Date: Thu, 21 Dec 2006 13:31:31 -0600 From: Derek Ragona <derek@computinginnovations.com> To: freebsd@alaskaparadise.com, freebsd-questions@freebsd.org Subject: Re: DNS Slave zone problems Message-ID: <6.0.0.22.2.20061221132035.025ae670@mail.computinginnovations.com> In-Reply-To: <200612210722.34306.freebsd@alaskaparadise.com> References: <200612210722.34306.freebsd@alaskaparadise.com>
next in thread | previous in thread | raw e-mail | index | archive | help
You didn't say what versions of FreeBSD or bind you are running. But here
is what I have running . . .
named.conf syntax can be fussy. Here is how I have mine setup:
====================
Master
running the ip 192.168.1.40
zone "foo.net" {
type master;
file "m/foo.net";
allow-transfer { 192.168.1.50; 200.200.200.200; };
};
Slave
running the ip of either 192.168.1.50 or 200.200.200.200
zone "foo.net" {
type slave;
file "s/foo.net.bak";
masters { 192.168.1.40; };
};
====================
On your server be sure to do:
ps -ax|grep name
and see the named commandline. You may not have the correct named.conf
being used, or the wrong user. You may need to adjust or add options to
your rc.conf file. If you are running as the wrong user, or within a jail
you didn't setup is often the case for permission issues.
Be sure your paths to the files are correct. I use relative paths in my
named.conf files.
-Derek
At 10:22 AM 12/21/2006, Beech Rintoul wrote:
>I just set up one of my servers as a secondary dns. I put the proper ip
>address in the master zones allow transfers. The master is working properly
>because the other secondary (afraid.org) is able to x-fer. However I'm
>getting a lot of these messages on my secondary:
>
>Dec 21 01:03:20 stargate named[43710]: dumping master
>file: /etc/namedb/tmp-wIEZCDuzlW: open: permission denied
>Dec 21 01:03:20 stargate named[43710]: transfer of 'foo.com/IN' from
>24.237.XXX.XX#53: failed while receiving responses: permission denied
>
>Dec 21 00:44:51 stargate named[43710]: dumping master
>file: /etc/namedb/tmp-wUerszKGyx: open: permission denied
>Dec 21 00:44:51 stargate named[43710]: transfer of 'bar.info/IN' from
>24.237.XXX.XX#53: failed while receiving responses: permission denied
>
>In my slave named config I have:
>
>zone "foo.com" {
> type slave;
> masters {
> 24.237.XXX.XX;
> };
> file "/etc/namedb/foo.com.hosts";
> };
>zone "bar.com" {
> type slave;
> masters {
> 24.237.XXX.XX;
> };
> file "/etc/namedb/bar.com.hosts";
> };
>
>On my master named.conf I have:
>
>zone "foo.com" {
> type master;
> file "/etc/namedb/foo.com.hosts";
> allow-transfer {
> 202.157.185.115;
> 202.157.182.142;
> 66.252.1.255;
> 65.74.XXX.XX;
> };
> also-notify {
> 65.74.103.XXX.XX;
> };
> };
>zone "bar.com" {
> type master;
> file "/etc/namedb/bar.com.hosts";
> allow-transfer {
> 202.157.185.115;
> 202.157.182.142;
> 66.252.1.255;
> 65.74.XXX.XX;
> };
> also-notify {
> 65.74.XXX.XX;
> };
> };
>
>
>I tried playing with file permissions, but it doesn't help. Does anyone
>have a
>suggestion?
>
>Beech
>
>
>--
>---------------------------------------------------------------------------------------
>Beech Rintoul - Sys. Administrator - beech@alaskaparadise.com
>/"\ ASCII Ribbon Campaign | Alaska Paradise Travel
>\ / - NO HTML/RTF in e-mail | 201 East 9Th Avenue Ste.310
> X - NO Word docs in e-mail | Anchorage, AK 99501
>/ \ - Please visit Alaska Paradise - http://www.alaskaparadise.com
>---------------------------------------------------------------------------------------
>
>
>
>
>
>
>
>
>
>
>
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
MailScanner thanks transtec Computers for their support.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6.0.0.22.2.20061221132035.025ae670>