OS running is FreeBSD 12.1 with bind version 9.16.7. I'm running rndc commands as root user.
Yes, the zone was created with rndc addzone. And it's also possible to add and
delete other zones this way.
Only the one particular zone throws this error.
Is there a way to manually clean or rebuild the nzd database?
Thanks, Christian
From: "Scott A. Wozny" <sawo...@hotmail.com>
Date: Monday, 12. October 2020 at 20:42
To: "boe...@fhv.at" <boe...@fhv.at>, "bind-users@lists.isc.org"
<bind-users@lists.isc.org>
Subject: Re: unable to delzone
There are a LOT of possibilities why this isn't working. The first two things
I'd check is trying this action again as root (if you're not already) to make
sure this action isn't trying something that's DAC prohibited and checking the
SELinux / AppArmor log (if you're running them) to see if this particular
action (it doesn't sound like it's something you do often) is making a system
call that's forbidden by the MAC.
These are suggestions to see if the issue is at the OS level, of course. I'm
assuming what you're doing is permitted in the application (i.e. the zone
you're trying to delete was created with rndc addzone) but you haven't provided
enough detail to determine that.
HTH,
Scott
From: bind-users <bind-users-boun...@lists.isc.org> on behalf of BÖSCH
Christian <boe...@fhv.at>
Sent: October 12, 2020 4:35 AM
To: bind-users@lists.isc.org <bind-users@lists.isc.org>
Subject: unable to delzone
Hi,
I want to delete a zone with:
rndc delzone domain.org
In the logfile I get:
Oct 12 10:16:30 nsmaster named[669]: general: received control channel command
'delzone domain.org'
Oct 12 10:16:30 nsmaster named[669]: general: zone domain.org scheduled for
removal via delzone
Oct 12 10:16:30 nsmaster named[669]: general: deleting zone domain.org in view
_default via delzone
Oct 12 10:16:30 nsmaster named[669]: general: mdb_txn_begin: Invalid argument
Oct 12 10:16:30 nsmaster named[669]: general: unable to open NZD database for
'_default.nzd'
Oct 12 10:16:30 nsmaster named[669]: general: unable to delete zone
configuration: failure
And so in the nzd db the config remains active:
named-nzd2nzf _default.nzd | grep domain.org
zone "domain.org" { type master; file "../dynamic/domain.org"; };
So why can the nzd db not be opened? And how can that be solved?
Thanks in advance,
Christian
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
