Re: How can I set the interface used to transfer zones?
Yes. This is the acl:
acl local { 10.0.1.0/24; 127.0.0.1; };
Thanks,
-
Carlos Eduardo Ribas
2012/7/5 Jan-Piet Mens
> > That's really odd...
>
> I note that on the master zone you have
>
> allow-query { local; };
>
> Does "local" contain the slave's address? It must be allowed to query
> the SOA record of the zone to transfer.
>
> -JP
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to
> unsubscribe from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
>
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: How can I set the interface used to transfer zones?
> That's really odd...
I note that on the master zone you have
allow-query { local; };
Does "local" contain the slave's address? It must be allowed to query
the SOA record of the zone to transfer.
-JP
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: How can I set the interface used to transfer zones?
I did not write, but I have it. For example:
zone "10.in-addr.arpa" {
type slave;
file "db2.10";
masters { 10.0.1.24; };
};
That's really odd...
-
Carlos Eduardo Ribas
2012/7/5 Phil Mayers
> On 05/07/12 15:34, Carlos Ribas wrote:
>
>> I tried transfer-source before, but this is what happened:
>>
>
> You still need to set "masters { 10.x.x.x; };" on the zone.
>
> Transfer source controls the source IP. Masters controls the destination
> IP.
>
> __**_
> Please visit
> https://lists.isc.org/mailman/**listinfo/bind-usersto
> unsubscribe from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/**listinfo/bind-users
>
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: How can I set the interface used to transfer zones?
On 05/07/12 15:34, Carlos Ribas wrote:
I tried transfer-source before, but this is what happened:
You still need to set "masters { 10.x.x.x; };" on the zone.
Transfer source controls the source IP. Masters controls the destination IP.
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: How can I set the interface used to transfer zones?
I tried transfer-source before, but this is what happened:
05-Jul-2012 11:04:53.550 general: info: zone example.com/IN/internal:
refresh: retry limit for master 143.X.X.X#53 exceeded (source 10.0.1.3#0)
Maybe I'm doing something wrong, but this only tells to slave to use its
private IP, but it still try to use the public IP from master. This is my
configuration:
Slave (10.0.1.3)
Options{
auth-nxdomain no;# conform to RFC1035
version "Not Available";
allow-notify { 10.0.1.24; }; # Master
transfer-source 10.0.1.3;
allow-transfer { none; };
notify no;
dnssec-enable yes;
dnssec-validation yes;
}
view "internal" {
match-clients { key internal; !allviewkeys; local; };
server 10.0.1.24 { keys internal; };
allow-query { local; };
allow-query-cache { local; };
recursion yes;
Zones...
}
Master (10.0.1.24)
view "internal" {
match-clients { key internal; !allviewkeys; local; };
server 10.0.1.3 { keys internal; };
allow-query { local; };
allow-query-cache { local; };
allow-transfer { 10.0.1.3; };
allow-recursion { local; };
zone-statistics yes;
Zones...
}
Any help?
-
Carlos Eduardo Ribas
2012/7/5 Jan-Piet Mens
> > Yes. That´s the problem. I have this statement defined, but it still
> > try to connect using the wrong IP. Any ideas?
>
> I misunderstood then. Try `transfer-source'.
>
> -JP
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to
> unsubscribe from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
>
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: How can I set the interface used to transfer zones?
> Yes. That´s the problem. I have this statement defined, but it still > try to connect using the wrong IP. Any ideas? I misunderstood then. Try `transfer-source'. -JP ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: How can I set the interface used to transfer zones?
Try transfer-source in the slave zone options:
http://ftp.isc.org/isc/bind9/cur/9.9/doc/arm/Bv9ARM.ch06.html#zone_statement_grammar
On Thu, 5 Jul 2012, Carlos Ribas wrote:
Hi,
Yes. That?s the problem. I have this statement defined, but it still
try to connect using the wrong IP. Any ideas?
Regards,
-
Carlos Eduardo Ribas
2012/7/5 Jan-Piet Mens
Is it possible to configure my slave to receive zones using an
specific interface from master?
Your slave's zone stanza looks like this:
zone "example.net" {
type slave;
file "...";
masters { 10.1.1.1; };
};
The `masters' statement defines the address of the master server, so you
specify the private IP address of your master here.
-JP
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to
unsubscribe from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: How can I set the interface used to transfer zones?
Hi,
Yes. That´s the problem. I have this statement defined, but it still
try to connect using the wrong IP. Any ideas?
Regards,
-
Carlos Eduardo Ribas
2012/7/5 Jan-Piet Mens
> > Is it possible to configure my slave to receive zones using an
> > specific interface from master?
>
> Your slave's zone stanza looks like this:
>
> zone "example.net" {
> type slave;
> file "...";
> masters { 10.1.1.1; };
> };
>
> The `masters' statement defines the address of the master server, so you
> specify the private IP address of your master here.
>
> -JP
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to
> unsubscribe from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
>
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: How can I set the interface used to transfer zones?
> Is it possible to configure my slave to receive zones using an
> specific interface from master?
Your slave's zone stanza looks like this:
zone "example.net" {
type slave;
file "...";
masters { 10.1.1.1; };
};
The `masters' statement defines the address of the master server, so you
specify the private IP address of your master here.
-JP
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
How can I set the interface used to transfer zones?
Hello All, I´m getting messages like this in the log of my slave: 05-Jul-2012 08:32:48.395 general: info: zone example.com/IN/external: refresh: retry limit for master 143.X.X.X#53 exceeded (source 0.0.0.0#0) 05-Jul-2012 08:33:47.860 general: info: zone example.com/IN/internal: refresh: retry limit for master 143.X.X.X#53 exceeded (source 0.0.0.0#0) I have two slaves. One needs to connect with master using private IP and the other using public IP. In the example above, the slave must receive zones using the private IP from master instead of public IP. Is it possible to configure my slave to receive zones using an specific interface from master? Regards, - Carlos Eduardo Ribas ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
