IXFR problem

Jaysheel Mehd jaysheelmehd at yahoo.com
Thu Dec 13 17:00:57 UTC 2001 

Sorry I forgot to mention that I have allow-transfer
statements for the slave server for each particular
zone.
--- Jobe Bittman <jobe at tns.net> wrote:
> Sounds like you need to allow zone transfers to the
> slave
> 
> 
> acl "xfer" {
>          xxx.xxx.xxx.xxx;
>          xxx.xxx.xxx.xxx;
> };
> 
> acl "bogon" {
>          0.0.0.0/8;
>          1.0.0.0/8;
>          2.0.0.0/8;
>          169.254.0.0/16;
>          192.0.2.0/24;
>          10.0.0.0/8;
>          172.16.0.0/12;
>          192.168.0.0/16;
>          224.0.0.0/3;
>          240.0.0.0/4;
> };
> 
> options {
>          directory "/etc";
>          pid-file "/var/run/named.pid";
>          version "[SECURED]";
>          listen-on { xxx.xxx.xxx.xxx; 127.0.0.1; };
>          query-source address xxx.xxx.xxx.xxx port
> 53;
>          allow-transfer { xfer; };
>          allow-query { any; };
>          blackhole { bogon; };
> };
> 
> Only allow transfers to your slave servers.
> 
> You could also use allow-transfer statements within
> each master zone entry 
> in named.conf for more fine-grained control of which
> particular zones can 
> be transferred by which servers.
> 
> Jobe
> 
> At 08:24 AM 12/13/2001 -0800, you wrote:
> 
> >Hi all,
> >
> >I am running BIND 8.2.5 on primary and the
> secondary
> >server. All the zones are dynamically updated.
> >I am trying to implement the IXFR on the master and
> >the slave server. Each and every time I do the IXFR
> I
> >get the following errors:
> >
> >db: warning: Logical error in master/10.32.11.ixfr:
> >unlinking
> >db: warning: master/10.32.11.ixfr: No such file or
> >directory
> >
> >The master server automatically deletes the .ixfr
> >file. It should not be the case as I believe that
> it
> >will be maintaining the ixfr base.
> >
> >I am keeping the excerpt of master and slave
> >named.conf
> >
> >Master server
> >---------------
> >options
> >{
> >         check-names master warn;
> >         check-names slave warn;
> >         directory "/etc/dns";
> >         notify yes;
> >         query-source address * port 53;
> >         version "None of your business";
> >         maintain-ixfr-base yes;
> >};
> >
> >Slave server
> >----------------
> >
> >server master server's IP address {
> >         support-ixfr yes;
> >};
> >
>
>____________________________________________________
> >
> >Thanks in advance
> >Jaysheel
> >
> >__________________________________________________
> >Do You Yahoo!?
> >Check out Yahoo! Shopping and Yahoo! Auctions for
> all of
> >your unique holiday gifts! Buy at
> http://shopping.yahoo.com
> >or bid at http://auctions.yahoo.com
> 
> 


__________________________________________________
Do You Yahoo!?
Check out Yahoo! Shopping and Yahoo! Auctions for all of
your unique holiday gifts! Buy at http://shopping.yahoo.com
or bid at http://auctions.yahoo.com

More information about the bind-users mailing list