Help! please.
Ok I know this is the imgate mailing list and is OT, but i need my dns working before
the relays will work proper and hoping some one here can help and this has got the
better of me and now i need HELP!
I am setting up bind dns on a pair of debian boxes. i have built 9.2.2 from source and
to test it i have made a named.conf for each server followed by a simple zone file for
each view (slightly differernt for the 2 views)
named-checkconf works out ok as do named-checkzone. the problem comes when the zone
transfer happens 192.168.60.120 is the primary and 192.168.60.133 is the slave. if i
put the slave in the internel acl then when a zone transfer occurs the zone file from
the private dir gets coped to both the privave and public directories. something must
be up with the views i guess but i am stuck big time can anyone help.
conf files below.
Big thanks in advance
Aaron
-Named.conf primary DNS------
acl "internal" { 127.0.0.1; 192.168.60.120; 192.168.60.133; };
acl "external" { any; };
acl "dns" { 192.168.60.133; 127.0.0.1; };
logging {
channel "default" {
file "/var/log/named.log";
print-time yes;
print-category yes;
severity debug 6;
};
category "client" {"null";};
category "resolver" {"null";};
category "default" {"default";};
};
controls {
inet 127.0.0.1
allow { 127.0.0.1; } keys { "rndc_key"; };
};
#controls {
# inet 127.0.0.1 port 54 allow { any; } keys { rndc_key; };
#};
key "rndc_key" {
algorithm hmac-md5;
secret "RIRVv2BeSIdNXvYWfR7gcA==";
};
options {
directory "/var/named";
pid-file "/var/named/named.pid";
allow-query { any; };
recursion no;
};
view "private" {
match-clients { "internal"; };
recursion yes;
zone "nakoma.co.uk" {
type master;
notify yes;
allow-transfer { "dns"; };
file "private/nakoma.co.uk";
}; };
view "public" {
match-clients { "external"; };
recursion no;
zone "nakoma.co.uk" {
type master;
notify yes;
also-notify {192.168.60.133; };
allow-transfer { "dns"; };
file "public/nakoma.co.uk";
------------Named.conf slave ---------------------------------
acl "internal" { 127.0.0.1; 192.168.60.120; 192.168.60.133; };
acl "external" { any; };
acl "dns" { 192.168.60.133; 127.0.0.1; };
logging {
channel "default" {
file "/var/log/named.log";
print-time yes;
print-category yes;
severity debug 6;
};
category "client" {"null";};
category "resolver" {"null";};
category "default" {"default";};
};
controls {
inet 127.0.0.1 allow { any; } keys { rndc_key; };
};
key "rndc_key" {
algorithm hmac-md5;
secret "RIRVv2BeSIdNXvYWfR7gcA==";
};
options {
directory "/var/named";
pid-file "/var/named/named.pid";
allow-query { any; };
recursion no;
};
view "private" {
match-clients { "internal"; };
recursion yes;
zone "nakoma.co.uk" {
type slave;
masters {192.168.60.120;};
allow-transfer { "dns"; };
file "private/nakoma.co.uk";
}; };
view "public" {
match-clients { "external"; };
recursion no;
zone "nakoma.co.uk" {
type slave;
masters {192.168.60.120;};
allow-transfer { "dns"; };
file "public/nakoma.co.uk";
};
};
