nsupdate problem after DNSSEC

2011-01-05 Thread Michelle Konzack
I have update my dns1 to DNSSEC and now I have two probems... 1) dns2 does not more update 2) nsupdate from my admin website does not more work and give me an ExitStatus 2. Unfortunately the manpage does not tell me what 2 is. But I assume it hast the same problem like dns2 Can

Managing local and remote domains

2011-01-05 Thread Fidel Viegas
Hi everyone! First and foremost, Happy New Year! Secondly, this is my first post in this list and my first question is part technical, part administrative. Basically, I have hosted a webserver with a hosting company, who also manages my domain. Now, I have decided to setup a local mail server

Re: nsupdate problem after DNSSEC upgrade

2011-01-05 Thread Michelle Konzack
Note: My nsupdate script us an autogenerated file like: if ($_GET['nsupdate'] == 'on') { $tmp_file = tempnam('/tmp', 'tdphp-vserver.'); chmod($tmp_file, 0700); $fh = fopen($tmp_file, 'a'); fwrite($fh, server dns1.tamay-dogan.net\n);

Re: enable a dynamic zone

2011-01-05 Thread Phil Mayers
On 01/05/2011 03:32 AM, Paul Ooi Cong Jen wrote: Hi, Nope. Dynamic zone require keys exchange for zone transfer. This is not correct. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users

Re: Managing local and remote domains

2011-01-05 Thread Sten Carlsen
My method for solving this problem is to have a local DNS with two views: - internal view (recursing), responding to internal clients with local addresses - external view (not recursing), that is used as a hidden master for my DNS-provider No forwarding, the local server does all its own

Re: enable a dynamic zone

2011-01-05 Thread Phil Mayers
On 01/05/2011 03:01 AM, p...@mail.nsbeta.info wrote: Hello, When adding a statement of something like: allow-update { 127.0.0.1; }; to the zone configuration, this zone will become a dynamic zone, is it? Yes. You can also do: allow-update { key NAME; }; ...and in newer versions of bind

Re: nsupdate problem after DNSSEC

2011-01-05 Thread Phil Mayers
On 01/05/2011 08:09 AM, Michelle Konzack wrote: I have update mydns1 to DNSSEC and now I have two probems... Do you mean you have signed your zone? If so, you are aware that bind requires the zone-signing key to be available in order to perform updates - like this: zone $name { type

Re: enable a dynamic zone

2011-01-05 Thread Sten Carlsen
Maybe just a detail without much significance. Will the zone become dynamic when you enable updates OR when you have actually done the first update - i.e. created the .jnl file? On 05/01/11 10:15, Phil Mayers wrote: On 01/05/2011 03:01 AM, p...@mail.nsbeta.info wrote: Hello, When adding a

Re: enable a dynamic zone

2011-01-05 Thread Phil Mayers
On 01/05/2011 11:45 AM, Sten Carlsen wrote: Maybe just a detail without much significance. Will the zone become dynamic when you enable updates OR when you have actually done the first update - i.e. created the .jnl file? A dynamic zone is a zone that allows dynamic updates, so the former.

Re: nsupdate problem after DNSSEC

2011-01-05 Thread Michelle Konzack
Hello Phil Mayers, Am 2011-01-05 09:19:11, hacktest Du folgendes herunter: Do you mean you have signed your zone? Yes If so, you are aware that bind requires the zone-signing key to be available in order to perform updates - like this: zone $name { type master; allow-update { ... };

Re: bind slave not get DNS update

2011-01-05 Thread Robert Spangler
On Tuesday 04 January 2011 20:50, Steve Zeng wrote: I don't have NS record for both of the slaves (windows DNS slave and Linux DNS slave). I use also-notify and it works for Windows DNS slave. But not for BIND/Linux. Is SELinux running on this system? I seen you are running CentOS and in

RE: bind slave not get DNS update

2011-01-05 Thread Steve Zeng
Rndc transfer (initialized at the slave side) works fine... Steve -Original Message- From: Paul Ooi Cong Jen [mailto:paul...@takizo.com] Sent: Tuesday, January 04, 2011 6:01 PM To: Steve Zeng Cc: Robert Spangler; bind-users@lists.isc.org Subject: Re: bind slave not get DNS update

nslookup Got recursion not available from... trying next server

2011-01-05 Thread vr
I'm having a query problem and hope I'm at the right mailing list... I get a recursion not available message intermittently when using nslookup. The message will appear on the first query, presumably to un-cached IP/hostname and subsequent queries to the same IP/hostname will succeed without

Re: nslookup Got recursion not available from... trying next server

2011-01-05 Thread Niall O'Reilly
On 05/01/11 21:36, vr wrote: I'm having a query problem and hope I'm at the right mailing list... Formally, probably not, since what you describe isn't a BIND issue. That said, the people on this list are likely among those who can best give you helpful advice. I get a

Re: bind slave not get DNS update

2011-01-05 Thread Niall O'Reilly
On 05/01/11 01:50, Steve Zeng wrote: I don't have NS record for both of the slaves (windows DNS slave and Linux DNS slave). I use also-notify and it works for Windows DNS slave. But not for BIND/Linux. On 05/01/11 19:56, Steve Zeng wrote: Rndc transfer (initialized at the slave side) works

RE: bind slave not get DNS update

2011-01-05 Thread Steve Zeng
Tcpdump on master(A.A.A.A) shows the following: 23:59:54.788272 IP A.A.A.A.domain C.C.C.C.domain: 26512 notify [b23=0x2400] [1a] SOA? mydomain.com. (72) 23:59:54.788898 IP C.C.C.C.domain A.A.A.A.domain: 26512 notify Refused- 0/0/0 (26) So it looks like master did sent notify out but

Re: bind slave not get DNS update

2011-01-05 Thread Mark Andrews
In message 8b5c6f575422414aa91b46c454126b6c02666af...@exchmvs.exchange.airg, Steve Zeng writes: Tcpdump on master(A.A.A.A) shows the following: And what source address does the slave see? 23:59:54.788272 IP A.A.A.A.domain C.C.C.C.domain: 26512 notify [b23=0x240 0] [1a] SOA?

RE: bind slave not get DNS update

2011-01-05 Thread Steve Zeng
On slave, it sees the public IPs. tcpdump shows: 01:38:51.035945 IP A.A.A.A.domain C.C.C.C.domain: 7545 notify [b23=0x2400] [1a] SOA? airg.com. (72) 01:38:51.036174 IP C.C.C.C.domain A.A.A.A.domain: 7545 notify Refused- 0/0/0 (26) Steve -Original Message- From: Mark Andrews

AUTO: Nicht erreichbar bis 11.1.2011 / Out of Office until 11.1.2011

2011-01-05 Thread Joachim Strohbach
Ich bin abwesend und kehre am 12.01.2011 zurück. Danke für Ihre E-Mail-Nachricht. Ich bin bis 11. Januar 2011 nicht im Büro. In dringenden Angelegenheiten kontaktieren Sie bitte DENIC IT-Services (E-Mail: i...@denic.de, Tel: (069) 27235-160 oder -250). - Thank you for your email message. I