Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Wierd Propagation Problem

Status
Not open for further replies.

AZOldDog

Technical User
Dec 19, 2009
20
US
I am rebuilding a crashed server. New one is on Fedora 11 with Bind 9.6.1.

Bind starts just fine and if I check the message logs on both of my servers I can see the Slave Zones update on both servers yet the Zones on this server do not propagate out.

Named.conf as follows Any ideas?? I am stumped.

// Red Hat BIND Configuration Tool
//
// Default initial "Caching Only" name server configuration
//

options {
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
recursion no;
/*
* If there is a firewall between you and nameservers you want
* to talk to, you might need to uncomment the query-source
* directive below. Previous versions of BIND always asked
* questions using port 53, but BIND 8.1 uses an unprivileged
* port by default.
*/
//query-source address * port 53;
dnssec-enable yes;
dnssec-validation yes;
dnssec-lookaside . trust-anchor dlv.isc.org.;
};



zone "." IN {
type hint;
file "named.root";
};



zone "0.0.127.in-addr.arpa." IN {
type master;
file "named.local";
allow-update { none; };
};

zone "0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa." IN {
type master;
file "named.ip6.local";
allow-update { none; };
};

zone "255.in-addr.arpa." IN {
type master;
file "named.broadcast";
allow-update { none; };
};

zone "0.in-addr.arpa." IN {
type master;
file "named.zero";
allow-update { none; };
};

zone "olddog.name." IN {
type master;
file "olddog.name.zone";
allow-update {
none;
};
notify yes;
};

zone "neversofew.com." IN {
type master;
file "neversofew.com.zone";
allow-update {
none;
};
};

zone "azdwiggins.com." IN {
type slave;
masters {
70.167.212.6;
};
allow-transfer {
70.167.212.6;
};
};
zone "nancydwiggins.com." IN {
type slave;
masters { 70.167.212.6; };
allow-transfer { 70.167.212.12; };

};

zone "localdomain" {
type master;
file "/var/named/localdomain.hosts";
};


key rndc-key {
algorithm hmac-md5;
secret "WXmY+EM5Xr4olRR6/aJmyQ==";
};
controls {
inet 127.0.0.1 port 953 allow { 127.0.0.1; } keys { rndc-key; };
};
 
I went to DNSstuff and used their tools. IP trace goes right strait to the server and returns the correct host name.

Domain name trace returns that there are no SOA records for either domain. I am now officially confused.

 
It doesn't look like you have any SOA (start of authority) declaration in your configuration. Normally you would specify the server as authoritative for the domain.

For example:
mydomain.net. IN SOA masternameserver.mydomain.net
{
//Specify the time to live values in here

}
 

for zones you own, you must have allow-query set to any...

don't see that.

Also, check your local iptables allows 53 inbound.

 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top