Zone transfer doesn't work when I set allow-update statement
Dear, I'm using Bind 9.8.4 with a master / slave scenario. Zone transfer
works OK when I have this config in named.conf.local from master server,
add some A records and execute service bind9 reload:
zone company.com.ar {
type master;
file /etc/bind/zones/company.com.ar.db;
allow-transfer { key company; };
check-names ignore;
After that I add the allo-update statement and restart bind9 service:
zone company.com.ar {
type master;
file /etc/bind/zones/company.com.ar.db;
allow-transfer { key company; };
allow-update { 172.12.88.3; 10.8.91.7;};
check-names ignore;
Finally, I add some A records in my company.com.ar zone and increment the
serial number, then I execute service bind9 reload but the Slave doesn't
receive the new records. The only way Slave receives the new records is
when I execute service bind9 restart in Master which is not the idea.
What is the problem please ???
Thanks a lot,
JeLo
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: Zone transfer doesn't work when I set allow-update statement
Allow-update makes the zone a dynamic update zone. You have to stop
hand editing the zone file. Use nsupdate to make changes to the zone.
Lyle Giese
LCR Computer Services, Inc.
On 04/25/14 15:03, Jeronimo L. Cabral wrote:
Dear, I'm using Bind 9.8.4 with a master / slave scenario. Zone
transfer works OK when I have this config in named.conf.local from
master server, add some A records and execute service bind9 reload:
zone company.com.ar http://company.com.ar {
type master;
file /etc/bind/zones/company.com.ar.db;
allow-transfer { key company; };
check-names ignore;
After that I add the allo-update statement and restart bind9 service:
zone company.com.ar http://company.com.ar {
type master;
file /etc/bind/zones/company.com.ar.db;
allow-transfer { key company; };
allow-update { 172.12.88.3; 10.8.91.7;};
check-names ignore;
Finally, I add some A records in my company.com.ar
http://company.com.ar zone and increment the serial number, then I
execute service bind9 reload but the Slave doesn't receive the new
records. The only way Slave receives the new records is when I execute
service bind9 restart in Master which is not the idea.
What is the problem please ???
Thanks a lot,
JeLo
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: Zone transfer doesn't work when I set allow-update statement
allow-update + manual editing of zone file = bad.
Use nsupdate.
- Kevin
On 4/25/2014 4:03 PM, Jeronimo L. Cabral wrote:
Dear, I'm using Bind 9.8.4 with a master / slave scenario. Zone
transfer works OK when I have this config in named.conf.local from
master server, add some A records and execute service bind9 reload:
zone company.com.ar http://company.com.ar {
type master;
file /etc/bind/zones/company.com.ar.db;
allow-transfer { key company; };
check-names ignore;
After that I add the allo-update statement and restart bind9 service:
zone company.com.ar http://company.com.ar {
type master;
file /etc/bind/zones/company.com.ar.db;
allow-transfer { key company; };
allow-update { 172.12.88.3; 10.8.91.7;};
check-names ignore;
Finally, I add some A records in my company.com.ar
http://company.com.ar zone and increment the serial number, then I
execute service bind9 reload but the Slave doesn't receive the new
records. The only way Slave receives the new records is when I execute
service bind9 restart in Master which is not the idea.
What is the problem please ???
Thanks a lot,
JeLo
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: Zone transfer doesn't work when I set allow-update statement
Thanks a lot, but using the allow-update statement, I use nsupdate in order
to add a new record:
# nsupdate
server x.x.x.x
zone company.com.ar
update add test.company.com.ar 86400 A 1.1.1.1
send
quit
But the master zone is not refreshed until I execute service bind9
restart (service bind9 reload doesn't refresh the master zone).
How can I do in order to add new records using nsupdate without restarting
the bind9 service ???
Thanks again !!!
On Fri, Apr 25, 2014 at 5:12 PM, Kevin Darcy k...@chrysler.com wrote:
allow-update + manual editing of zone file = bad.
Use nsupdate.
- Kevin
On 4/25/2014 4:03 PM, Jeronimo L. Cabral wrote:
Dear, I'm using Bind 9.8.4 with a master / slave scenario. Zone transfer
works OK when I have this config in named.conf.local from master server,
add some A records and execute service bind9 reload:
zone company.com.ar {
type master;
file /etc/bind/zones/company.com.ar.db;
allow-transfer { key company; };
check-names ignore;
After that I add the allo-update statement and restart bind9 service:
zone company.com.ar {
type master;
file /etc/bind/zones/company.com.ar.db;
allow-transfer { key company; };
allow-update { 172.12.88.3; 10.8.91.7;};
check-names ignore;
Finally, I add some A records in my company.com.ar zone and increment
the serial number, then I execute service bind9 reload but the Slave
doesn't receive the new records. The only way Slave receives the new
records is when I execute service bind9 restart in Master which is not
the idea.
What is the problem please ???
Thanks a lot,
JeLo
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing
listbind-us...@lists.isc.orghttps://lists.isc.org/mailman/listinfo/bind-users
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to
unsubscribe from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: Zone transfer doesn't work when I set allow-update statement
On 4/25/14, 4:29 PM, Jeronimo L. Cabral wrote: Thanks a lot, but using the allow-update statement, I use nsupdate in order to add a new record: # nsupdate server x.x.x.x zone company.com.ar http://company.com.ar update add test.company.com.ar http://test.company.com.ar 86400 A 1.1.1.1 send quit But the master zone is not refreshed until I execute service bind9 restart (service bind9 reload doesn't refresh the master zone). Are you saying that the FILE is not updated? Do you see zone transfers taking place (ie, look in the log files). How can I do in order to add new records using nsupdate without restarting the bind9 service ??? it just works if everything is configured right. AlanC signature.asc Description: OpenPGP digital signature ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Zone transfer doesn't work when I set allow-update statement
How are you checking for updated info from the master?
I recommend
dig @ip address of master test.company.com.ar
Lyle Giese
LCR Computer Services, Inc.
On 04/25/14 15:29, Jeronimo L. Cabral wrote:
Thanks a lot, but using the allow-update statement, I use nsupdate in
order to add a new record:
# nsupdate
server x.x.x.x
zone company.com.ar http://company.com.ar
update add test.company.com.ar http://test.company.com.ar 86400 A
1.1.1.1
send
quit
But the master zone is not refreshed until I execute service bind9
restart (service bind9 reload doesn't refresh the master zone).
How can I do in order to add new records using nsupdate without
restarting the bind9 service ???
Thanks again !!!
On Fri, Apr 25, 2014 at 5:12 PM, Kevin Darcy k...@chrysler.com
mailto:k...@chrysler.com wrote:
allow-update + manual editing of zone file = bad.
Use nsupdate.
- Kevin
On 4/25/2014 4:03 PM, Jeronimo L. Cabral wrote:
Dear, I'm using Bind 9.8.4 with a master / slave scenario. Zone
transfer works OK when I have this config in named.conf.local
from master server, add some A records and execute service bind9
reload:
zone company.com.ar http://company.com.ar {
type master;
file /etc/bind/zones/company.com.ar.db;
allow-transfer { key company; };
check-names ignore;
After that I add the allo-update statement and restart bind9 service:
zone company.com.ar http://company.com.ar {
type master;
file /etc/bind/zones/company.com.ar.db;
allow-transfer { key company; };
allow-update { 172.12.88.3; 10.8.91.7;};
check-names ignore;
Finally, I add some A records in my company.com.ar
http://company.com.ar zone and increment the serial number,
then I execute service bind9 reload but the Slave doesn't
receive the new records. The only way Slave receives the new
records is when I execute service bind9 restart in Master which
is not the idea.
What is the problem please ???
Thanks a lot,
JeLo
___
Please visithttps://lists.isc.org/mailman/listinfo/bind-users to
unsubscribe from this list
bind-users mailing list
bind-users@lists.isc.org mailto:bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to
unsubscribe from this list
bind-users mailing list
bind-users@lists.isc.org mailto:bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: Zone transfer doesn't work when I set allow-update statement
On Fri, Apr 25, 2014 at 05:29:30PM -0300, Jeronimo L. Cabral wrote: But the master zone is not refreshed until I execute service bind9 restart (service bind9 reload doesn't refresh the master zone). The zone has been updated, but the changes are stored in a journal file (zonefile.jnl). You can look at the contents of the journal file with named-journalprint filename. If you want to dump the current version of the zone to disk so you can look at the whole thing, use rndc sync zonename. (That's assuming this is a fairly recent BIND. If it doesn't support sync, use rndc freeze zone; rndc thaw zone.) -- Evan Hunt -- e...@isc.org Internet Systems Consortium, Inc. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
a note on 9.10.0rc2: eleven, twelve; dig and delv(e)
Greetings, A few minutes ago, the second release candidate of BIND 9.10.0 was published and announced. I wanted to send out a brief note regarding one of the changes. In 9.10.0b2 we introduced a handy new tool to the BIND suite, a lookup and validation utility called delve. The name was obviously a pun on dig (with reference to a classic nursery rhyme, http://en.wikipedia.org/wiki/One,_Two,_Buckle_My_Shoe), and also a shout-out to NLNetLabs's excellent drill. Alas! It was brought to our attention a few days ago that this created a namespace conflict: The Xapian search engine, it turns out, already includes a tool called delve, and has for several years. So, after consultation with the bottoms of one or two bottles, and consideration of several alternative names (including dredge, bore, shovel and -- taking it in a slightly different direction -- groove) we decided to simply send the second 'e' in delve off to wherever the one from creat() went. The tool will now be called delv. (I plan to continue pronouncing it the same way.) My apologies to the Xapian project for the oversight: no disrespect was intended, I simply didn't know. Apologies also to any early adopters of delv who may be inconvenienced by the change. -- Evan Hunt -- e...@isc.org Internet Systems Consortium, Inc. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: a note on 9.10.0rc2: eleven, twelve; dig and delv(e)
On 04/25/2014 02:25 PM, Evan Hunt wrote: So, after consultation with the bottoms of one or two bottles, and consideration of several alternative names (including dredge, bore, shovel and -- taking it in a slightly different direction -- groove) we decided to simply send the second 'e' in delve off to wherever the one from creat() went. The tool will now be called delv. (I plan to continue pronouncing it the same way.) First, thanks for being considerate to the Xapian folks. However IMO that's not a good solution. To start with, the delve name was a bit silly, and didn't really trip off the tongue. Your proposed solution is suboptimal from both a product differentiation and a tab completion perspective. If you(collectively) really cannot come up with a better name, why not crowd-source it on the ISC home page? I'm not terribly good at clever names for things like this, but I would vote for 'dq' (as in, DNS query) which has the virtue of not matching anything in the Ubuntu did you mean? database. hth, Doug ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
