configuring secondary zone on windows 2000 server
Barry Margolin
barmar at alum.mit.edu
Wed Jun 30 16:42:44 UTC 2004
In article <cbunj2$1cb5$1 at sf1.isc.org>,
Mokwena Motseto <MotsetM at sapo.co.za> wrote:
> I thought that might be the cause, but i have setup a secondary zone on the
> windows 200 server and when i try to transfer from master, it cannot
> transfer
Here are some possibilities:
1. You have an "xfrnets" directive in your named.boot, and the Windows
server's address isn't in it, so zone transfers are prohibited.
2. There's an error in the zone file, which prevents the BIND server
from being authoritative for the zone. Does "dig sapo.co.za soa
@<primary>" return an authoritative answer (i.e. is "aa" in the "flags:"
section of the output)? Check your system log for errors when BIND
starts up.
3. There's a firewall blocking TCP connections from the Windows server
to port 53 on the AIX server.
> -----Original Message-----
> From: Barry Margolin [mailto:barmar at alum.mit.edu]
> Sent: 29 June 2004 15:01
> To: comp-protocols-dns-bind at isc.org
> Subject: Re: configuring secondary zone on windows 2000 server
>
>
> In article <cbrmi9$g60$1 at sf1.isc.org>,
> Mokwena Motseto <MotsetM at sapo.co.za> wrote:
>
> > Hi
> > i am running BIND version 4.9 on AIX and i am trying to do configure it to
>
> Why are you still running BIND 4? That's almost prehistoric these days.
>
> > so that the servers that are not in the same domain host secondary
> records,
> > this is what i get when i do an nslookup, but i have to create a hosts
> file
> > for cfgrp.co.za domain first which confuses everything, is there a simpler
> > way of doing thies
>
> You shouldn't need to have your own zone file for cfgrp.co.za. Servers
> will look up those hosts the normal way if they need to.
>
> If you're concerned because the addresses of these servers aren't shown
> in the output below, don't be. The reason for this is that you have so
> many NS records for the domain that including all the addresses would
> make the response too big for a 500-byte UDP packet. So the Additional
> Records section is cut off when it reaches that limit.
>
> >
> > C:\>nslookup -q=ns sapo.co.za
> > Server: nthodns1.sapo.co.za
> > Address: 165.8.11.31
> >
> > sapo.co.za nameserver = ntjhbcfgdc1.xps.cfgrp.co.za
> > sapo.co.za nameserver = ntjhbcfgdc2.xps.cfgrp.co.za
> > sapo.co.za nameserver = ntwcdns1.sapo.co.za
> > sapo.co.za nameserver = nthodns1.sapo.co.za
> > sapo.co.za nameserver = nthodns2.sapo.co.za
> > sapo.co.za nameserver = ntnrdns3.sapo.co.za
> > sapo.co.za nameserver = ntwrdns4.sapo.co.za
> > sapo.co.za nameserver = ntfsdns5.sapo.co.za
> > sapo.co.za nameserver = ntkzdns6.sapo.co.za
> > sapo.co.za nameserver = ntecdns7.sapo.co.za
> > sapo.co.za nameserver = ntburgerps.sapo.co.za
> > sapo.co.za nameserver = techora4.sapo.co.za
> > sapo.co.za nameserver = open.sapo.co.za
> > sapo.co.za nameserver = sdsra.sapo.co.za
> > ntwcdns1.sapo.co.za internet address = 165.10.3.31
> > nthodns1.sapo.co.za internet address = 165.8.11.31
> > nthodns2.sapo.co.za internet address = 10.5.50.103
> > ntnrdns3.sapo.co.za internet address = 165.11.88.140
> > ntwrdns4.sapo.co.za internet address = 10.96.2.24
> > ntfsdns5.sapo.co.za internet address = 165.9.129.47
> > ntkzdns6.sapo.co.za internet address = 165.9.1.26
> > ntecdns7.sapo.co.za internet address = 165.10.177.37
> > ntburgerps.sapo.co.za internet address = 165.8.6.180
> >
> >
> > Mokwena Motseto
> >
> > Isiah 29:12 "The book shall be given unto him, he who is not learnered
> > saying read this and pray thee"
> > "This e-mail is sent in terms of the following policy/disclaimer. Click on
> > this link http://www.sapo.co.za/mail_disclaimer.htm to read full
> > disclaimer."
--
Barry Margolin, barmar at alum.mit.edu
Arlington, MA
*** PLEASE post questions in newsgroups, not directly to me ***
More information about the bind-users
mailing list