nsupdate to clear MX records REFUSED when current mx rec is invalid
Mark Andrews
Mark_Andrews at isc.org
Mon Jul 30 22:30:36 UTC 2007
There is a test with the wrong sence add vs delete. It's supposed
to stop MX records being added without address records and it is
instead stopping them being deleted.
Set "check-integrity no;" in named.conf to work around this.
Mark
Index: update.c
===================================================================
RCS file: /proj/cvs/prod/bind9/bin/named/update.c,v
retrieving revision 1.133
diff -u -r1.133 update.c
--- update.c 18 May 2007 05:50:35 -0000 1.133
+++ update.c 30 Jul 2007 22:28:06 -0000
@@ -2220,7 +2220,7 @@
for (t = ISC_LIST_HEAD(diff->tuples);
t != NULL;
t = ISC_LIST_NEXT(t, link)) {
- if (t->op != DNS_DIFFOP_DEL ||
+ if (t->op != DNS_DIFFOP_ADD ||
t->rdata.type != dns_rdatatype_mx)
continue;
> Hello,
>
> I recently upgraded from Bind 9.2 to 9.4.1-P1 and am now having some
> trouble with nsupdate. Clearing the MX records via nsupdate when the mx
> record host doesn't exist returns REFUSED. Here is an example:
>
> # cat /var/named/example.com
> $ORIGIN .
> $TTL 86400 ; 1 day
> example.com IN SOA ns2.example.com.com. hostmaster.example.com.com. (
> 2007073000 ; serial
> 10800 ; refresh (3 hours)
> 1800 ; retry (30 minutes)
> 604800 ; expire (1 week)
> 1800 ; minimum (30 minutes)
> )
> NS ns1.example.com.
> NS ns2.example.com.
> NS ns3.example.com.
> NS ns4.example.com.
> NS ns5.example.com.
> $TTL 60 ; 1 minute
> A 10.0.0.37
> MX 5 mail.example.com.
> $ORIGIN example.com.
> www A 10.0.0.37
>
>
>
> // I changed the prompt below to avoid reply conflict:
>
> $ nsupdate -y...
>
> ] server 127.0.0.1
> ] update add test.example.com. 1800 A 1.2.3.4
> ] send
>
> // Update add seems to work fine.
>
> ] nsupdate delete example.com MX
> ] send
> update failed: REFUSED
>
> // When trying to delete the unresolvable MX record, bind refuses.
>
> ] quit
> mem.c:866: INSIST((((ctx->pools).head == ((void *)0)) ? isc_boolean_true
> : isc_boolean_false)) failed.
>
> // Probably unrelated, but I get that INSIST failure on exit.
>
>
> In the named.conf options section I specify:
>
> options {
> ...
> check-names response warn;
> check-mx ignore;
> ...
> };
>
>
> Is there something else I need to specify to be able to clear the MX
> records via nsupdate?
>
>
> Thanks for your help,
>
> David
>
> ==
>
> Bind 9.4.1-P1, RHEL4, From source:
> ./configure --prefix=/usr --sysconfdir=/etc --localstatedir=/var
> --mandir=/usr/share/man -with-openssl=/usr/include/openssl
> --with-libtool --disable-ipv6 --enable-threads CFLAGS=-O3
> -funroll-loops -fomit-frame-pointer
>
>
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark_Andrews at isc.org
More information about the bind-users
mailing list