delegation troubles!

Alexander Varga vargalexb at yahoo.com
Tue Dec 13 13:22:28 UTC 2005 

For all the commands I get the same result (of course with appertaining DNS servers) Looks like
the remote is good configured.
Could be some security or another restriction? But I am able to request the remote
(omnius.psc.xxx.com) DNS for resolving

nottice: When I try to serve as slave server for any subzone defined on the remote DNS server
(omnius), I am able to download the zone.

thanx in advance
Alex

the dig output :
####################################################################################
# dig +norec lpm3autoserver.xxx.com soa @omnius.psc.xxx.com

; <<>> DiG 8.3 <<>> +norec lpm3autoserver.xxx.com soa @omnius.psc.xxx.com
; (1 server found)
;; res options: init defnam dnsrch
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 5415
;; flags: qr aa ra; QUERY: 1, ANSWER: 1, AUTHORITY: 3, ADDITIONAL: 3
;; QUERY SECTION:
;;      lpm3autoserver.xxx.com, type = SOA, class = IN

;; ANSWER SECTION:
lpm3autoserver.xxx.com.  1D IN SOA  omnius.psc.xxx.com. telcom.xxx.com. (
                                        62              ; serial
                                        1H              ; refresh
                                        1H              ; retry
                                        1W              ; expiry
                                        10M )           ; minimum


;; AUTHORITY SECTION:
lpm3autoserver.xxx.com.  1D IN NS  qip-dns2.psc.xxx.com.
lpm3autoserver.xxx.com.  1D IN NS  omnius.psc.xxx.com.
lpm3autoserver.xxx.com.  1D IN NS  qip-dns1.psc.xxx.com.

;; ADDITIONAL SECTION:
omnius.psc.xxx.com.     1D IN A         170.191.22.20
qip-dns1.psc.xxx.com.   1D IN A         170.191.20.14
qip-dns2.psc.xxx.com.   1D IN A         170.191.250.14

;; Total query time: 841 msec
;; FROM: test2 to SERVER: omnius.psc.xxx.com  170.191.22.20
;; WHEN: Tue Dec 13 14:00:03 2005
;; MSG SIZE  sent: 40  rcvd: 202
###############################################################################


Mark Andrews wrote:

>>At first, thanx for the quick answer
>>... and now some more real data (i just substituted the company part of domai
>>n with "xxx")
>>
>>My dns is 10.110.15.206 nad I download the xxx.com zone  from the omnius.psc.
>>xxx.com, which is the
>>primary DNS for the seccond Intranet
>>To not have so an amount of zones defined and beeing downloaded by my DNS, th
>>e rest of domains are
>>to be resolved by my DNS throuh delegation, but it seems, delegation isn't wo
>>rking for now.
>>Here is a part from the xxx.com domain, the named.conf part of the xxx.com do
>>main, and afterwards
>>a dig of the two subdomains:
>>
>>
>>#############################################
>>$ORIGIN xxx.com.
>>lpm3autoserver          NS      omnius.psc
>>                        NS      qip-dns1.psc
>>                        NS      qip-dns2.psc
>>ltc                     NS      omnius.psc
>>                        NS      qip-dns1.psc
>>                        NS      qip-dns2.psc
>>#############################################
>>zone "xxx.com" {
>>        type slave;
>>        file "xxx.com";
>>        masters {170.191.22.20;};
>>};
>>
>>#############################################
>>
>>bash-2.05$ dig @10.110.15.206 lpm3autoserver.xxx.com
>>
>>; <<>> DiG 8.3 <<>> @10.110.15.206 lpm3autoserver.xxx.com
>>; (1 server found)
>>;; res options: init recurs defnam dnsrch
>>;; got answer:
>>;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4
>>;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
>>;; QUERY SECTION:
>>;;      lpm3autoserver.xxx.com, type = A, class = IN
>>
>>;; Total query time: 252 msec
>>;; FROM: test2 to SERVER: 10.110.15.206  10.110.15.206
>>;; WHEN: Tue Dec 13 08:17:05 2005
>>;; MSG SIZE  sent: 40  rcvd: 40
>>
>>
>>bash-2.05$ dig @10.110.15.206 ltc.xxx.com
>>
>>; <<>> DiG 8.3 <<>> @10.110.15.206 ltc.xxx.com
>>; (1 server found)
>>;; res options: init recurs defnam dnsrch
>>;; got answer:
>>;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4
>>;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
>>;; QUERY SECTION:
>>;;      ltc.xxx.com, type = A, class = IN
>>
>>;; Total query time: 167 msec
>>;; FROM: test2 to SERVER: 10.110.15.206  10.110.15.206
>>;; WHEN: Tue Dec 13 08:19:03 2005
>>;; MSG SIZE  sent: 29  rcvd: 29
> 
> 
> 
> 	Make sure the delegated zones are configured *before* you
> 	delegate to them from the parent zone.
> 
> 	dig +norec lpm3autoserver.xxx.com soa @omnius.psc.xxx.com
> 	dig +norec lpm3autoserver.xxx.com soa @qip-dns1.psc.xxx.com
> 	dig +norec lpm3autoserver.xxx.com soa @qip-dns2.psc.xxx.com
> 
> 	dig +norec ltc.xxx.com soa @omnius.psc.xxx.com
> 	dig +norec ltc.xxx.com soa @qip-dns1.psc.xxx.com
> 	dig +norec ltc.xxx.com soa @qip-dns2.psc.xxx.com
> 
> 	Mark
> --
> Mark Andrews, ISC
> 1 Seymour St., Dundas Valley, NSW 2117, Australia
> PHONE: +61 2 9871 4742                 INTERNET: Mark_Andrews at isc.org
> 
> 



__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com

More information about the bind-users mailing list