A Zone Transfer Question
Barry Margolin
barmar at alum.mit.edu
Sat Feb 20 02:25:43 UTC 2016
In article <mailman.269.1455926963.73610.bind-users at lists.isc.org>,
David Li <dlipubkey at gmail.com> wrote:
> Hi John,
>
> Well, I was wrong about the log. I did find some info about why zone
> transfer failed. On one server running zone rack1.com, I see:
>
> Feb 19 16:04:27 dli-centos7 named[13882]: client 10.4.3.101#20745
> (rack1.com): query 'rack1.com/SOA/IN' denied
> Feb 19 16:04:27 dli-centos7 named[13882]: client 10.4.3.101#52612
> (rack1.com): transfer of 'rack1.com/IN': IXFR ended
>
> Any idea why it's denied?
VM1 has the option:
allow-query {
10.4.1/24;
127.0.0.1;
};
10.4.3.101 isn't in 10.4.1/24. The slave has to be allowed to query the
master.
--
Barry Margolin
Arlington, MA
More information about the bind-users
mailing list