Re: error: 'allow-update' is not allowed in 'slave' zone
Hi Mounika If you connect to a secondary nameserver to accept dynamic zone updates you have to configure on the secondary inside the slave zone section a statement: allow-update-forwarding { dhcp-updates; }; ...where "dhcp-updates" is an ACL (that could be named as you like) that lists the ip of the host that your updates are coming from (probably your DHCP server). It has to be defined in its own section: acl dhcp-updates { 1.2.3.4/32; }; Furthermore you need to make sure the primary accepts the forwarded dynamic updates. You cannot have zone updates on a secondary. Regards, Adrian. In der Nachricht vom Wednesday, 14 February 2024 12:36:04 CET schrieb trgapp16 via bind-users: > Hello, > > I configured Bind 9.18.12 as slave DDNS with dynamic updates from DHCP (ISC > DHCP 4.4) running on the same server (Ubuntu 22.04 server) > > When I run "named-checkconf named.conf", I get the following error > > "named.conf:2018: option 'allow-update' is not allowed in 'slave' zone > 'zonename.com'" > > Following is the named.conf file (part) > > zone "zonename.com" { > type slave; > file "com/zonename/sec.zonename.com"; > masters { > IP address; > }; > allow-update { > key rndc-key; > }; > allow-transfer { > IP address; > }; > }; > > I am clueless what is going wrong. Any help is greatly appreciated > > Thanks in advance, > Mounika signature.asc Description: This is a digitally signed message part. -- Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: error: 'allow-update' is not allowed in 'slave' zone
On 14.02.24 17:06, trgapp16 via bind-users wrote: I configured Bind 9.18.12 as slave DDNS with dynamic updates from DHCP (ISC DHCP 4.4) running on the same server (Ubuntu 22.04 server) When I run "named-checkconf named.conf", I get the following error "named.conf:2018: option 'allow-update' is not allowed in 'slave' zone 'zonename.com'" Following is the named.conf file (part) zone "zonename.com" { type slave; file "com/zonename/sec.zonename.com"; masters { IP address; }; allow-update { key rndc-key; }; allow-transfer { IP address; }; }; I am clueless what is going wrong. Any help is greatly appreciated your nameserver does not update secondary(slave) zones, therefore allow-update does not make sense. you should remove it or replace with allow-update-forwarding so all received updates are forwarded to primary(master) server. -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Linux is like a teepee: no Windows, no Gates and an apache inside... -- Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
error: 'allow-update' is not allowed in 'slave' zone
Hello, I configured Bind 9.18.12 as slave DDNS with dynamic updates from DHCP (ISC DHCP 4.4) running on the same server (Ubuntu 22.04 server) When I run "named-checkconf named.conf", I get the following error "named.conf:2018: option 'allow-update' is not allowed in 'slave' zone 'zonename.com'" Following is the named.conf file (part) zone "zonename.com" { type slave; file "com/zonename/sec.zonename.com"; masters { IP address; }; allow-update { key rndc-key; }; allow-transfer { IP address; }; }; I am clueless what is going wrong. Any help is greatly appreciated Thanks in advance, Mounika ### Please consider the environment and print this email only if necessary . Go Green ### Disclaimer : This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you are not the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. The sender does not accept liability for any errors or omissions in the contents of this message, which arise as a result. -- Open WebMail Project (http://openwebmail.org) -- Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users