allow-update issue
Kevin Darcy
kcd at daimlerchrysler.com
Fri Aug 13 22:58:28 UTC 2004
Linda Hu wrote:
>Hi,
>I got the problem to reload the zone file if I set allow-update and manaully config the zone file.
>
>1.I added the following config in /etc/named.conf
>zone "4567.com" {
> type master;
> file "4567.com.db";
> allow-update {
> 127.0.0.1;
> 192.168.1.1;
> };
>};
>
>2.I created a zone file
>$TTL 3600 ; 1 hour
>4567.com. IN SOA test.ttn.net. lindahu.noc.ttn.net. (
> 2004081301 ; serial
> 10800 ; refresh (3 hours)
> 3600 ; retry (1 hour)
> 604800 ; expire (1 week)
> 3600 ; minimum (1 hour)
> )
> NS test.ttn.net.
> NS test1.ttn.net.
>
>3. rndc reload
>
>4. dig 4567.com SOA => I can get the correct SOA
>
>5. I modify the zone file
>$TTL 3600 ; 1 hour
>4567.com. IN SOA test.ttn.net. lindahu.noc.ttn.net. (
> 2004081302 ; serial
> 10800 ; refresh (3 hours)
> 3600 ; retry (1 hour)
> 604800 ; expire (1 week)
> 3600 ; minimum (1 hour)
> )
> NS test.ttn.net.
> NS test1.ttn.net.
>www IN A 192.168.1.2
>
>6. rndc reload
>
>7. dig 4567.com SOA => the serial is still the old one - 2004081301
> dig www.4567.com => I can't get the A record for www
>
>However, I found if I removed allow-update from /etc/named.conf, everything will be fine.
>zone "4567.com" {
> type master;
> file "4567.com.db";
>};
>
>This zone file doesn't have .jnl and never updates by dynamic dns.
>
>If allow-update is setted, can't I update zone manually?
>
Correct. When allow-update is set, named expects to control the zone
file exclusively, and any manual edits are likely to get lost.
The "nsupdate" command is your friend.
- Kevin
More information about the bind-users
mailing list