HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials

HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials (http://www.howtoforge.com/forums/index.php)
-   General (http://www.howtoforge.com/forums/forumdisplay.php?f=21)
-   -   BIND as a slave for MyDNS master (http://www.howtoforge.com/forums/showthread.php?t=4184)

MooktaKiNG 9th May 2006 20:47

BIND as a slave for MyDNS master
 
I would like to setup a slave with BIND. It should do nothing other then get all the dns data from MyDNS master.

How should i configure the slave BIND?
(i'm gonna use chrooted bind, which is simple enough)

This is becuase i want to install a slave without any burden, like mysql etc, just want a plain slave thats all. Also i don't want to share the same mysql database since that would defeat the purpose of having it in the first place. If master goes down so will slave.

If there is better way (lighter way ;)) please let me know.
Thank you.

MooktaKiNG 9th May 2006 20:50

It would be even more amazing if i could run MyDNS using sqlite :D anyway just a thought.

falko 9th May 2006 22:51

Have a look at this tutorial: http://www.howtoforge.com/traditional_dns_howto
The slave configuration is also explained there. :)

ph00dz 24th May 2006 19:04

Do I need to do anything special to the mydns server to make it transfer correctly?

ph00dz 24th May 2006 19:07

oops... nevermind. figured it out.

mooseman 31st October 2009 15:28

Hi could you enlighten us on how you did it...

My current situation:

I attempted to create a "master" dns server in ISPconfig 3 using mydns and have it replicate to my ispconfig 2 bind dns. Both servers are being NATed behind respective firewalls.

I updated the mydns.conf with the following options:

allow-axfr = yes
allow-update = yes
notify-enabled = yes
notify-source = (public NATed IP of mydns master)

I created the zone on the master ispconfig 3 server (mydns) and created a slave zone on the ispconfig 2 (bind 9) server pointing to the master.

The initial axfr goes through but any updates to the zone are not transferred with the following error in the log:

I receive the following in the syslog of the ispconfig 2 bind server:

Oct 31 10:03:30 (server) named[(PID)]: client (public.IP.of.mydns)#47075: received notify for zone '(domain).com'
Oct 31 10:03:30 (server) named[(PID)]: zone .com/IN: Transfer started.
Oct 31 10:03:30 (server) named[(PID)]: transfer of '(domain).com/IN' from (public.IP.of.mydns)#53: connected using (private.IP.of.bind)#35684
Oct 31 10:03:30 (server) named[(PID)]: transfer of '(domain).com/IN' from (public.IP.of.mydns)#53: failed while receiving responses: end of file
Oct 31 10:03:30 (server) named[(PID)]: transfer of '(domain).com/IN' from (public.IP.of.mydns)#53: end of transfer


Is the "failed while receiving responses: end of file" occurring because of the private ip being sent?? is "notify-source = " config option of mydns supposed to fix that?

Any help would be appreciated.

Thanks,

atakacs 11th June 2010 04:53

Having the exact same problem:

10-Jun-2010 13:01:10.140 general: info: zone mydomain.com/IN: Transfer started.
10-Jun-2010 13:01:10.175 xfer-in: info: transfer of 'mydomain.com/IN' from xx.xx.203.171#53: connected using xx.xx.104.26#56315
10-Jun-2010 13:01:10.236 xfer-in: error: transfer of 'mydomain.com/IN' from xx.xx.203.171#53: failed while receiving responses: end of file
10-Jun-2010 13:01:10.236 xfer-in: info: transfer of 'mydomain.com/IN' from xx.xx.203.171#53: end of transfer

Any idea / suggestion most welcome

Regards

alex

falko 11th June 2010 15:19

Can you post your mydns.conf from the master and also the output of
Code:

iptables -L
from the master?

atakacs 11th June 2010 19:00

Hi

Config file:

Code:

##
##  /etc/mydns.conf
##  For more information, see mydns.conf(5).
##


                                    # DATABASE INFORMATION

db-host = localhost                # SQL server hostname
db-user = mydns                  # SQL server username
db-password = c1543f1afa050b3f819c2e96ff8a1f89              # SQL server password
database = mydns                    # MyDNS database name


                                    # GENERAL OPTIONS

user = nobody                      # Run with the permissions of this user
group = nobody                      # Run with the permissions of this group
listen = *                          # Listen on these addresses ('*' for all)
no-listen =                        # Do not listen on these addresses


                                    # CACHE OPTIONS

zone-cache-size = 1024              # Maximum number of elements stored in the zone cache
zone-cache-expire = 60              # Number of seconds after which cached zones expires
reply-cache-size = 1024            # Maximum number of elements stored in the reply cache
reply-cache-expire = 30            # Number of seconds after which cached replies expire


                                    # ESOTERICA

log = LOG_DAEMON                    # Facility to use for program output (LOG_*/stdout/stderr)
pidfile = /var/run/mydns.pid        # Path to PID file
timeout = 120                      # Number of seconds after which queries time out
multicpu = 1                        # Number of CPUs installed on your system
recursive =                        # Location of recursive resolver
allow-axfr = no                    # Should AXFR be enabled?
allow-tcp = yes                    # Should TCP be enabled?
allow-update = no                  # Should DNS UPDATE be enabled?
ignore-minimum = no                # Ignore minimum TTL for zone?
soa-table = soa                    # Name of table containing SOA records
rr-table = rr                      # Name of table containing RR data
soa-where =                        # Extra WHERE clause for SOA queries
rr-where =                          # Extra WHERE clause for RR queries


iptables on the master

Code:

# iptables -L
Chain INPUT (policy ACCEPT)
target    prot opt source              destination

Chain FORWARD (policy ACCEPT)
target    prot opt source              destination

Chain OUTPUT (policy ACCEPT)
target    prot opt source              destination

iptables on the slave

Code:

iptables -L
Chain INPUT (policy ACCEPT)
target    prot opt source              destination

Chain FORWARD (policy ACCEPT)
target    prot opt source              destination

Chain OUTPUT (policy ACCEPT)
target    prot opt source              destination

Must say nothing stands out to my untrained eyes ;)

falko 12th June 2010 16:38

Set allow-axfr to yes in your mydns.conf and restart MyDNS.


All times are GMT +2. The time now is 13:43.

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.