Zone Transfer not happening

Mark_Andrews at iengines.com Mark_Andrews at iengines.com
Tue Oct 26 05:07:21 UTC 1999 

> This message is in MIME format. Since your mail reader does not understand
> this format, some or all of this message may not be legible.
> 
> ------_=_NextPart_001_01BF1F66.75B41044
> Content-Type: text/plain; charset="iso-8859-1"
> Content-Transfer-Encoding: quoted-printable
> 
> Suprisingly, there is no errors in my syslog file or my messages file in
> regards to named
> 
> However, after some further investigation I discovered that I can't get a
> listing from the primary server that I'm trying to load the zone from.
> 
> Meaning; I do a nslookup and point to my primary server, then set type to
> "any" then type in the domain name "sub.domain.com", but it just sits there
> and does not give any response.
> 
> Is it possible that it could be denying me access using the "allow-transfer"
> option or is it an misconfigured name server?? Something tells me I need to
> talk to the admin of my primary server.

	If you are getting no answer there may not be a nameserver running
	at all.  Allow-transfer does not effect ordinary queries,
	allow-query does this.  Note allow-query needs to be a superset
	of allow-transfer.

	Try:
		dig +vc +norec zone @server

	This will attempt to make a TCP connection to the server (+vc)
	in non recursive mode (+norec).  Named answers more queries
	via TCP than via UDP (it servfails queries rather than just
	waiting for the UDP retry when it can't proceed and has queried
	for missing glue).  You will also get back errors from the TCP
	layer if a connection could not be made.

	Mark
> 
> 
> -----Original Message-----
> From: Mark_Andrews at iengines.com [mailto:Mark_Andrews at iengines.com]
> Sent: Monday, October 25, 1999 11:20 PM
> To: Douglas, Earl
> Cc: bind-users at isc.org
> Subject: Re: Zone Transfer not happening=20
> 
> 
> 
> 	Named (and named-xfer) log error conditions.  Check your syslog.
> 
> 	Mark
> >=20
> > I try to perform a zone transfer from my primary server(8.1.2) to my
> > secondary server(8.1.2); both running on Solaris 2.6
> > However this is what happens;
> > The named-xfer process starts up as shown below and just stays there for
> > while and creates, what seems to be a temporary file( as shown by the "ls
> > -l" below). Both the "named-xfer" and the temporary zone file remain for
> > about 2 minutes, and then both they both disappear. In other words the
> > "named-xfer" process is terminated and the temporary zone file is removed,
> > leaving me with an unsuccessful zone transfer.
> >=20
> > BTW, I am not the admin for the primary server..
> >=20
> > Does the primary need to have a "A" record and/or a "NS" record for a zone
> > transfer to be successful.
> >=20
> > Any suggestions or direction is obviously welcomed..
> >=20
> > TIA
> >=20
> > # ps -ef
> > root 29235 29233  0 22:23:44 ?        0:00 /usr/sbin/named-xfer -z
> > sub.domain.com -f sub.domain.com -s 0 -C 1 -P 53 10.20.30.40
> >=20
> >=20
> > # ls -l
> > -rw-r--r--   1 root     other          0 Oct 25 22:29
> sub.domain.com.0e2tsZ
> >=20
> > Excerpt from named.conf=20
> > ++++++++++++++++++++++++++++++
> > options {
> >         directory "/var/named/pri";
> >         check-names master warn;                /* default. */
> >         statistics-interval 5;
> >         host-statistics yes;
> >         forwarders { 1.1.1.1; 1.1.1.2; };
> >         forward only;
> >         datasize 20M;
> > };
> >=20
> > zone "sub.domain.com" IN {
> >         type slave;
> >         file "sub.domain.com";
> >         masters { 10.196.2.30; };
> > };
> >=20
> >=20
> >
> ****************************************************************************
> *
> > *
> > The information in this email is confidential and may be legally
> privileged.
> > It is intended solely for the addressee. Access to this email by anyone
> else
> > is unauthorized.
> > =20
> > If you are not the intended recipient, any disclosure, copying,
> distribution
> > or any action taken or omitted to be taken in reliance on it, is
> prohibited
> > and may be unlawful. When addressed to our clients any opinions or advice
> > contained in this email are subject to the terms and conditions expressed
> in
> > the governing KPMG client engagement contract.
> >
> ****************************************************************************
> *
> > *
> > Ce message =E9lectronique s'adresse exclusivement =E0 la personne ou =E0
> l'entit=E9
> > dont le nom figure =E0 la rubrique destinataire; il peut contenir des
> > renseignements confidentiels ou privil=E9gi=E9s sur le plan juridique. Nu=
> lle
> > autre personne ne doit y avoir acc=E8s.
> > =20
> > Si vous n'=EAtes pas le destinataire convenu, nous vous avisons par la
> pr=E9sente
> > que toute diffusion, distribution ou reproduction de ce document est
> > formellement interdite et pourrait =EAtre illicite. Il en va de m=EAme po=
> ur
> toute
> > mesure que vous prendriez ou omettriez de prendre =E0 l'=E9gard de la
> pr=E9sente.
> > Si ce message =E9lectronique est destin=E9 =E0 l'un de nos clients, sache=
> z que
> toute
> > opinion ou tout avis qu'il pourrait contenir est assujetti aux conditions
> du
> > contrat r=E9gissant la mission de KPMG aupr=E8s du client.
> >
> ****************************************************************************
> *
> > *
> >=20
> --
> Mark Andrews, Internet Engines Inc. / Internet Software Consortium
> 1 Seymour St., Dundas Valley, NSW 2117, Australia
> PHONE: +61 2 9871 4742                 INTERNET: Mark_Andrews at iengines.com
> 
> 
> ***************************************************************************=
> ***
> The information in this email is confidential and may be legally privileged.
> It is intended solely for the addressee. Access to this email by anyone else
> is unauthorized.
> =20
> If you are not the intended recipient, any disclosure, copying, distribution
> or any action taken or omitted to be taken in reliance on it, is prohibited
> and may be unlawful. When addressed to our clients any opinions or advice
> contained in this email are subject to the terms and conditions expressed in
> the governing KPMG client engagement contract.
> ***************************************************************************=
> ***
> Ce message =E9lectronique s'adresse exclusivement =E0 la personne ou =E0 l'=
> entit=E9
> dont le nom figure =E0 la rubrique destinataire; il peut contenir des
> renseignements confidentiels ou privil=E9gi=E9s sur le plan juridique. Nulle
> autre personne ne doit y avoir acc=E8s.
> =20
> Si vous n'=EAtes pas le destinataire convenu, nous vous avisons par la pr=
> =E9sente
> que toute diffusion, distribution ou reproduction de ce document est
> formellement interdite et pourrait =EAtre illicite. Il en va de m=EAme pour=
>  toute
> mesure que vous prendriez ou omettriez de prendre =E0 l'=E9gard de la pr=E9=
> sente.
> Si ce message =E9lectronique est destin=E9 =E0 l'un de nos clients, sachez =
> que toute
> opinion ou tout avis qu'il pourrait contenir est assujetti aux conditions du
> contrat r=E9gissant la mission de KPMG aupr=E8s du client.
> ***************************************************************************=
> ***
> 
--
Mark Andrews, Internet Engines Inc. / Internet Software Consortium
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: Mark_Andrews at iengines.com

More information about the bind-users mailing list