BIND 9.2.1 refusing NOTIFY
Kevin Darcy
kcd at daimlerchrysler.com
Fri Nov 8 22:41:26 UTC 2002
Marco d'Itri wrote:
> 16:54:12.515168 62.177.1.105.53041 > 213.92.8.2.53: [udp sum ok] 3097 notify [b2&3=0x2400] SOA? linux.it. [|domain] (DF) (ttl 54, id 0, len 54)
> 16:54:12.515872 213.92.8.2.53 > 62.177.1.105.53041: [udp sum ok] 3097 notify Refused- q: SOA? linux.it. 0/0/0 (26) (DF) (ttl 64, id 0, len 54)
>
> options {
> ....
> allow-query { friends; };
> allow-recursion { friends; };
> allow-transfer { none; };
>
> match-mapped-addresses yes;
> listen-on-v6 { any; };
> listen-on { none; };
> }
>
> zone "linux.it" {
> type slave; file "linux.it";
> masters { 62.177.1.105; };
> allow-query { any; };
> allow-transfer { ... };
> };
>
> The config file looks right, what else can I check?
>
> I'm running BIND 9.2.1 on both hosts.
>
> Nothing appears in the log file, and if I force reloading the zone
> everything works ok:
>
> Nov 8 16:59:28 attila named[9315]: zone linux.it/IN: transfered serial 2002110800
> Nov 8 16:59:28 attila named[9315]: transfer of 'linux.it/IN' from 62.177.1.105#53: end of transfer
> Nov 8 16:59:28 attila named[9315]: zone linux.it/IN: sending notifies (serial 2002110800)
Do you by any chance have an "allow-notify" in the part of the config file that you didn't show?
- Kevin
More information about the bind-users
mailing list