allow-transfer from slave server
Ronni Jensen
roj at mvb.dk
Mon Apr 24 09:52:34 UTC 2006
Hi,
I have a master (ns0) and 2 slave servers (ns1 & ns2).
ns0 is not accessible from WAN, and only allows zone tranfers to ns1 and
ns2 on RFC1918 addresses.
ns1 and ns2 are accessible from outside, where a WAN public IP is NAT'ed
to their local IP-address.
On a server (123.123.123.123) at another location, I want to pull zones
from either ns1 or ns2.. I have this config on ns1:
zone "example.dk" IN {
type slave;
file "/var/named/slave/slave.example.dk";
masters { 10.10.10.2; }; // this is the master server (ns0)
allow-transfer { 123.123.123.123; }; // this is the outside
server which want to pull the zone
};
..But when I initiate a zone transfer from 123.123.123.123 which has
this config in named.conf:
zone "example.dk" IN {
type slave;
file "/etc/bind/data/slave.example.dk";
masters { 111.111.111.111; }; // this is ns1's public IP-address
};
..I get this error in my activity log:
24-Apr-2006 11:40:45.659 general: info: zone example.dk/IN: Transfer
started.
24-Apr-2006 11:40:45.695 xfer-in: info: transfer of 'example.dk/IN' from
111.111.111.111#53: connected using 123.123.123.123#32778
24-Apr-2006 11:40:45.761 xfer-in: error: transfer of 'example.dk/IN'
from 111.111.111.111#53: failed while receiving responses: REFUSED
24-Apr-2006 11:40:45.761 xfer-in: info: transfer of 'example.dk/IN' from
111.111.111.111#53: end of transfer
Can you tell me why I get that error? :-/
/Ronni
More information about the bind-users
mailing list