nsupdate to clear MX records REFUSED when current mx rec is invalid

Mark Andrews Mark_Andrews at isc.org
Mon Jul 30 22:30:36 UTC 2007 

There is a test with the wrong sence add vs delete.  It's supposed
to stop MX records being added without address records and it is
instead stopping them being deleted.

Set "check-integrity no;" in named.conf to work around this.

Mark

Index: update.c
===================================================================
RCS file: /proj/cvs/prod/bind9/bin/named/update.c,v
retrieving revision 1.133
diff -u -r1.133 update.c
--- update.c	18 May 2007 05:50:35 -0000	1.133
+++ update.c	30 Jul 2007 22:28:06 -0000
@@ -2220,7 +2220,7 @@
 	for (t = ISC_LIST_HEAD(diff->tuples);
 	     t != NULL;
 	     t = ISC_LIST_NEXT(t, link)) {
-		if (t->op != DNS_DIFFOP_DEL ||
+		if (t->op != DNS_DIFFOP_ADD ||
 		    t->rdata.type != dns_rdatatype_mx)
 			continue;
 
> Hello,
> 
> I recently upgraded from Bind 9.2 to 9.4.1-P1 and am now having some
> trouble with nsupdate. Clearing the MX records via nsupdate when the mx
> record host doesn't exist returns REFUSED. Here is an example:
> 
> # cat /var/named/example.com
> $ORIGIN .
> $TTL 86400      ; 1 day
> example.com   IN SOA  ns2.example.com.com. hostmaster.example.com.com. (
>                                 2007073000 ; serial
>                                 10800      ; refresh (3 hours)
>                                 1800       ; retry (30 minutes)
>                                 604800     ; expire (1 week)
>                                 1800       ; minimum (30 minutes)
>                                 )
>                         NS      ns1.example.com.
>                         NS      ns2.example.com.
>                         NS      ns3.example.com.
>                         NS      ns4.example.com.
>                         NS      ns5.example.com.
> $TTL 60 ; 1 minute
>                         A       10.0.0.37
>                         MX      5 mail.example.com.
> $ORIGIN example.com.
> www                     A       10.0.0.37
> 
> 
> 
> // I changed the prompt below to avoid reply conflict:
> 
> $ nsupdate -y...
> 
> ] server 127.0.0.1
> ] update add test.example.com. 1800 A 1.2.3.4
> ] send
> 
> // Update add seems to work fine.
> 
> ] nsupdate delete example.com MX
> ] send
> update failed: REFUSED
> 
> // When trying to delete the unresolvable MX record, bind refuses.
> 
> ] quit
> mem.c:866: INSIST((((ctx->pools).head == ((void *)0)) ? isc_boolean_true
> : isc_boolean_false)) failed.
> 
> // Probably unrelated, but I get that INSIST failure on exit.
> 
> 
> In the named.conf options section I specify:
> 
>   options {
>     ...
>     check-names response warn;
>     check-mx  ignore;
>     ...
>   };
> 
> 
> Is there something else I need to specify to be able to clear the MX
> records via nsupdate?
> 
> 
> Thanks for your help,
> 
> David
> 
> ==
> 
> Bind 9.4.1-P1, RHEL4, From source:
>  ./configure --prefix=/usr --sysconfdir=/etc --localstatedir=/var
>    --mandir=/usr/share/man -with-openssl=/usr/include/openssl
>    --with-libtool --disable-ipv6 --enable-threads CFLAGS=-O3
>    -funroll-loops -fomit-frame-pointer
> 
> 
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: Mark_Andrews at isc.org

More information about the bind-users mailing list