DNS Slave server CANNOT get zone files from Master Server
Sebastian Castro Avila
secastro at nic.cl
Thu Oct 7 21:33:25 UTC 2004
On Thu, 7 Oct 2004 16:52:00 -0400, Patrick Chiang <saikang at gmail.com>
wrote:
> Hi everybody,
>
Hi:
> -----------------------------------------------
> Slave (ip address: 11.22.33.44)
> -----------------------------------------------
> /var/named/chroot/etc/named.conf (Copy from master's)
> -----------------------------------------------
> <snip>
> zone "foo.org" IN{
> type slave;
> file "slave/foo.org.domain.bak";
> masters { 55.66.77.88; };
> zone-statistics yes;
> };
>
> -------------------------------------------------
> O U T P U T (on slave DNS server)
> -------------------------------------------------
> # rndc reload
> named[25483]: zone foo.org/IN: refresh: non-authoritative answer from
> master 55.66.77.88#53
>
> ps.
> /var/named/chroot/var/named/slaves is "drwxrwx---", owned by named:named
Here's the problem.
You master server HAS TO BE authoritative for the zone, to be able to
"give" the zone to the secondary server. You should check the zone syntax
using "named-checkzone" or view you primary's logs to check where is the
error.
Correct the zone, reload it and check using DIG.
dig soa foo.org @55.66.77.88, you should look for a line like
;; flags: qr aa rd;
and be sure that answer with "aa" (Authoritative Answer).
As a third step, go to any terminal in your slave and try
dig axfr foo.org @55.66.77.88
That will show you the whole zone.
Finally, try "rndc refresh foo.org" in your secondary, to synchronize
slave with master.
I hope this helps.
Best Regards
--
Sebastian E. Castro Avila sebastian at nic.cl
Administrador de DNS, NIC Chile
Fono: (2) 9407705 Fax : (2) 9407701
More information about the bind-users
mailing list