DNS Transfer

D

Danny

Verified User
Joined
Jan 15, 2008
Messages
39
I installed directadmin on centos 5.2 and setting the server as a DNS server primary .. I have another server with windows and I would like to work from secondary DNS server

How do I edit the directadmin (bind) in an optimal way to allow the transfer of areas?

Thank you
 
This is a volunteer forum. Please give at least 24 hours before kicking your post to the top again.

This may help.

This may be simpler.

I found this on an hp site; it appears to be true on the version of BIND working on our servers:
allow-transfer
Specifies which hosts are allowed to receive zone transfers from the server. You can also specify the allow-transfer option in the zone statement, in which case it overrides the options allow-transfer statement. If not specified, the default is to allow transfers from all hosts.
Click to expand...

Jeff
 
Ok the transfer works correctly but the secondary server is not automatically notified ..
When I edit a record by DirectAdmin DNS server secondary must manually reload the zone ... This is my file named.conf


// generated by named-bootconf.pl

options {
directory "/var/named";
/*
* If there is a firewall between you and nameservers you want
* to talk to, you might need to uncomment the query-source
* directive below. Previous versions of BIND always asked
* questions using port 53, but BIND 8.1 uses an unprivileged
* port by default.
*/
// query-source address * port 53;

allow-transfer { 192.168.0.2; };
allow-notify { 192.168.0.2; };
allow-recursion {none; };
};

//
// a caching only nameserver config
//
controls {
inet 127.0.0.1 allow { localhost; } keys { rndckey; };
};
zone "." IN {
type hint;
file "named.ca";
};

zone "localhost" IN {
type master;
file "localhost.zone";
allow-update { none; };
};

zone "0.0.127.in-addr.arpa" IN {
type master;
file "named.local";
allow-update { none; };
};

include "/etc/rndc.key";
 
My first link is rather complete, though quite technical.

Your example zone file is of a cacheing-only nameserver; a cacheing-only nameserver cannot act as a slave.

Jeff
 
The sample file is on the primary server .. the slave server mounts SimpleDns plus on windows ..

How do I change the primary way in which notifies the secondary?

I tried with the options allow-transfer - allow-notify it does not work ..
 
You haven't given any examples of specific domains that don't work, and the nameserver IP#s, both of which are required for any of us to do any testing for you.

Have you set up slave domains on SimpleDNS? You probably need to do that.

Jeff
 
IP primary nameserver: 151.1.233.253
IP secondary nameserver: 151.1.233.249

Domain: vbulletin-hosting.com

NS1: ns1.vbulletin-hosting.com
NS2: ns2.vbulletin-hosting.com


The primary nameserver contains directadmin with Bind .. When I upgrade the areas from the control panel, the primary server fails to notify the secondary (with simpledns). To update the areas of secondary must recharge zone manually or wait until the end ..

The simpledns plus is set correctly, the problem is somehow bind configuration can not understand what

Thank you
 
This is my log in the primary server:
Jan 5 03:19:02 alpha named[3131]: starting BIND 9.3.3rc2 -u named
Jan 5 03:19:02 alpha named[3131]: found 4 CPUs, using 4 worker threads
Jan 5 03:19:02 alpha named[3131]: loading configuration from '/etc/named.conf'
Jan 5 03:19:02 alpha named[3131]: listening on IPv4 interface lo, 127.0.0.1#53
Jan 5 03:19:02 alpha named[3131]: listening on IPv4 interface eth0, 151.1.233.253#53
Jan 5 03:19:02 alpha named[3131]: listening on IPv4 interface eth1, 192.168.0.5#53
Jan 5 03:19:02 alpha named[3131]: command channel listening on 127.0.0.1#953
Jan 5 03:19:02 alpha named[3131]: zone 0.0.127.in-addr.arpa/IN: loaded serial 1997022700
Jan 5 03:19:02 alpha named[3131]: zone vbulletin-hosting.com/IN: loaded serial 2009010523
Jan 5 03:19:02 alpha named[3131]: zone villavallelonga.info/IN: loaded serial 2009010501
Jan 5 03:19:02 alpha named[3131]: zone mmorpg.it/IN: loaded serial 2009010209
Jan 5 03:19:02 alpha named[3131]: zone localhost/IN: loaded serial 42
Jan 5 03:19:02 alpha named[3131]: running
Jan 5 03:19:02 alpha named[3131]: zone vbulletin-hosting.com/IN: sending notifies (serial 2009010523)
Jan 5 03:19:02 alpha named[3131]: zone villavallelonga.info/IN: sending notifies (serial 2009010501)
Jan 5 03:19:02 alpha named[3131]: zone mmorpg.it/IN: sending notifies (serial 2009010209)
Click to expand...

The primary server notifies the slave but the slave don't upgrade automatically the zones of my domains..

I have other two server whit windows server 2003 and work correctly.. The proble is whit linux server and Directadmin installed..

Any suggestions?

Thanks
 
Are the serial numbers being updated when you make dns changes?
 
It is the serial number on the primary changes to any update ..


A question, but the DirectAdmin instantly updates the serial? Because when I change a zone change to /var/log/messagess appears after 20/30 seconds
 
Last edited:
Danny,

DirectAdmin, to safely update in a multi-user environment, updates DNS through the task queue so two users can't attempt updates at the same time. The task queue script runs every minute.

Jeff
 
Danny, everything looks good. Make sure that on both your windows and linux servers port 53 is opened for both TCP/IP and for UDP.

If that doesn't resolve it, then, if you have a different linux box (besides the one you're using for ns1), then shell in and do:
Code: 
$ dig @ns1.vbulletin-hosting.com vbulletin-hosting.com axfr
and post your result.

Jeff
 
This is the results

[root@alpha ~]# dig @ns1.vbulletin-hosting.com vbulletin-hosting.com axfr

; <<>> DiG 9.3.3rc2 <<>> @ns1.vbulletin-hosting.com vbulletin-hosting.com axfr
; (1 server found)
;; global options: printcmd
vbulletin-hosting.com. 14400 IN SOA ns1.vbulletin-hosting.com. hostmaster.vbulletin-hosting.com. 2009010542 14400 3600 1209600 86400
vbulletin-hosting.com. 14400 IN TXT "v=spf1 a mx ip4:151.1.233.253 ~all"
vbulletin-hosting.com. 14400 IN MX 10 mail.vbulletin-hosting.com.
vbulletin-hosting.com. 14400 IN A 151.1.233.253
vbulletin-hosting.com. 14400 IN NS ns1.vbulletin-hosting.com.
vbulletin-hosting.com. 14400 IN NS ns2.vbulletin-hosting.com.
vbulletin-hosting.com. 14400 IN NS ns3.vbulletin-hosting.com.
*.vbulletin-hosting.com. 14400 IN A 151.1.233.253
alpha.vbulletin-hosting.com. 14400 IN A 151.1.233.253
ftp.vbulletin-hosting.com. 14400 IN A 151.1.233.253
mail.vbulletin-hosting.com. 14400 IN A 151.1.233.253
ns1.vbulletin-hosting.com. 14400 IN A 151.1.233.253
ns2.vbulletin-hosting.com. 14400 IN A 151.1.233.249
ns3.vbulletin-hosting.com. 14400 IN A 62.149.198.46
pop.vbulletin-hosting.com. 14400 IN A 151.1.233.253
sms.vbulletin-hosting.com. 14400 IN CNAME sms.tol.it.
smtp.vbulletin-hosting.com. 14400 IN A 151.1.233.253
www.vbulletin-hosting.com. 14400 IN A 151.1.233.253
vbulletin-hosting.com. 14400 IN SOA ns1.vbulletin-hosting.com. hostmaster.vbulletin-hosting.com. 2009010542 14400 3600 1209600 86400
;; Query time: 0 msec
;; SERVER: 151.1.233.253#53(151.1.233.253)
;; WHEN: Mon Jan 5 19:02:59 2009
;; XFR size: 19 records (messages 1)
 
This proves that linux will send a transfer to the machine on which you entered that command. So my guess is that the problem is with your Windows nameserver. Do you limit transfers anywhere in your named.conf file? If so, is the IP# of your Windows nameserver allowed to get transfers?

Jeff
 
Problem solved .. was a problem concerning the records of the host domain

now I have a small problem .. I have 3 nameserver:

ns1.vbulletin-Hosting.com
ns2.vbulletin-Hosting.com
ns3.vbulletin-Hosting.com

ns1.vbulletin-Hosting.com warn other 2 of changes in the area .. ns3 find server error messages for attempted notification area by the server ns2 despite the named.conf of ns2 there is no reference to the 3 .. how is it possible?
 
You must log in or register to reply here.
Back
Top