issues transfering zones.
Shawn Somers
shawn at skynetbb.com
Thu Oct 30 18:12:24 UTC 2008
Dawn,
Thanks for the clue-by-four. :-)
A deeper look into hsphere's iptables config found the issue:
-A RH-Firewall-1-INPUT -m state --state NEW -m udp -p udp --dport 53 -j
ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m udp -p tcp --dport 53 -j
ACCEPT <<look REAL close at this line.
silly Me, assuming that whomever it was that wrote their default config
would have done it correctly...
Again, thanks for the clue-by-four.
Shawn Somers
Systems Administrator
Skynet BroadBand
Dawn Connelly wrote:
> Has this ever worked? Typically when I see this error, that means that
> TCP isn't open but UDP is. The notify packet is on UDP53 but the
> actual zone transfer has to happen on TCP53. Can you telnet <masterIP>
> 53 from the slave and telnet <slaveIP> 53 from the master? The quota
> message just means "Dude, I've tried this enough time with a big ol'
> no go so I'm taking a break and will try again later."
>
>
More information about the bind-users
mailing list