outlook for Android</a></div>
</span><br>
</div>
<hr tabindex="-1" style="display:inline-block; width:98%">
<div id="x_divRplyFwdMsg" dir="ltr"><font face="Calibri, sans-serif" color="#000000" style="font-size:11pt"><b>From:</b> Ondřej Surý <ondrej@isc.org><br>
<b>Sent:</b> Wednesday, January 22, 2020 1:08:22 PM<br>
<b>To:</b> Jukka Pakkanen <jukka.pakkanen@qnet.fi><br>
<b>Cc:</b> bind-users@isc.org <bind-users@isc.org><br>
<b>Subject:</b> Re: DNSSEC zones not updated</font>
<div> </div>
</div>
</div>
<font size="2"><span style="font-size:11pt;">
<div class="PlainText">Hi,<br>
<br>
did you try stopping BIND, removing journal files and then starting BIND again?<br>
<br>
If the signed copy of the zone got corrupted in the memory, you might be dumping the corrupted version on disk again with `rndc reload`.<br>
<br>
Ondrej<br>
--<br>
Ondřej Surý<br>
ondrej@isc.org<br>
<br>
> On 22 Jan 2020, at 12:11, Jukka Pakkanen <jukka.pakkanen@qnet.fi> wrote:<br>
> <br>
> <br>
> Running BIND 9.14.9 Windows. The zone data is not updated for some reason anymore, and same problem in all our signed zones. Example "gemtrade.fi":<br>
> <br>
> zone "gemtrade.fi" {<br>
> type master;<br>
> file "named.gemtrade";<br>
> inline-signing yes;<br>
> auto-dnssec maintain;<br>
> };<br>
> <br>
> <br>
> ;<br>
> ; File: named.gemtrade<br>
> ;<br>
> $TTL 60<br>
> @ IN SOA ns1.qnet.fi. helpdesk.qnet.fi. (<br>
> 202001234 ; serial number<br>
> 28800 ; refresh every 12 hours<br>
> 7200 ; retry after 2 hours<br>
> 604800 ; expire after 2 weeks<br>
> 33600) ; default ttl is 2 days<br>
> gemtrade.fi. IN A 62.142.217.154<br>
> IN MX 55 qntsrv8.qnet.fi.<br>
> IN MX 25 qntsrv9.qnet.fi.<br>
> IN NS ns1.qnet.fi.<br>
> IN NS ns2.qnet.fi.<br>
> IN NS ns3.qnet.fi. <br>
> www IN A 62.142.217.154<br>
> _autodiscover._tcp IN SRV 0 5 443 mail.qnet.fi.<br>
> localhost.gemtrade.fi. IN A 127.0.0.1<br>
> <br>
> <br>
> Used to work fine, now no matter what change I make to the zone file and reload, it does not show up in queries, but the old data, weeks behind. The SOA & serial numbers *are* updating in the queries, but the actual records not. Example the MX records,
currently I have priorities 55 and 25, still inquiries return the old 20 and 20. Same with any records, the changes does not get updated.<br>
> <br>
> Deleting the .jnl file does not help, after "rndc reload gemtrade.fi" a new .jnl file is created, but queries still return old data.<br>
> <br>
> The named process has all possible rights in the file structure.<br>
> <br>
> What might be wrong?<br>
> <br>
> _______________________________________________<br>
> Please visit <a href="https://lists.isc.org/mailman/listinfo/bind-users">https://lists.isc.org/mailman/listinfo/bind-users</a> to unsubscribe from this list<br>
> <br>
> bind-users mailing list<br>
> bind-users@lists.isc.org<br>
> <a href="https://lists.isc.org/mailman/listinfo/bind-users">https://lists.isc.org/mailman/listinfo/bind-users</a><br>
<br>
<br>
</div>
</span></font>
</body>
</html>