bind 9.9.0rc3 inline signing server not updating unsigned zone

Spain, Dr. Jeffry A. spainj at countryday.net
Tue Feb 21 22:56:14 UTC 2012 

> Ok.  The retransfer code needs to look at the unsigned zone rather than the signed one which should fix the not found issue.  The following should fix the issue.  It compiles but otherwise has not been tested.

Thanks, I will try it and get back to you with the result.

> As to soa refresh queries they are not immediate for slave zones for which we have a backup copy of the zone.  Think about a slave service with 100000 zones and the resulting startup traffic if they all made refresh queries at once.

That, of course, makes sense. My thinking is biased by the fact that I am working with only a few small zones. It looks like it sent the SOA refresh query and attempted to transfer the zone about 36 minutes after startup. The transfer failed, and it has been retrying and failing in the same manner about every half hour. I will capture this traffic to see what the problem might be.

Feb 21 10:27:27 nsb0s named[30314]: starting BIND 9.9.0rc3 -u bind
...
Feb 21 11:03:19 nsb0s named[30314]: zone jaspain.biz/IN (unsigned): Transfer started.
Feb 21 11:03:19 nsb0s named[30314]: transfer of 'jaspain.biz/IN (unsigned)' from 2001:4870:20ca:158:14ff:7695:9632:e9ec#53: connected using 2001:4870:20ca:158:383e:4365:e3fe:ef7e#34734
Feb 21 11:03:19 nsb0s named[30314]: transfer of 'jaspain.biz/IN (unsigned)' from 2001:4870:20ca:158:14ff:7695:9632:e9ec#53: resetting
Feb 21 11:03:19 nsb0s named[30314]: transfer of 'jaspain.biz/IN (unsigned)' from 2001:4870:20ca:158:14ff:7695:9632:e9ec#53: connected using 2001:4870:20ca:158:383e:4365:e3fe:ef7e#45878
Feb 21 11:03:19 nsb0s named[30314]: transfer of 'jaspain.biz/IN (unsigned)' from 2001:4870:20ca:158:14ff:7695:9632:e9ec#53: failed while receiving responses: end of file
Feb 21 11:03:19 nsb0s named[30314]: transfer of 'jaspain.biz/IN (unsigned)' from 2001:4870:20ca:158:14ff:7695:9632:e9ec#53: Transfer completed: 0 messages, 0 records, 0 bytes, 0.001 secs (0 bytes/sec)

Thanks. Jeff.

Jeffry A. Spain
Network Administrator
Cincinnati Country Day School

More information about the bind-users mailing list