Zone Transfer trouble.

[till]

Quote:

Originally Posted by vbrookie

I've googled and found a solution to this.

Code:

zone "example.com" {
        type slave;
        file "slave/sec.example.com";
        masters { 192.168.1.100; };
};

Thats exactly what ISPConfig uses, so I guess you did not create a slave record in the dns manager.

[vbrookie]

I did create the slave record on dns manager, but "slave/..." did not get added when I created slave record.
It could've been buggy yast2 in openSuse 10.1 issue. It's my first time playing around with openSuse distro, and I am impressed by its ablility to support my old Symbios Scsi cards & HP netRaid cards right out of the box, but i am not so found of yast2 so far. I had to manually add update source in yast2 and I still can't find a way to add install sources on 2 servers. I had to use y2pmsh to manually install all the required programs.
Anyway...
Now everything is running extremly well and thanks for creating wonderful ISPConfig Package!

[falko]

Quote:

Originally Posted by vbrookie

I did create the slave record on dns manager, but "slave/..." did not get added when I created slave record.

If you have to add slave/, this means that the permissions of /var/lib/named are not ok, because otherwise the zones would be created in /var/lib/named instead of /var/lib/named/slave.

[Uno]

Hi,
first of all thanks for this magnificent job.
searching in the howto and the forum i have resolved all, also i have installed the remote framework.... but i have a problem con dns
the same of this thread

in slave dns, therefore ispconfig 2 / ns2

named.conf has:

zone "example.com" {
type slave;
file "sec.example.com";
masters { XXXXXXXXXXX; }; (1)
};


(1) IP ns1

but i do not see the file sec.example.com

therefore in syslog

May 31 07:50:42 ns2 named[14074]: zone example.com/IN: Transfer started.
May 31 07:53:51 ns2 named[14074]: transfer of 'example.com/IN' from XX.XX.XX.XX#53: failed to connect: timed ou

need other information?
as can i make works the transfer?


Thank for all

p.s. i have used howto "How To Run Your Own Name Servers With ISPConfig And GoDaddy"

[falko]

Quote:

Originally Posted by Uno

May 31 07:53:51 ns2 named[14074]: transfer of 'example.com/IN' from XX.XX.XX.XX#53: failed to connect: timed ou

[/COLOR]

Please make sure that the firewall on ns1 doesn't block port 53 (TCP and UDP).
Is named running on ns1? Are there any named errors in the ns1 logs?

[Uno]

Yes named on ns1 running, this a bit di syslog:

Code:

Jun  1 13:27:41 example named[32710]: starting BIND 9.3.4 -u bind -t /var/lib/named
Jun  1 13:27:41 example named[32710]: found 1 CPU, using 1 worker thread
Jun  1 13:27:41 example named[32710]: loading configuration from '/etc/bind/named.conf'
Jun  1 13:27:41 example named[32710]: no IPv6 interfaces found
Jun  1 13:27:41 example named[32710]: listening on IPv4 interface lo, 127.0.0.1#53
Jun  1 13:27:41 example named[32710]: listening on IPv4 interface venet0:0, XX.XX.XXX.XX#53
Jun  1 13:27:41 example named[32710]: command channel listening on 127.0.0.1#953
Jun  1 13:27:41 example named[32710]: zone 0.0.127.in-addr.arpa/IN: loaded serial 1
Jun  1 13:27:41 example named[32710]: zone 146.XX.XX.in-addr.arpa/IN: loaded serial 2007053001
Jun  1 13:27:41 example named[32710]: zone example.com/IN: loaded serial 2007060101
Jun  1 13:27:41 example named[32710]: running
Jun  1 13:27:41 example named[32710]: zone 146.XX.XX.in-addr.arpa/IN: sending notifies (serial 2007053001)
Jun  1 13:27:41 example named[32710]: zone example.com/IN: sending notifies (serial 2007060101)

I do not see errors

firewall on ns1 and ns2 is that of ispconfig with 53 tcp and upd open

I must add that today (10:30) I have reboot the real server Host (ns1 and ns2 are two vps with two external IPs and firewall on Host is open on 53 tcp udp) and file sec.example.com it has been created, but after the transfert it is blocked

syslog on ns2:

Code:

Jun  1 16:31:08 ns2 named[7336]: zone example.com/IN: Transfer started.
Jun  1 16:34:17 ns2 named[7336]: transfer of 'example.com/IN' from XX.XXX.XXX.XX#53: failed to connect: timed out
Jun  1 16:34:17 ns2 named[7336]: transfer of 'example.com/IN' from XX.XX.XX.XX#53: end of transfer

I do not succeed to understand, however thanks

[Uno]

Quote:

Originally Posted by Uno

and file sec.example.com it has been created,

and trasfer of record is successful..... after it is blocked another time, now transfer is blocked infact on dns stuff:

The serial numbers reported by each DNS server are:
XX.XXX.XX.XX: 2007060101
XX.XXX.XXX.XXX: 2007053008

some idea?

[falko]

What's in sec.example.com (on ns2) and pri.example.com (on ns1)?
Any errors in your logs (on both ns1 and ns2)?

[Uno]

I have resolved after much job and tests, thanks

first the firewall on Host master (physical server) closed the transfert from ns1 (vps1) to ns2 (vps2)

strange because iptables it was opened on all from and towards the two IP (TPC and UDP)

after on ns2 syslog gave this line: refused notify from non-master

therefore I have added on ns2 named.conf allow-notify { IP ns2; };

now work... even if I must arrange better firewall on physical server


Hello boys, when I can to back, if i I will be able to contribute in some way.... thanks for the yours job.
This is the best free hosting panel and i have tested all on the web in the sector, also something to payment.

P.s. excuse me for my poor english