unapproved AXFR?
help at resell.net
help at resell.net
Sun Apr 30 17:07:23 UTC 2000
we're running bind 8.2.2 primary only on solaris 2.5.1 and another
provider is providing our secondary dns. The messages file on the
sun machine is showing entries like these:
Apr 29 04:06:43 dns.resell.net named[4648]: unapproved AXFR from
[206.197.81.10].57519
for "cometome.com" (acl)
Apr 29 04:07:17 dns.resell.net named[4648]: unapproved AXFR from
[206.197.81.10].57533
for "wellbeing.com" (acl)
Apr 29 04:08:01 dns.resell.net named[4648]: unapproved AXFR from
[206.197.81.10].57550
for "cloister.com" (acl)
The secondary name service is 206.197.81.10. Do the above messages
mean that the secondary dns is being blocked from pulling records?
if yes what would cause this? below is a copy of our primary name
service named.conf header. Is there a wrong setting here? thanks in
advance!
// generated by named-bootconf.pl
options {
directory "/var/named";
allow-transfer {206.43.192.76;};
/*
* If there is a firewall between you and nameservers you want
* to talk to, you might need to uncomment the query-source
* directive below. Previous versions of BIND always asked
* questions using port 53, but BIND 8.1 uses an unprivileged
* port by default.
*/
// query-source address * port 53;
listen-on { 207.226.185.2; };
};
// Control access to BIND version number to
// users at resell.net only.
// Ref: BUGTRAQ posting from LaMont Jones
// <lamont at CRANSTON.FC.HP.COM> on 1998-06-12.
zone "bind" chaos {
type master;
file "primary/bind";
allow-query {
trusted;
};
allow-transfer {
none;
};
};
// Note: the following will be supported in a future release.
/*
host { any; } {
topology {
10.0.0.0/8;
};
};
*/
//
// type domain source host/file backup file
zone "." {
type hint;
file "root.cache";
};
More information about the bind-users
mailing list