Package: pdns-server
Version: 2.9.20-7 [backported to sarge]
Hi,
my pdns server is a slave for region.oftc.net. The master is running
bind9. When I update the zone on the master and send a notify, pdns
fetches the new zone, and then promptly forgets that it's authoritative
for region.oftc.net for about two minutes or so.
I'm running a dig @82.149.72.86 eu.region.oftc.net; dig @82.149.72.86 -t
soa region.oftc.net +short every second while I do this and get the
following in my log:
| Nov 12 13:26:24 andromeda pdns[25669]: Received valid NOTIFY for
region.oftc.net (id=1) from master 82.149.72.85: 2006111205 > 2006111204
| Nov 12 13:26:25 andromeda pdns[25669]: AXFR started for 'region.oftc.net',
transaction started
| Nov 12 13:26:25 andromeda pdns[25669]: Zone 'region.oftc.net'
(/var/spool/powerdns/slave-region.oftc.net) reloaded
| Nov 12 13:26:25 andromeda pdns[25669]: AXFR done for 'region.oftc.net', zone
committed
| Nov 12 13:26:25 andromeda pdns[25669]: Received valid NOTIFY for
region6.oftc.net (id=2) from master 82.149.72.85: 2006111205 > 2006111204
| Nov 12 13:26:26 andromeda pdns[25669]: AXFR started for 'region6.oftc.net',
transaction started
| Nov 12 13:26:26 andromeda pdns[25669]: Zone 'region6.oftc.net'
(/var/spool/powerdns/slave-region6.oftc.net) reloaded
| Nov 12 13:26:26 andromeda pdns[25669]: AXFR done for 'region6.oftc.net', zone
committed
| Nov 12 13:26:28 andromeda pdns[25669]: Not authoritative for
'eu.region.oftc.net', sending servfail to 85.124.52.58 (recursion was desired)
| Nov 12 13:26:29 andromeda pdns[25669]: Not authoritative for
'region.oftc.net', sending servfail to 85.124.52.58 (recursion was desired)
| Nov 12 13:26:48 andromeda pdns[25669]: Not authoritative for
'eu.region.oftc.net', sending servfail to 85.124.52.58 (recursion was desired)
| Nov 12 13:26:49 andromeda pdns[25669]: Not authoritative for
'region.oftc.net', sending servfail to 85.124.52.58 (recursion was desired)
| Nov 12 13:27:08 andromeda pdns[25669]: 1 slave domain needs checking
| Nov 12 13:27:09 andromeda pdns[25669]: Not authoritative for
'eu.region.oftc.net', sending servfail to 85.124.52.58 (recursion was desired)
| Nov 12 13:27:09 andromeda pdns[25669]: Not authoritative for
'region.oftc.net', sending servfail to 85.124.52.58 (recursion was desired)
| Nov 12 13:27:29 andromeda pdns[25669]: Not authoritative for
'eu.region.oftc.net', sending servfail to 85.124.52.58 (recursion was desired)
| Nov 12 13:27:29 andromeda pdns[25669]: Not authoritative for
'region.oftc.net', sending servfail to 85.124.52.58 (recursion was desired)
| Nov 12 13:27:49 andromeda pdns[25669]: Not authoritative for
'eu.region.oftc.net', sending servfail to 85.124.52.58 (recursion was desired)
| Nov 12 13:27:50 andromeda pdns[25669]: Not authoritative for
'region.oftc.net', sending servfail to 85.124.52.58 (recursion was desired)
| Nov 12 13:28:08 andromeda pdns[25669]: 1 slave domain needs checking
| Nov 12 13:28:08 andromeda pdns[25669]: Domain region.oftc.net is stale,
master serial 2006111205, our serial 0
| Nov 12 13:28:08 andromeda pdns[25669]: AXFR started for 'region.oftc.net',
transaction started
| Nov 12 13:28:08 andromeda pdns[25669]: Zone 'region.oftc.net'
(/var/spool/powerdns/slave-region.oftc.net) reloaded
| Nov 12 13:28:08 andromeda pdns[25669]: AXFR done for 'region.oftc.net', zone
committed
| Nov 12 13:28:09 andromeda pdns[25669]: Not authoritative for
'eu.region.oftc.net', sending servfail to 85.124.52.58 (recursion was desired)
| Nov 12 13:28:10 andromeda pdns[25669]: Not authoritative for
'region.oftc.net', sending servfail to 85.124.52.58 (recursion was desired)
| Nov 12 13:28:29 andromeda pdns[25669]: Not authoritative for
'eu.region.oftc.net', sending servfail to 85.124.52.58 (recursion was desired)
| Nov 12 13:28:30 andromeda pdns[25669]: Not authoritative for
'region.oftc.net', sending servfail to 85.124.52.58 (recursion was desired)
| Nov 12 13:28:50 andromeda pdns[25669]: Not authoritative for
'eu.region.oftc.net', sending servfail to 85.124.52.58 (recursion was desired)
| Nov 12 13:28:50 andromeda pdns[25669]: Not authoritative for
'region.oftc.net', sending servfail to 85.124.52.58 (recursion was desired)
| Nov 12 13:29:08 andromeda pdns[25669]: 1 slave domain needs checking
| Nov 12 13:29:08 andromeda pdns[25669]: Domain region.oftc.net is stale,
master serial 2006111205, our serial 0
| Nov 12 13:29:08 andromeda pdns[25669]: AXFR started for 'region.oftc.net',
transaction started
| Nov 12 13:29:08 andromeda pdns[25669]: Zone 'region.oftc.net'
(/var/spool/powerdns/slave-region.oftc.net) reloaded
| Nov 12 13:29:08 andromeda pdns[25669]: AXFR done for 'region.oftc.net', zone
committed
| Nov 12 13:29:10 andromeda pdns[25669]: Not authoritative for
'eu.region.oftc.net', sending servfail to 85.124.52.58 (recursion was desired)
| Nov 12 13:29:10 andromeda pdns[25669]: Not authoritative for
'region.oftc.net', sending servfail to 85.124.52.58 (recursion was desired)
[it works again starting 13:29:29, that is, pdns starts giving me real
answers again and it doesn't complain anymore.]
| Nov 12 13:30:08 andromeda pdns[25669]: All slave domains are fresh
Here's my config:
] andromeda:/etc/powerdns# for i in pdns.conf pdns.d/* pdns-bind.conf; do
echo; echo "== $i =="; egrep -v '^(#|$)' $i; done
]
] == pdns.conf ==
] allow-recursion=127.0.0.1
] config-dir=/etc/powerdns
] daemon=yes
] disable-axfr=yes
] guardian=yes
] lazy-recursion=yes
] local-address=0.0.0.0
] local-port=53
] module-dir=/usr/lib/powerdns
] setgid=pdns
] setuid=pdns
] socket-dir=/var/run
] version-string=powerdns
] include=/etc/powerdns/pdns.d
]
] == pdns.d/oftc-backends ==
] launch=bind
]
] == pdns.d/oftc-bind ==
] slave=yes
] bind-config=/etc/powerdns/pdns-bind.conf
]
] == pdns.d/oftc-local-address ==
] local-address=82.149.72.86
] query-local-address=82.149.72.86
]
] == pdns.d/oftc-no-recursion ==
] allow-recursion=
]
] == pdns.d/oftc-numthreads ==
] distributor-threads=1
]
] == pdns.d/pdns.local ==
]
] == pdns.d/pdns.recursors ==
]
] == pdns-bind.conf ==
] directory "/var/spool/powerdns";
] zone "region.oftc.net" {
] type slave;
] file "slave-region.oftc.net";
] masters { 82.149.72.85; };
] allow-transfer { };
] notify no;
] also-notify { };
] };
] zone "region6.oftc.net" {
] type slave;
] file "slave-region6.oftc.net";
] masters { 82.149.72.85; };
] allow-transfer { };
] notify no;
] also-notify { };
] };
] // vim:syn=named:
I guess the loss of service for those few minutes is not really
expected, is it?
Peter
--
| .''`. ** Debian GNU/Linux **
Peter Palfrader | : :' : The universal
http://www.palfrader.org/ | `. `' Operating System
| `- http://www.debian.org/
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
