Zone transfer denied errors, Me or my ISP's problem?

Michael Kjorling michael at kjorling.com
Tue Mar 26 15:37:56 UTC 2002 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

What's your problem? 139.130.4.5 isn't matched by either 203.50.2.74
or 203.50.1.64/26, so the zone transfer is denied - the desired
behavior.

If you _want_ 139.130.4.5 to be able to do zone transfers from your
master, just add it to the allow-transfer{} clause.


Michael Kjörling


On Mar 26 2002 03:05 -0800, Rick wrote:

> Hi,
>
> I have just set up my first primary nameserver using Bind 9.1.3 RH
> 7.2. I have My primary running with no start up errors and I can use
> it to surf the net. I have been allowed to have a secondary at my isp,
> I have the NS ns.my.isp in the appropriate zone files on my primary.
> noah.maicom.com.au is my primary domain and ampba.asn.au is a hosted
> domain that will be used as a Name Vhost in apache.
> I want to have the secondary to do a transfer of my primary servers
> zone files but I get the following message....
>
> Mar 26 20:33:50 noah named[6392]: client 139.130.4.5#1392: zone
> transfer denied
>
> I am new to DNS and would be thankful for any help with this.
> here is a copy of my named.conf..... some lines have been wrapped when
> pasting the text so you can ignore this.
>
>
> options {
>         directory "/var/named";
>         /*
>          * If there is a firewall between you and nameservers you want
>          * to talk to, you might need to uncomment the query-source
>          * directive below.  Previous versions of BIND always asked
>          * questions using port 53, but BIND 8.1 uses an unprivileged
>          * port by default.
>          */
> query-source address * port 53;
> transfer-source * port 53;
> notify-source * port 53;
> auth-nxdomain yes;
> allow-transfer { 139.130.4.5; 203.50.0.24; };
> allow-transfer { 203.50.2.74; 203.50.1.64/26; };
> notify yes;
>
> };

- -- 
Michael Kjörling  --  Programmer/Network administrator  ^..^
Internet: michael at kjorling.com -- FidoNet: 2:204/254.4   \/
PGP: 95f1 074d 336d f8f0 f297 6a5b 2aa3 7bfd 8a70 e33e

``And indeed people sometimes speak of man's "bestial" cruelty, but
this is very unfair and insulting to the beasts: a beast can never be
so cruel as a man, so ingeniously, so artistically cruel.''
(Ivan Karamazov, in Dostoyevsky's 'The Brothers Karamazov')
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: Public key is at http://michael.kjorling.com/contact/pgp.html

iD8DBQE8oJXWKqN7/Ypw4z4RAvCnAKCtkLLMF6NQI9TEGK4Y4tXn2jVcgQCgwVkm
la6Iheo3OhD8jGE+JG+caVQ=
=xEsR
-----END PGP SIGNATURE-----

More information about the bind-users mailing list