multiple zones in single file, nsupdate and "ignoring out-of-zone data" as result
Mark Andrews
marka at isc.org
Thu Oct 16 11:35:17 UTC 2014
You maintain seperate files and use nsupdate to update then
individually.
In message <CALkno6ew=BAVG99QeaHbyd2Mqp5errPZHUtueZNhqW-vD76CDQ at mail.gmail.com>, Dmitry Sukhodoyev wri
tes:
> --===============3034082043946855899==
> Content-Type: multipart/alternative; boundary=089e013a0bc62a812c0505888e93
>
> --089e013a0bc62a812c0505888e93
> Content-Type: text/plain; charset=UTF-8
>
> I have magic zone file in my bind 9.7 for three identical zones:
>
> $TTL 86400
> @ IN SOA localhost. root.localhost. (
> 20141010222676
> 3H ; refresh
> 15M ; retry
> 1W ; expiry
> 1D ) ; minimum
> IN NS ns1
> IN NS ns2
> ns1 IN A 1.2.3.4
> ns2 IN A 1.2.3.4
> www IN A 10.20.30.40
>
> and this zones in named.conf with single file:
>
> zone "zone1.tld" IN {
> type master;
> file "zone.tld";
> };
> zone "zone2.tld" IN {
> type master;
> file "zone.tld";
> };
> zone "zone3.tld" IN {
> type master;
> file "zone.tld";
> };
>
> I enable global nsupdate access in named.conf:
>
> allow-update {
> key "key_name";
> };
>
> after updating via nsupdate any of this zones (e.g. zone1.tld) and stopping
> bind I got zone file like this:
>
> $TTL 86400
> zone1.tld. IN SOA localhost. root.localhost. (
> 20141010222676
> 3H ; refresh
> 15M ; retry
> 1W ; expiry
> 1D ) ; minimum
> IN NS ns1
> IN NS ns2
> ns1 IN A 1.2.3.4
> ns2 IN A 1.2.3.4
> www IN A 10.20.30.40
>
> zone2 and zone3 is still uses this file as zone, but there is no data in
> this file for zone2 and zone3. bind obviously can't start, returning error
> "ignoring out-of-zone data".
>
> which is the correct way to maintain several zones with fully identical
> data, but with possibility to use nsupdate to it?
>
> --089e013a0bc62a812c0505888e93
> Content-Type: text/html; charset=UTF-8
> Content-Transfer-Encoding: quoted-printable
>
> <div dir=3D"ltr"><div>I have magic zone file in my bind 9.7 for three ident=
> ical zones:</div><div><br></div><div>=C2=A0 =C2=A0 $TTL 86400</div><div>=C2=
> =A0 =C2=A0 @ IN SOA localhost. root.localhost. (</div><div>=C2=A0 =C2=A0 =
> =C2=A020141010222676</div><div>=C2=A0 =C2=A0 =C2=A03H =C2=A0 =C2=A0 =C2=A0 =
> =C2=A0 =C2=A0 =C2=A0 =C2=A0; refresh</div><div>=C2=A0 =C2=A0 =C2=A015M =C2=
> =A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 ; retry</div><div>=C2=A0 =C2=A0 =C2=
> =A01W =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0; expiry</div><div>=
> =C2=A0 =C2=A0 =C2=A01D ) =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0; minimum=
> </div><div>=C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0IN NS ns1</div><div>=C2=A0 =C2=
> =A0 =C2=A0 =C2=A0 =C2=A0IN NS ns2</div><div>=C2=A0 =C2=A0 ns1 =C2=A0IN A =
> =C2=A01.2.3.4</div><div>=C2=A0 =C2=A0 ns2 =C2=A0IN A =C2=A01.2.3.4</div><di=
> v>=C2=A0 =C2=A0 www =C2=A0IN A =C2=A010.20.30.40</div><div><br></div><div>a=
> nd this zones in named.conf with single file:</div><div><br></div><div>=C2=
> =A0 =C2=A0 zone "zone1.tld" IN {</div><div>=C2=A0 =C2=A0 =C2=A0ty=
> pe master;</div><div>=C2=A0 =C2=A0 =C2=A0file "zone.tld";</div><d=
> iv>=C2=A0 =C2=A0 };</div><div>=C2=A0 =C2=A0 zone "zone2.tld" IN {=
> </div><div>=C2=A0 =C2=A0 =C2=A0type master;</div><div>=C2=A0 =C2=A0 =C2=A0f=
> ile "zone.tld";</div><div>=C2=A0 =C2=A0 };</div><div>=C2=A0 =C2=
> =A0 zone "zone3.tld" IN {</div><div>=C2=A0 =C2=A0 =C2=A0type mast=
> er;</div><div>=C2=A0 =C2=A0 =C2=A0file "zone.tld";</div><div>=C2=
> =A0 =C2=A0 };</div><div><br></div><div>I enable global nsupdate access in n=
> amed.conf:</div><div><br></div><div>=C2=A0 =C2=A0 allow-update {</div><div>=
> =C2=A0 =C2=A0 =C2=A0key "key_name";</div><div>=C2=A0 =C2=A0 };</d=
> iv><div><br></div><div>after updating via nsupdate any of this zones (e.g. =
> zone1.tld) and stopping bind I got zone file like this:</div><div><br></div=
> ><div>=C2=A0 =C2=A0 $TTL 86400</div><div>=C2=A0 =C2=A0 zone1.tld. IN SOA lo=
> calhost. root.localhost. (</div><div>=C2=A0 =C2=A0 =C2=A020141010222676</di=
> v><div>=C2=A0 =C2=A0 =C2=A03H =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=
> =A0; refresh</div><div>=C2=A0 =C2=A0 =C2=A015M =C2=A0 =C2=A0 =C2=A0 =C2=A0 =
> =C2=A0 =C2=A0 ; retry</div><div>=C2=A0 =C2=A0 =C2=A01W =C2=A0 =C2=A0 =C2=A0=
> =C2=A0 =C2=A0 =C2=A0 =C2=A0; expiry</div><div>=C2=A0 =C2=A0 =C2=A01D ) =C2=
> =A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0; minimum</div><div>=C2=A0 =C2=A0 =C2=
> =A0 =C2=A0 =C2=A0IN NS ns1</div><div>=C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0IN N=
> S ns2</div><div>=C2=A0 =C2=A0 ns1 =C2=A0IN A =C2=A01.2.3.4</div><div>=C2=A0=
> =C2=A0 ns2 =C2=A0IN A =C2=A01.2.3.4</div><div>=C2=A0 =C2=A0 www =C2=A0IN A=
> =C2=A010.20.30.40</div><div><br></div><div>zone2 and zone3 is still uses t=
> his file as zone, but there is no data in this file for zone2 and zone3. bi=
> nd obviously can't start, returning error "ignoring out-of-zone da=
> ta".</div><div><br></div><div>which is the correct way to maintain sev=
> eral zones with fully identical data, but with possibility to use nsupdate =
> to it?</div></div>
>
> --089e013a0bc62a812c0505888e93--
>
> --===============3034082043946855899==
> Content-Type: text/plain; charset="us-ascii"
> MIME-Version: 1.0
> Content-Transfer-Encoding: 7bit
> Content-Disposition: inline
>
> _______________________________________________
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list
>
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
> --===============3034082043946855899==--
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: marka at isc.org
More information about the bind-users
mailing list