Now I am puzzled, I thought I knew enough
Mark_Andrews at iengines.com
Mark_Andrews at iengines.com
Sun Nov 28 13:35:16 UTC 1999
The following should address the issue. We wern't following
RFC 1996 in that when a slave loads it should attempt to let
all other slave know.
You could also work around this bug by setting also-notify.
Mark
Index: src/bin/named/ns_notify.c
===================================================================
RCS file: /proj/cvs/isc/bind/src/bin/named/ns_notify.c,v
retrieving revision 8.5
diff -c -r8.5 ns_notify.c
*** ns_notify.c 1999/11/16 06:01:39 8.5
--- ns_notify.c 1999/11/28 13:30:59
***************
*** 218,226 ****
}
zname = zp->z_origin;
nns = na = 0;
! if (zp->z_type == z_master)
! sysnotify_slaves(dname, zname, class, type,
! zp - zones, &nns, &na);
/*
* Handle any global or zone-specific also-notify clauses
--- 244,250 ----
}
zname = zp->z_origin;
nns = na = 0;
! sysnotify_slaves(dname, zname, class, type, zp - zones, &nns, &na);
/*
* Handle any global or zone-specific also-notify clauses
> Here is my situation. I have 8.2.2.p5 installed on all machines.
> The primary/slave functions work just fine with two machines.
> I have a third machine that is a primary and is supposed to send
> updates to the primary #1 which is secondary to it.
> Primary #1 sends notifies to slave #1 just fine.
> Primary #2 sends no notifies but approves AFXR from primary #1
> (e.g. I wipe out the files and it cheerfully dumps them to #1
> but no notify what so ever)
>
> And the bueaty of it all is that there are no errors.
>
> Included files:
> Primary #1 named.conf = kesrith.neandertal.org
>
> // generated by named-bootconf.pl
>
> options {
> directory "/var/named";
> version "Surely you must be joking";
> /*
> * If there is a firewall between you and nameservers you want
> * to talk to, you might need to uncomment the query-source
> * directive below. Previous versions of BIND always asked
> * questions using port 53, but BIND 8.1 uses an unprivileged
> * port by default.
> */
> // query-source address * port 53;
> };
>
> //
> // Official and stealth secondaries
> //
> acl "neandertal-xfer" {
> { 192.168.1.4; // shonjir.neandertal.org (slave)
> };
> };
>
> acl "webgalactic-xfer" {
> { 10.0.0.9; // babylon.webgalactic.com (master)
> };
> };
>
>
> zone "." {
> type hint;
> file "named.ca";
> };
>
> zone "0.0.127.in-addr.arpa" {
> type master;
> file "primary/0.0.127.in-addr.arpa";
> };
>
> zone "1.168.192.in-addr.arpa" {
> type master;
> file "primary/1.168.192.in-addr.arpa";
> allow-query {
> any;
> };
> allow-transfer {
> localhost;
> neandertal-xfer;
> };
> };
>
> zone "neandertal.org" {
> type master;
> file "primary/neandertal.org";
> allow-query {
> any;
> };
> allow-transfer {
> localhost;
> neandertal-xfer;
> };
> };
>
> zone "0.0.10.in-addr.arpa" {
> type slave;
> file "secondary/0.0.10.in-addr.arpa";
> masters { 10.0.0.9; };
> allow-query {
> any;
> };
> allow-transfer {
> localhost;
> webgalactic-xfer;
> };
> };
>
> zone "webgalactic.com" {
> type slave;
> file "secondary/webgalactic.com";
> masters { 10.0.0.9; };
> allow-query {
> any;
> };
> allow-transfer {
> localhost;
> webgalactic-xfer;
> };
> };
>
> Slave #1 named.conf: =shonjir.neandertal.org
>
> // generated by named-bootconf.pl
>
> options {
> directory "/var/named";
> version "Surely you must be joking";
> /*
> * If there is a firewall between you and nameservers you want
> * to talk to, you might need to uncomment the query-source
> * directive below. Previous versions of BIND always asked
> * questions using port 53, but BIND 8.1 uses an unprivileged
> * port by default.
> */
> // query-source address * port 53;
> };
>
> //
> // An official slave (secondary) server.
> //
> acl "neandertal-xfer" {
> 192.168.1.1;
> 192.168.1.2;
> };
> zone "." {
> type hint;
> file "named.ca";
> };
>
> zone "0.0.127.in-addr.arpa" {
> type master;
> file "primary/0.0.127.in-addr.arpa";
> };
>
> zone "1.168.192.in-addr.arpa" {
> type slave;
> file "secondary/1.168.192.in-addr.arpa";
> masters { 192.168.1.1; };
> allow-query {
> any;
> };
> allow-transfer {
> localhost;
> neandertal-xfer;
> };
> };
>
> zone "neandertal.org" {
> type slave;
> file "secondary/neandertal.org";
> masters { 192.168.1.1; };
> allow-query {
> any;
> };
> allow-transfer {
> localhost;
> neandertal-xfer;
> };
> };
>
> Primary #2 named.conf (the one that doesnt send notifies) = babylon.webgalact
> ic.com (this is a customer machine that will go away and then it wont matter
> but
> I still want to know why!)
>
> // generated by named-bootconf.pl
>
> options {
> directory "/var/named";
> version "Surely you must be joking";
> /*
> * If there is a firewall between you and nameservers you want
> * to talk to, you might need to uncomment the query-source
> * directive below. Previous versions of BIND always asked
> * questions using port 53, but BIND 8.1 uses an unprivileged
> * port by default.
> */
> // query-source address * port 53;
> };
>
> //
> // Official and stealth secondaries
> //
> acl "webgalactic-xfer" {
> { 192.168.1.1; // kesrith (slave)
> };
> };
>
>
> zone "." {
> type hint;
> file "named.ca";
> };
>
> zone "0.0.127.in-addr.arpa" {
> type master;
> file "primary/0.0.127.in-addr.arpa";
> };
>
> zone "0.0.10.in-addr.arpa" {
> type master;
> file "primary/0.0.10.in-addr.arpa";
> allow-query {
> any;
> };
> allow-transfer {
> localhost;
> webgalactic-xfer;
> };
> };
>
> zone "webgalactic.com" {
> type master;
> file "primary/webgalactic.com";
> allow-query {
> any;
> };
> allow-transfer {
> localhost;
> webgalactic-xfer;
> };
> };
>
> So what might I be missing? The #2 primary has a different IP
> but the routing tables work, I can ping by full name only unless I
> add an entry into /etc/hosts. nslookup/dig both will cough up the
> correct names (full only).
>
> All machines are running RH6.0 and bind-p5.
>
> #2 just wont send a NOTIFY when the stuff changes. grrrrrrr!
>
> TIA
> Henri
>
> -------------------------------------------------------------
> My .sig file can beat up your .sig file!
> Biologically, anything past the age of 35 is bonus!
> "The weak shall perish!" Species 8472
> "The Geezer Geek"
> -------------------------------------------------------------
>
--
Mark Andrews, Internet Engines Inc. / Internet Software Consortium
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark_Andrews at iengines.com
More information about the bind-users
mailing list