BIND as a slave for MyDNS master

[MooktaKiNG]

I would like to setup a slave with BIND. It should do nothing other then get all the dns data from MyDNS master.

How should i configure the slave BIND?
(i'm gonna use chrooted bind, which is simple enough)

This is becuase i want to install a slave without any burden, like mysql etc, just want a plain slave thats all. Also i don't want to share the same mysql database since that would defeat the purpose of having it in the first place. If master goes down so will slave.

If there is better way (lighter way ) please let me know.
Thank you.

[MooktaKiNG]

It would be even more amazing if i could run MyDNS using sqlite anyway just a thought.

[falko]

Have a look at this tutorial: http://www.howtoforge.com/traditional_dns_howto
The slave configuration is also explained there.

[ph00dz]

Do I need to do anything special to the mydns server to make it transfer correctly?

[ph00dz]

oops... nevermind. figured it out.

[mooseman]

Hi could you enlighten us on how you did it...

My current situation:

I attempted to create a "master" dns server in ISPconfig 3 using mydns and have it replicate to my ispconfig 2 bind dns. Both servers are being NATed behind respective firewalls.

I updated the mydns.conf with the following options:

allow-axfr = yes
allow-update = yes
notify-enabled = yes
notify-source = (public NATed IP of mydns master)

I created the zone on the master ispconfig 3 server (mydns) and created a slave zone on the ispconfig 2 (bind 9) server pointing to the master.

The initial axfr goes through but any updates to the zone are not transferred with the following error in the log:

I receive the following in the syslog of the ispconfig 2 bind server:

Oct 31 10:03:30 (server) named[(PID)]: client (public.IP.of.mydns)#47075: received notify for zone '(domain).com'
Oct 31 10:03:30 (server) named[(PID)]: zone .com/IN: Transfer started.
Oct 31 10:03:30 (server) named[(PID)]: transfer of '(domain).com/IN' from (public.IP.of.mydns)#53: connected using (private.IP.of.bind)#35684
Oct 31 10:03:30 (server) named[(PID)]: transfer of '(domain).com/IN' from (public.IP.of.mydns)#53: failed while receiving responses: end of file
Oct 31 10:03:30 (server) named[(PID)]: transfer of '(domain).com/IN' from (public.IP.of.mydns)#53: end of transfer


Is the "failed while receiving responses: end of file" occurring because of the private ip being sent?? is "notify-source = " config option of mydns supposed to fix that?

Any help would be appreciated.

Thanks,

[atakacs]

Having the exact same problem:

10-Jun-2010 13:01:10.140 general: info: zone mydomain.com/IN: Transfer started.
10-Jun-2010 13:01:10.175 xfer-in: info: transfer of 'mydomain.com/IN' from xx.xx.203.171#53: connected using xx.xx.104.26#56315
10-Jun-2010 13:01:10.236 xfer-in: error: transfer of 'mydomain.com/IN' from xx.xx.203.171#53: failed while receiving responses: end of file
10-Jun-2010 13:01:10.236 xfer-in: info: transfer of 'mydomain.com/IN' from xx.xx.203.171#53: end of transfer

Any idea / suggestion most welcome

Regards

alex

[falko]

Can you post your mydns.conf from the master and also the output of

Code:

iptables -L

from the master?

[atakacs]

Hi

Config file:

Code:

##
##  /etc/mydns.conf
##  For more information, see mydns.conf(5).
##


                            	# DATABASE INFORMATION

db-host = localhost         	# SQL server hostname
db-user = mydns          	# SQL server username
db-password = c1543f1afa050b3f819c2e96ff8a1f89      	# SQL server password
database = mydns            	# MyDNS database name


                            	# GENERAL OPTIONS

user = nobody               	# Run with the permissions of this user
group = nobody              	# Run with the permissions of this group
listen = *                  	# Listen on these addresses ('*' for all)
no-listen =                 	# Do not listen on these addresses


                            	# CACHE OPTIONS

zone-cache-size = 1024      	# Maximum number of elements stored in the zone cache
zone-cache-expire = 60      	# Number of seconds after which cached zones expires
reply-cache-size = 1024     	# Maximum number of elements stored in the reply cache
reply-cache-expire = 30     	# Number of seconds after which cached replies expire


                            	# ESOTERICA

log = LOG_DAEMON            	# Facility to use for program output (LOG_*/stdout/stderr)
pidfile = /var/run/mydns.pid	# Path to PID file
timeout = 120               	# Number of seconds after which queries time out
multicpu = 1                	# Number of CPUs installed on your system
recursive =                 	# Location of recursive resolver
allow-axfr = no             	# Should AXFR be enabled?
allow-tcp = yes             	# Should TCP be enabled?
allow-update = no           	# Should DNS UPDATE be enabled?
ignore-minimum = no         	# Ignore minimum TTL for zone?
soa-table = soa             	# Name of table containing SOA records
rr-table = rr               	# Name of table containing RR data
soa-where =                 	# Extra WHERE clause for SOA queries
rr-where =                  	# Extra WHERE clause for RR queries

iptables on the master

Code:

# iptables -L
Chain INPUT (policy ACCEPT)
target     prot opt source               destination

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination

iptables on the slave

Code:

iptables -L
Chain INPUT (policy ACCEPT)
target     prot opt source               destination

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination

Must say nothing stands out to my untrained eyes

[falko]

Set allow-axfr to yes in your mydns.conf and restart MyDNS.