Zone transfers fro secondary
Mark_Andrews at isc.org
Mark_Andrews at isc.org
Wed Nov 19 19:46:56 UTC 2003
> Hi
> Thanks to Dave for helping me sort out the problem.
>
> Ran the following tests which showed the problem was with the master server.
>
> Dig axfr ... failed
> dig soa .. ok
> dig (+tcp/+vc) ... failed tcp session
> dig (+tcp/+vc) against 'open server' ... which worked implying server is ok
>
> Thanks
> Cheers
> sherona
Well you still have problems. You have a listed nameserver
not accepting TCP connections from the world. Ordinary
queries use TCP as well as AXFR. If you want to restrict
AXFR this should be done via access controls in the nameserver
not at the packet layer.
Mark
--
Mark Andrews, Internet Software Consortium
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark.Andrews at isc.org
More information about the bind-users
mailing list