Current time: 11-17-2024, 01:47 AM Hello There, Guest! (LoginRegister)


Post Reply 
Bind setup to allow transfers
Author Message
NIIcK Offline
Junior Member
*

Posts: 43
Joined: Jan 2010
Reputation: 0
Post: #1
Bind setup to allow transfers
Hello,

I know this has been discussed over and over again but I have failed to find a solution to the issue.

To me there is no point in having domains hosted that will only relay on a single master server or on two name servers on the same subnet therefore, if a solution has been found to this issue please help us, the rest of the community Smile

The issue is I can add manual slave entries on a bind server then instruct it to download the zone from a Bind ispCP configured server but all the requests fail with connection refused or permission denied, regardless of what I have added in the named.conf file or the named.conf.options file. I have added:

In the named.conf on each zone
Code:
allow-transfer { xxx.xxx.xxx.xxx; yyy.yyy.yyy.yyy; );
notify YES;
also-notify { xxx.xxx.xxx.xxx; yyy.yyy.yyy.yyy; );
with no success. I get the permission denied message.

In named.conf.options
Code:
allow-transfer { xxx.xxx.xxx.xxx; yyy.yyy.yyy.yyy; );
also-notify { xxx.xxx.xxx.xxx; yyy.yyy.yyy.yyy; );
and I get the same error from the bind ispCP master as above.

I have added the above in both named.conf and named.conf.options ... same result.

In the end, is there a way to set the ispCP bind to allow transfers from slave name servers?

Thank you,

Nick
(This post was last modified: 08-14-2010 06:41 PM by NIIcK.)
08-14-2010 06:37 PM
Visit this user's website Find all posts by this user Quote this message in a reply
kilburn Offline
Development Team
*****
Dev Team

Posts: 2,182
Joined: Feb 2007
Reputation: 34
Post: #2
RE: Bind setup to allow transfers
Well... you are giving the solution yourself. Adding an "allow-transfer" directive to named.conf.options is working properly for me.... Just make sure to restart bind afterwards (make sure to kill all named processes, because sometimes it hands when restarting, leaving old processes left behind and blocking new transfer tries).
(This post was last modified: 08-15-2010 11:36 AM by kilburn.)
08-15-2010 11:35 AM
Visit this user's website Find all posts by this user Quote this message in a reply
tutux Offline
Junior Member
*

Posts: 47
Joined: Sep 2008
Reputation: 0
Post: #3
RE: Bind setup to allow transfers
you have an error in your code:

Code:
also-notify { xxx.xxx.xxx.xxx; yyy.yyy.yyy.yyy; );
allow-transfer { xxx.xxx.xxx.xxx; yyy.yyy.yyy.yyy; );

correct code:

Code:
allow-transfer { xxx.xxx.xxx.xxx; yyy.yyy.yyy.yyy; };
also-notify { xxx.xxx.xxx.xxx; yyy.yyy.yyy.yyy; };
(This post was last modified: 11-15-2010 06:22 PM by tutux.)
11-14-2010 09:41 PM
Find all posts by this user Quote this message in a reply
ephigenie Offline
Project Leader
*******
Administrators

Posts: 1,578
Joined: Oct 2006
Reputation: 15
Post: #4
RE: Bind setup to allow transfers
... and make sure, that the upstream nameservers are listed in the domain records (at least as secondary .. )

You override it a bit with "also-notify" since normally all "slave" dns servers in terms of all ns servers for a domain are notified, if the zone serial changes ...
11-15-2010 05:35 AM
Visit this user's website Find all posts by this user Quote this message in a reply
Post Reply 


Forum Jump:


User(s) browsing this thread: 1 Guest(s)