From owner-freebsd-questions@FreeBSD.ORG Thu Dec 21 19:32:11 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id A9B8416A403 for ; Thu, 21 Dec 2006 19:32:11 +0000 (UTC) (envelope-from derek@computinginnovations.com) Received: from betty.computinginnovations.com (dsl081-227-250.chi1.dsl.speakeasy.net [64.81.227.250]) by mx1.freebsd.org (Postfix) with ESMTP id 3EE7713C43A for ; Thu, 21 Dec 2006 19:32:11 +0000 (UTC) (envelope-from derek@computinginnovations.com) Received: from p28.computinginnovations.com (dhcp-10-20-30-100.computinginnovations.com [10.20.30.100]) (authenticated bits=0) by betty.computinginnovations.com (8.13.6/8.12.11) with ESMTP id kBLJVhGe066242; Thu, 21 Dec 2006 13:31:43 -0600 (CST) Message-Id: <6.0.0.22.2.20061221132035.025ae670@mail.computinginnovations.com> X-Sender: derek@mail.computinginnovations.com X-Mailer: QUALCOMM Windows Eudora Version 6.0.0.22 Date: Thu, 21 Dec 2006 13:31:31 -0600 To: freebsd@alaskaparadise.com, freebsd-questions@freebsd.org From: Derek Ragona In-Reply-To: <200612210722.34306.freebsd@alaskaparadise.com> References: <200612210722.34306.freebsd@alaskaparadise.com> Mime-Version: 1.0 X-ComputingInnovations-MailScanner-Information: Please contact the ISP for more information X-ComputingInnovations-MailScanner: Found to be clean X-ComputingInnovations-MailScanner-From: derek@computinginnovations.com X-Spam-Status: No Content-Type: text/plain; charset="us-ascii"; format=flowed X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: Subject: Re: DNS Slave zone problems X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 21 Dec 2006 19:32:11 -0000 You didn't say what versions of FreeBSD or bind you are running. But here is what I have running . . . named.conf syntax can be fussy. Here is how I have mine setup: ==================== Master running the ip 192.168.1.40 zone "foo.net" { type master; file "m/foo.net"; allow-transfer { 192.168.1.50; 200.200.200.200; }; }; Slave running the ip of either 192.168.1.50 or 200.200.200.200 zone "foo.net" { type slave; file "s/foo.net.bak"; masters { 192.168.1.40; }; }; ==================== On your server be sure to do: ps -ax|grep name and see the named commandline. You may not have the correct named.conf being used, or the wrong user. You may need to adjust or add options to your rc.conf file. If you are running as the wrong user, or within a jail you didn't setup is often the case for permission issues. Be sure your paths to the files are correct. I use relative paths in my named.conf files. -Derek At 10:22 AM 12/21/2006, Beech Rintoul wrote: >I just set up one of my servers as a secondary dns. I put the proper ip >address in the master zones allow transfers. The master is working properly >because the other secondary (afraid.org) is able to x-fer. However I'm >getting a lot of these messages on my secondary: > >Dec 21 01:03:20 stargate named[43710]: dumping master >file: /etc/namedb/tmp-wIEZCDuzlW: open: permission denied >Dec 21 01:03:20 stargate named[43710]: transfer of 'foo.com/IN' from >24.237.XXX.XX#53: failed while receiving responses: permission denied > >Dec 21 00:44:51 stargate named[43710]: dumping master >file: /etc/namedb/tmp-wUerszKGyx: open: permission denied >Dec 21 00:44:51 stargate named[43710]: transfer of 'bar.info/IN' from >24.237.XXX.XX#53: failed while receiving responses: permission denied > >In my slave named config I have: > >zone "foo.com" { > type slave; > masters { > 24.237.XXX.XX; > }; > file "/etc/namedb/foo.com.hosts"; > }; >zone "bar.com" { > type slave; > masters { > 24.237.XXX.XX; > }; > file "/etc/namedb/bar.com.hosts"; > }; > >On my master named.conf I have: > >zone "foo.com" { > type master; > file "/etc/namedb/foo.com.hosts"; > allow-transfer { > 202.157.185.115; > 202.157.182.142; > 66.252.1.255; > 65.74.XXX.XX; > }; > also-notify { > 65.74.103.XXX.XX; > }; > }; >zone "bar.com" { > type master; > file "/etc/namedb/bar.com.hosts"; > allow-transfer { > 202.157.185.115; > 202.157.182.142; > 66.252.1.255; > 65.74.XXX.XX; > }; > also-notify { > 65.74.XXX.XX; > }; > }; > > >I tried playing with file permissions, but it doesn't help. Does anyone >have a >suggestion? > >Beech > > >-- >--------------------------------------------------------------------------------------- >Beech Rintoul - Sys. Administrator - beech@alaskaparadise.com >/"\ ASCII Ribbon Campaign | Alaska Paradise Travel >\ / - NO HTML/RTF in e-mail | 201 East 9Th Avenue Ste.310 > X - NO Word docs in e-mail | Anchorage, AK 99501 >/ \ - Please visit Alaska Paradise - http://www.alaskaparadise.com >--------------------------------------------------------------------------------------- > > > > > > > > > > > -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. MailScanner thanks transtec Computers for their support.