Bind99 and a slave named server

Mark Andrews marka at isc.org
Wed Aug 21 03:46:57 UTC 2013 

Perhaps you should check that the master is running a nameserver
and that it doesn't have firewalls blocking the DNS (both UDP and
TCP).

% dig soa covisp.net @75.148.117.92

; <<>> DiG 9.10.0pre-alpha <<>> soa covisp.net @75.148.117.92
;; global options: +cmd
;; connection timed out; no servers could be reached
% dig soa covisp.net @75.148.117.92 +tcp
;; Connection to 75.148.117.92#53(75.148.117.92) for covisp.net failed: connection refused.
% 

Mark

In message <4EAE48DE-EA0C-4E50-A343-6D3A6B2550E2 at kreme.com>, LuKreme writes:
> On 20 Aug 2013, at 14:38 , Alan Clegg <alan at clegg.com> wrote:
> > To convert master to slave:
> 
> [snip]
> 
> > Bazinga!
> 
> OK. Not Bazinga.
> 
> $ grep covisp named.conf
> zone "covisp.net" { type slave; file "slave/covisp.net"; masters { 75.148.117.92; }; };
> $ rndc status
> version: 9.9.3-P2
> CPUs found: 2
> worker threads: 2
> UDP listeners per interface: 2
> number of zones: 117
> debug level: 0
> xfers running: 0
> xfers deferred: 0
> soa queries in progress: 5
> query logging is OFF
> recursive clients: 0/0/1000
> tcp clients: 0/100
> server is up and running
> $ grep listen named.conf
>         listen-on { 75.148.117.93; 75.148.117.91; 127.0.0.1; };
> $ dig @localhost covisp.net | grep -A2 ";; ANS" | tail -2
> $ dig @75.148.117.91 covisp.net | grep -A2 ";; ANS" | tail -2
> $ dig @ns1.covisp.net covisp.net |grep -A2 ";; ANS" |tail -2
> covisp.net.             86400   IN      A       75.148.117.93
> covisp.net.             86400   IN      A       75.148.117.90
> 
> in /var/log/messages:
> Aug 20 20:40:23 mail named[81006]: the working directory is not writable<1>
> Aug 20 20:40:23 mail named[81006]: all zones loaded
> Aug 20 20:40:23 mail named[81006]: running
> 
> Oh, and slave/ is empty.

Which sounds like the master is blocking zone transfers.
 
> $ grep covisp named.conf-master 
> zone "covisp.net" { type master; file "master/covisp.net";  };
> $ diff /var/named/etc/namedb/master/covisp.net /var/named/etc/namedb/slave/covisp.net
> $ cp /var/named/etc/namedb/named.conf-master /var/named/etc/namedb/named.conf
> $ rndc reload
> $ dig @75.148.117.91 covisp.net | grep -A2 ";; ANS" | tail -2
> covisp.net.             86400   IN      A       75.148.117.93
> covisp.net.             86400   IN      A       75.148.117.90
> 
> <1> (the working directory is not writeable comes up every time because /var/named/etc/namedb is owned by root and chang
> ing it causes bind to first change it back, and then log the error anyway).

Named doesn't change the ownership.  The script starting named provided
by the OS developer does that.

> 
> 
> -- 
> LOOSE TEETH DON'T NEED MY HELP Bart chalkboard Ep. AABF16
> 
> _______________________________________________
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list
> 
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: marka at isc.org

More information about the bind-users mailing list