dns refresh problem
Res
res at ausics.net
Tue Mar 18 00:53:12 UTC 2008
maybe because your ISP has not delegated it to your NS's...
The authortive is dns1.tktelekom.pl
more inline...
On Mon, 17 Mar 2008, Jabba wrote:
>
> This is my zone config file /etc/bind/db.111.160.82.0
>
> ;$ORIGIN xxxx.pl.
> $TTL 2560 ; 42 minutes 40 seconds
> ;111.160.82.in-addr.arpa IN SOA ns.xxxx.pl.
> hostmaster.xxxx.pl. (
> @ IN SOA ns.xxxx.pl. hostmaster.xxxx.pl. (
> 1178613511 ; serial
> 16386 ; refresh (4 hours 33
> minutes 4 seconds)
> 2049 ; retry (34 minutes 8
> seconds)
> 1048577 ; expire (1 week 5 days 3
> hours 16 minutes 16 seconds)
> 2560 ; minimum (42 minutes 40
> seconds)
> )
>
> IN NS ns.xxxx.pl.
> IN NS ns5.xxxx.pl.
What the hell is with those TTLs ?
Use something more sane, no need for the ;$ORIGIN xxxx.pl stuff either.
$TTL 1D
@ IN SOA ns.xxxx.pl. hostmaster.xxxx.pl. (
2008031801
3H
30M
4W
1D )
NS ns.xxx.pl.
NS ns2.xxxx.pl.
111.111.160.82.in-addr.arpa. IN PTR xxxx.pl.
...
> and a zone in named.conf
>
> zone "111.160.82.in-addr.arpa" {
> type master;
> allow-query { any; };
> file "/etc/bind/db.111.160.82.0";
> allow-transfer{
> 222.122.253.130;
> };
> };
Looks good
>
> in named.conf.opions:
>
> allow-query{ any; };
^^^^^^^^^^ if you mean in global opts, bad, very very bad, edit to use an
ACL so "any" applies to your own IP range and nobody elses.
acl "trust" {
localhost;
localnets;
82.160.111.0/24;
};
and in "options" use allow-query { trust; };
The allow-query "any" in the zone statement is all that you need for
others to query your DNS for that particular zone.
--
Cheers
Res
mysql> update auth set Framed-IP-Address='127.0.0.127' where user= 'troll';
More information about the bind-users
mailing list