Date: Mon, 12 Feb 2001 22:37:15 -0500 (EST) From: Mitch Collinsworth <mitch@ccmr.cornell.edu> To: Corey Ralph <corey.ralph@datafast.net.au> Cc: freebsd-isp@freebsd.org Subject: Re: Bind problems Message-ID: <Pine.LNX.4.10.10102122230210.22516-100000@ruby.ccmr.cornell.edu> In-Reply-To: <20010213140321.A99212@corey.datafast.net.au>
next in thread | previous in thread | raw e-mail | index | archive | help
This does sound like the same problem Jim Housley just reported, assuming by "unpublished" he means "not yet delegated from the parent zone". And it's worrisome to me since there are several domains here intentionally configured the same way, and which have been running that way happily for a few years now. (Authoritative servers are all secondaries, transferring data from a primary that's not authoritative.) This has the scent of a new "default" security measure that is hopefully overridable with a config option. Time to dig into the bind docs and see what's changed. Or ask on bind-users. -Mitch On Tue, 13 Feb 2001, Corey Ralph wrote: > Most of them aren't yet on the secondary at all. > > I have put them into the named.conf and issued a named.reload. > > They are serving OK from the primary, but aunic require primary and the > secondary to be functioning to delegate a domain. > > Corey > > On Mon, Feb 12, 2001 at 09:50:37PM -0500, Mitch Collinsworth wrote: > > > > Well as you might guess I'm just grasping at straws here. And well, > > I'm running out of straws. How about this. Is the serial number in > > the zone file on the primary greater than the serial number on the > > secondary? > > > > -Mitch > > > > > > On Tue, 13 Feb 2001, Corey Ralph wrote: > > > > > It is running as root. > > > > > > Cheers, > > > Corey > > > > > > On Mon, Feb 12, 2001 at 09:21:50PM -0500, Mitch Collinsworth wrote: > > > > OK, how about checking what user named is running as, and then > > > > checking your zone files and their directory to make sure that > > > > user has read/write access. > > > > > > > > -Mitch > > > > > > > > > > > > On Tue, 13 Feb 2001, Corey Ralph wrote: > > > > > > > > > Mitch, > > > > > > > > > > I originally installed from the freebsd base system, and have done a > > > > > make world to update it before. This time I just applied the binary > > > > > update that was with the advisory. > > > > > > > > > > I think it is using the right .conf though, because it is serving > > > > > queries, just not updating the zones. > > > > > > > > > > Cheers, > > > > > Corey Ralph > > > > > > > > > > On Mon, Feb 12, 2001 at 08:21:36PM -0500, Mitch Collinsworth wrote: > > > > > > Did you install from the freebsd port or from the ISC source? > > > > > > Was your previous install from the same source? They (last time > > > > > > I looked, admittedly a few months back) look in different places > > > > > > for their configuration file. Maybe you're not reading the .conf > > > > > > (or .boot) file you think you are? > > > > > > > > > > > > -Mitch > > > > > > > > > > > > > > > > > > On Tue, 13 Feb 2001, Corey Ralph wrote: > > > > > > > > > > > > > Hi all, > > > > > > > > > > > > > > I am having a problem with one of my nameservers since upgrading bind > > > > > > > after the advisory last week. > > > > > > > > > > > > > > It runs slave for all our zones. It has stopped updating its zone > > > > > > > files. Doing it manually using /usr/libexec/named-xfer works fine. I > > > > > > > tried setting the path to it in the options just incase it was looking > > > > > > > in the wrong place, that didn't help. There are no relevant messages in > > > > > > > the logs. > > > > > > > > > > > > > > Has anybody seen this before? > > > > > > > > > > > > > > Also, I am considering switching to djbdns to avoid this constant > > > > > > > upgrading. Any experiences with this? Would bind 9 be a better choice? > > > > > > > > > > > > > > Cheers, > > > > > > > Corey Ralph > > > > > > > > > > > > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > > > > > with "unsubscribe freebsd-isp" in the body of the message > > > > > > > > > > > > > > > > > > > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.LNX.4.10.10102122230210.22516-100000>