Re: Update RPZ zone records

2018-01-24 Thread Anvar Kuchkartaev via bind-users 
it worked!!! finally thank you for help. It was the directory permission 
issue causing dns to SERVFAIL



On 25/01/18 01:40, Mark Andrews wrote:

Look at the sever’s logs.


On 25 Jan 2018, at 11:39 am, Anvar Kuchkartaev  wrote:

I updated nsuptate.txt and added .rpz to the end of the record now SERVFAIL 
happened

nsupdate.txt:

server localhost
zone rpz
update add 32.213.60.86.188.rpz-client-ip.rpz60CNAME
rpz-passtrhu.
show
send



command result:

Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id:  0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; ZONE SECTION:
;rpz.INSOA

;; UPDATE SECTION:
32.213.60.86.188.rpz-client-ip.rpz. 60 IN CNAMErpz-passtrhu.

update failed: SERVFAIL




On 24/01/18 22:46, Mark Andrews wrote:

  Nsupdate treats all names as absolute so you need to add the .rpz to the end.



On 25 Jan 2018, at 08:19, Anvar Kuchkartaev via bind-users 

  wrote:

Hello,

I am trying to update RPZ zone records dynamically using nsupdate. But 
unfortunately I am facing with NOTZONE option.

nsupdate -k /etc/rndc.key < nsupdate.txt

Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id:  0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; ZONE SECTION:
;rpz.INSOA

;; UPDATE SECTION:
32.213.60.86.188.rpz-client-ip.60 INCNAME rpz-passtrhu.

update failed: NOTZONE


nsupdate.txt:

server localhost
zone rpz
update add 32.213.60.86.188.rpz-client-ip.60CNAME rpz-passtrhu.
show
send


my rpz zone:

zone "rpz" IN {
 type master;
 file "named.rpz";
 allow-query { localhost; };
 update-policy {
 grant rndc-key zonesub ANY;
 };
};

Any help will be greatly appreciated,

--
Anvar Kuchkartaev

an...@aegisnet.eu


___
Please visit
https://lists.isc.org/mailman/listinfo/bind-users
  to unsubscribe from this list

bind-users mailing list

bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
--
Anvar Kuchkartaev

an...@aegisnet.eu


--
Anvar Kuchkartaev
an...@aegisnet.eu

___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Update RPZ zone records

2018-01-24 Thread Mark Andrews 
Look at the sever’s logs.

> On 25 Jan 2018, at 11:39 am, Anvar Kuchkartaev  wrote:
> 
> I updated nsuptate.txt and added .rpz to the end of the record now SERVFAIL 
> happened
> 
> nsupdate.txt:
> 
> server localhost
> zone rpz
> update add 32.213.60.86.188.rpz-client-ip.rpz60CNAME
> rpz-passtrhu.
> show
> send
> 
> 
> 
> command result:
> 
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id:  0
> ;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; ZONE SECTION:
> ;rpz.INSOA
> 
> ;; UPDATE SECTION:
> 32.213.60.86.188.rpz-client-ip.rpz. 60 IN CNAMErpz-passtrhu.
> 
> update failed: SERVFAIL
> 
> 
> 
> 
> On 24/01/18 22:46, Mark Andrews wrote:
>>  Nsupdate treats all names as absolute so you need to add the .rpz to the 
>> end. 
>> 
>> 
> 
> On 25 Jan 2018, at 08:19, Anvar Kuchkartaev via bind-users 
> 
>  wrote:
> 
> Hello,
> 
> I am trying to update RPZ zone records dynamically using nsupdate. But 
> unfortunately I am facing with NOTZONE option.
> 
> nsupdate -k /etc/rndc.key < nsupdate.txt
> 
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id:  0
> ;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; ZONE SECTION:
> ;rpz.INSOA
> 
> ;; UPDATE SECTION:
> 32.213.60.86.188.rpz-client-ip.60 INCNAME rpz-passtrhu.
> 
> update failed: NOTZONE
> 
> 
> nsupdate.txt:
> 
> server localhost
> zone rpz
> update add 32.213.60.86.188.rpz-client-ip.60CNAME rpz-passtrhu.
> show
> send
> 
> 
> my rpz zone:
> 
> zone "rpz" IN {
> type master;
> file "named.rpz";
> allow-query { localhost; };
> update-policy {
> grant rndc-key zonesub ANY;
> };
> };
> 
> Any help will be greatly appreciated,
> 
> -- 
> Anvar Kuchkartaev
> 
> an...@aegisnet.eu
> 
> 
> ___
> Please visit 
> https://lists.isc.org/mailman/listinfo/bind-users
>  to unsubscribe from this list
> 
> bind-users mailing list
> 
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
> -- 
> Anvar Kuchkartaev 
> 
> an...@aegisnet.eu 

-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742  INTERNET: ma...@isc.org

___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Update RPZ zone records

2018-01-24 Thread Anvar Kuchkartaev via bind-users 
I updated nsuptate.txt and added .rpz to the end of the record now 
SERVFAIL happened


nsupdate.txt:

server localhost
zone rpz
update add 32.213.60.86.188.rpz-client-ip.rpz        60 CNAME    
rpz-passtrhu.

show
send


command result:

Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id:  0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; ZONE SECTION:
;rpz.                IN    SOA

;; UPDATE SECTION:
32.213.60.86.188.rpz-client-ip.rpz. 60 IN CNAME    rpz-passtrhu.

update failed: SERVFAIL



On 24/01/18 22:46, Mark Andrews wrote:

  Nsupdate treats all names as absolute so you need to add the .rpz to the end.



On 25 Jan 2018, at 08:19, Anvar Kuchkartaev via 
bind-users  wrote:

Hello,

I am trying to update RPZ zone records dynamically using nsupdate. But 
unfortunately I am facing with NOTZONE option.

nsupdate -k /etc/rndc.key < nsupdate.txt

Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id:  0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; ZONE SECTION:
;rpz.INSOA

;; UPDATE SECTION:
32.213.60.86.188.rpz-client-ip.60 INCNAME rpz-passtrhu.

update failed: NOTZONE


nsupdate.txt:

server localhost
zone rpz
update add 32.213.60.86.188.rpz-client-ip.60CNAME rpz-passtrhu.
show
send


my rpz zone:

zone "rpz" IN {
type master;
file "named.rpz";
allow-query { localhost; };
update-policy {
grant rndc-key zonesub ANY;
};
};

Any help will be greatly appreciated,

--
Anvar Kuchkartaev
an...@aegisnet.eu

___
Please visithttps://lists.isc.org/mailman/listinfo/bind-users  to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

--
Anvar Kuchkartaev
an...@aegisnet.eu

___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Update RPZ zone records

2018-01-24 Thread Anvar Kuchkartaev via bind-users 

this is my named.rpz file:

$TTL 3600
@ IN SOA ns1.hotspots.network. hostmaster.hotspots.network. (
 2015103101 ; serial number YYMMDDNN
 3600   ; refresh 1 hour
 600    ; retry 10 minutes
 86400  ; expiry 1 week
 600 )  ; min ttl 10 minutes

@ IN NS ns1.hotspots.network.

*.silktide.com                    CNAME    ads.hotspots.network.



On 24/01/18 22:57, John Miller wrote:

Hi Anvar,

I see you have your named.conf file listed here; can you please paste
your named.rpz file as well?

John

On Wed, Jan 24, 2018 at 4:19 PM, Anvar Kuchkartaev via bind-users
 wrote:

Hello,

I am trying to update RPZ zone records dynamically using nsupdate. But
unfortunately I am facing with NOTZONE option.

nsupdate -k /etc/rndc.key < nsupdate.txt

Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id:  0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; ZONE SECTION:
;rpz.INSOA

;; UPDATE SECTION:
32.213.60.86.188.rpz-client-ip.60 INCNAME rpz-passtrhu.

update failed: NOTZONE


nsupdate.txt:

server localhost
zone rpz
update add 32.213.60.86.188.rpz-client-ip.60CNAME rpz-passtrhu.
show
send


my rpz zone:

zone "rpz" IN {
 type master;
 file "named.rpz";
 allow-query { localhost; };
 update-policy {
 grant rndc-key zonesub ANY;
 };
};

Any help will be greatly appreciated,



--
Anvar Kuchkartaev
an...@aegisnet.eu

___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Update RPZ zone records

2018-01-24 Thread John Miller 
Hi Anvar,

I see you have your named.conf file listed here; can you please paste
your named.rpz file as well?

John

On Wed, Jan 24, 2018 at 4:19 PM, Anvar Kuchkartaev via bind-users
 wrote:
> Hello,
>
> I am trying to update RPZ zone records dynamically using nsupdate. But
> unfortunately I am facing with NOTZONE option.
>
> nsupdate -k /etc/rndc.key < nsupdate.txt
>
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id:  0
> ;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; ZONE SECTION:
> ;rpz.INSOA
>
> ;; UPDATE SECTION:
> 32.213.60.86.188.rpz-client-ip.60 INCNAME rpz-passtrhu.
>
> update failed: NOTZONE
>
>
> nsupdate.txt:
>
> server localhost
> zone rpz
> update add 32.213.60.86.188.rpz-client-ip.60CNAME rpz-passtrhu.
> show
> send
>
>
> my rpz zone:
>
> zone "rpz" IN {
> type master;
> file "named.rpz";
> allow-query { localhost; };
> update-policy {
> grant rndc-key zonesub ANY;
> };
> };
>
> Any help will be greatly appreciated,
>
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Update RPZ zone records

2018-01-24 Thread Mark Andrews 
 Nsupdate treats all names as absolute so you need to add the .rpz to the end. 

-- 
Mark Andrews

> On 25 Jan 2018, at 08:19, Anvar Kuchkartaev via bind-users 
>  wrote:
> 
> Hello,
> 
> I am trying to update RPZ zone records dynamically using nsupdate. But 
> unfortunately I am facing with NOTZONE option.
> 
> nsupdate -k /etc/rndc.key < nsupdate.txt
> 
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id:  0
> ;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; ZONE SECTION:
> ;rpz.INSOA
> 
> ;; UPDATE SECTION:
> 32.213.60.86.188.rpz-client-ip.60 INCNAME rpz-passtrhu.
> 
> update failed: NOTZONE
> 
> 
> nsupdate.txt:
> 
> server localhost
> zone rpz
> update add 32.213.60.86.188.rpz-client-ip.60CNAME rpz-passtrhu.
> show
> send
> 
> 
> my rpz zone:
> 
> zone "rpz" IN {
> type master;
> file "named.rpz";
> allow-query { localhost; };
> update-policy {
> grant rndc-key zonesub ANY;
> };
> };
> 
> Any help will be greatly appreciated,
> 
> -- 
> Anvar Kuchkartaev
> an...@aegisnet.eu
> 
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
> from this list
> 
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users

___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users