LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices


Reply
  Search this Thread
Old 08-04-2013, 08:17 AM   #1
hrmn
LQ Newbie
 
Registered: Aug 2012
Posts: 17

Rep: Reputation: Disabled
DNS bind slave master comunication problem


hello, i am trying to make slave dns server, when i start it give following error in /var/named/data/named.run file. thank you in advanced please help to comunication

int.com/IN: refresh: failure trying master 172.16.71.130#53 (source 0.0.0.0#0): operation cancled

SLAVE "/var/named/data/named.run" contain this content

Quote:
zone 0.in-addr.arpa/IN: loaded serial 0
zone 1.0.0.127.in-addr.arpa/IN: loaded serial 0
zone 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 0
zone localhost.localdomain/IN: loaded serial 0
zone localhost/IN: loaded serial 0
managed-keys-zone ./IN: loaded serial 9
running
received control channel command 'reload'
loading configuration from '/etc/named.conf'
reading built-in trusted keys from file '/etc/named.iscdlv.key'
using default UDP/IPv4 port range: [1024, 65535]
using default UDP/IPv6 port range: [1024, 65535]
not listening on any interfaces
sizing zone task pool based on 7 zones
using built-in DLV key for view _default
Warning: 'empty-zones-enable/disable-empty-zone' not set: disabling RFC 1918 empty zones
reloading configuration succeeded
reloading zones succeeded
zone int.com/IN: refresh: failure trying master 172.16.71.130#53 (source 0.0.0.0#0): operation canceled

SLAVE "/etc/named.conf" content
Quote:
options {
listen-on port 53 { 172.16.71.130; };
# listen-on-v6 port 53 { ::1; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
allow-query { localhost; 172.16.71.130; };
recursion yes;

dnssec-enable yes;
dnssec-validation yes;
dnssec-lookaside auto;

/* Path to ISC DLV key */
bindkeys-file "/etc/named.iscdlv.key";

managed-keys-directory "/var/named/dynamic";
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};

zone "." IN {
type hint;
file "named.ca";
};

include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";

zone "int.com" IN {
type slave;
file "bk.int.com";
masters {
172.16.71.130; };
};


Master /etc/named.conf file is


Quote:
options {
listen-on port 53 { 127.0.0.1; 172.16.71.131; };
# listen-on-v6 port 53 { ::1; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
allow-query { localhost; 172.16.71.131; };
recursion yes;
allow-transfer { 172.16.71.131; };
dnssec-enable yes;
dnssec-validation yes;
dnssec-lookaside auto;

/* Path to ISC DLV key */
bindkeys-file "/etc/named.iscdlv.key";

managed-keys-directory "/var/named/dynamic";
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};

zone "." IN {
type hint;
file "named.ca";
};

include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";



zone "int.com" IN {
type master;
file "db.int.com";
};
Master /var/named/db.int.com file is


Quote:
$TTL 3h

int.com. IN SOA int.com. harman.int.com. (
79 ;serial
2h ; refresh
4h ; retry
5w ; ignore
3h ; cache TTL
)

;
; NS server
;
int.com. IN NS int.com.
int.com. IN NS client.int.com.
;
;
int.com. IN A 172.16.71.128
client.int.com. IN A 172.16.71.131
h3.int.com. IN A 172.16.71.130
h4.int.com. IN A 172.16.71.132

Last edited by hrmn; 08-04-2013 at 08:37 AM. Reason: adding salve and master configuration files
 
Old 08-04-2013, 09:28 AM   #2
hrmn
LQ Newbie
 
Registered: Aug 2012
Posts: 17

Original Poster
Rep: Reputation: Disabled
Any help any suggestion,
any error into these configuration file, OPERATING SYSTEM is CENTOS
 
Old 08-04-2013, 10:35 AM   #3
SAbhi
Member
 
Registered: Aug 2009
Location: Bangaluru, India
Distribution: CentOS 6.5, SuSE SLED/ SLES 10.2 SP2 /11.2, Fedora 11/16
Posts: 665

Rep: Reputation: Disabled
I am not an expert on DNS but saw your configuration:

So Is your master working ? i guess not, if yes not correctly.

The entries in mater:
Quote:
allow-query { localhost; 172.16.71.131; }; #should allow query from master IP
recursion yes;
allow-transfer { 172.16.71.131; }; #DNS slave IP's should go here

see my comments in line above.

you can change the entry like this, restart the services and then try starting the slave:
Code:
allow-query { localhost; 172.16.71.130; };   
allow-transfer { localhost; 172.16.71.131; };

Last edited by SAbhi; 08-04-2013 at 10:37 AM.
 
Old 08-04-2013, 10:47 AM   #4
hrmn
LQ Newbie
 
Registered: Aug 2012
Posts: 17

Original Poster
Rep: Reputation: Disabled
Thank you for your Response, but with this also it can't working.
my master server working will and resolves the queris.. problem only in slave transfer.... My firewall also off..
thank you for your reply
 
Old 08-04-2013, 11:07 PM   #5
SAbhi
Member
 
Registered: Aug 2009
Location: Bangaluru, India
Distribution: CentOS 6.5, SuSE SLED/ SLES 10.2 SP2 /11.2, Fedora 11/16
Posts: 665

Rep: Reputation: Disabled
well then can you share the output from the log files; when you try to start the slave it should return errors and the same should be logged in below log:
Code:
tail -n 20 /var/log/messages
also see if these links can help you:
http://www.tldp.org/LDP/solrhe/Secur...p21sec166.html
http://beginlinux.com/blog/2010/06/b...ve-zone-files/
 
1 members found this post helpful.
Old 08-06-2013, 12:57 PM   #6
hrmn
LQ Newbie
 
Registered: Aug 2012
Posts: 17

Original Poster
Rep: Reputation: Disabled
thank you for your reply, i am also think this new configuration that you send is correct, but i also occuring that error again...... don't know what exactly problem is this..........thank you for your reply, please send further deltail if you have any....
d
 
Old 08-06-2013, 01:23 PM   #7
hrmn
LQ Newbie
 
Registered: Aug 2012
Posts: 17

Original Poster
Rep: Reputation: Disabled
i can used TELNET to check the connectivity at port 53,
that can showed connection refused, even when my firewall also turned off.
i can also trying on another port 22 tha worked correctly...
thank you for your suggestion, any suggestion about this
 
Old 08-06-2013, 08:45 PM   #8
SAbhi
Member
 
Registered: Aug 2009
Location: Bangaluru, India
Distribution: CentOS 6.5, SuSE SLED/ SLES 10.2 SP2 /11.2, Fedora 11/16
Posts: 665

Rep: Reputation: Disabled
Quote:
Originally Posted by hrmn View Post
i can used TELNET to check the connectivity at port 53,
that can showed connection refused, even when my firewall also turned off.
That may be because the service named is not started up.

so can you give me the output of the error logs I asked in last post?
also give me the output from the command when you try to start the service..then we can probably have an idea what is going on ?
 
Old 08-07-2013, 03:02 AM   #9
hrmn
LQ Newbie
 
Registered: Aug 2012
Posts: 17

Original Poster
Rep: Reputation: Disabled
content of file "/var/log/messages" is
Quote:

Aug 3 14:23:45 localhost named[670]: command channel listening on 127.0.0.1#953
Aug 3 14:23:45 localhost named[670]: command channel listening on ::1#953
Aug 3 14:23:45 localhost named[670]: zone 0.in-addr.arpa/IN: loaded serial 0
Aug 3 14:23:45 localhost named[670]: zone 1.0.0.127.in-addr.arpa/IN: loaded serial 0
Aug 3 14:23:45 localhost named[670]: zone 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 0
Aug 3 14:23:45 localhost named[670]: zone localhost.localdomain/IN: loaded serial 0
Aug 3 14:23:45 localhost named[670]: zone localhost/IN: loaded serial 0
Aug 3 14:23:45 localhost named[670]: managed-keys-zone ./IN: loaded serial 27
Aug 3 14:23:45 localhost named[670]: running
Aug 3 14:23:51 localhost named[670]: received control channel command 'reload'
Aug 3 14:23:51 localhost named[670]: loading configuration from '/etc/named.conf'
Aug 3 14:23:51 localhost named[670]: reading built-in trusted keys from file '/etc/named.iscdlv.key'
Aug 3 14:23:51 localhost named[670]: using default UDP/IPv4 port range: [1024, 65535]
Aug 3 14:23:51 localhost named[670]: using default UDP/IPv6 port range: [1024, 65535]
Aug 3 14:23:51 localhost named[670]: sizing zone task pool based on 7 zones
Aug 3 14:23:51 localhost named[670]: using built-in DLV key for view _default
Aug 3 14:23:51 localhost named[670]: Warning: 'empty-zones-enable/disable-empty-zone' not set: disabling RFC 1918 empty zones
Aug 3 14:23:51 localhost named[670]: reloading configuration succeeded
Aug 3 14:23:51 localhost named[670]: reloading zones succeeded
Aug 3 14:23:51 localhost named[670]: zone int.com/IN: refresh: failure trying master 172.16.71.130#53 (source 0.0.0.0#0): operation canceled
 
Old 08-08-2013, 10:42 AM   #10
hrmn
LQ Newbie
 
Registered: Aug 2012
Posts: 17

Original Poster
Rep: Reputation: Disabled
i don't how it can be worked but this can be working know, i think this can by retry time error or wait for retry time value to start

---------- Post added 08-08-13 at 09:13 PM ----------

where can i find the data got by transfer....????
 
Old 08-09-2013, 12:35 AM   #11
SAbhi
Member
 
Registered: Aug 2009
Location: Bangaluru, India
Distribution: CentOS 6.5, SuSE SLED/ SLES 10.2 SP2 /11.2, Fedora 11/16
Posts: 665

Rep: Reputation: Disabled
Quote:
Originally Posted by hrmn

Aug 3 14:23:51 localhost named[670]: using default UDP/IPv6 port range: [1024, 65535]
Aug 3 14:23:51 localhost named[670]: sizing zone task pool based on 7 zones
Aug 3 14:23:51 localhost named[670]: using built-in DLV key for view _default
Aug 3 14:23:51 localhost named[670]: Warning: 'empty-zones-enable/disable-empty-zone' not set: disabling RFC 1918 empty zones
Aug 3 14:23:51 localhost named[670]: reloading configuration succeeded
Aug 3 14:23:51 localhost named[670]: reloading zones succeeded
Aug 3 14:23:51 localhost named[670]: zone int.com/IN: refresh: failure trying master 172.16.71.130#53 (source 0.0.0.0#0): operation canceled
No its not, what is in your /etc/resolv.conf
are you using ipv6 too

Last edited by SAbhi; 08-09-2013 at 12:39 AM.
 
Old 08-09-2013, 02:20 PM   #12
hrmn
LQ Newbie
 
Registered: Aug 2012
Posts: 17

Original Poster
Rep: Reputation: Disabled
no i prefrebly don't use ipv6, but if it is activated i don't know about that.
how can i check ipv6 is on or off...? i don't know about ipv6 version......

Configuration of resolve.conf file is:
Quote:
# Generated by NetworkManager
domain localdomain
search localdomain
nameserver 172.16.71.2
 
Old 08-11-2013, 12:14 AM   #13
SAbhi
Member
 
Registered: Aug 2009
Location: Bangaluru, India
Distribution: CentOS 6.5, SuSE SLED/ SLES 10.2 SP2 /11.2, Fedora 11/16
Posts: 665

Rep: Reputation: Disabled
Quote:
named.conf file:
masters {
172.16.71.130; };

Zone file:
; NS server
;
int.com. IN NS int.com.
int.com. IN NS client.int.com.
;
;
int.com. IN A 172.16.71.128


resolv.conf:

search localdomain
nameserver 172.16.71.2
Do you still think you are doing it right ?

your master is something else, Nameserver is somthing else and resolv.conf entry is something else.
I will strongly suggest to read slave configuration thoroughly before moving ahead.[COLOR="Silver"]

Last edited by SAbhi; 08-11-2013 at 12:16 AM.
 
1 members found this post helpful.
Old 08-12-2013, 12:06 AM   #14
hrmn
LQ Newbie
 
Registered: Aug 2012
Posts: 17

Original Poster
Rep: Reputation: Disabled
Yes you write correct, this was helpful to run named service and finding nameserver.... with resolve.conf file.....Thank you for your help this can know work correctly. I will be post new thread later with new problem. Please send me your mail id for further query if i need. thank you..
 
Old 08-12-2013, 12:21 AM   #15
SAbhi
Member
 
Registered: Aug 2009
Location: Bangaluru, India
Distribution: CentOS 6.5, SuSE SLED/ SLES 10.2 SP2 /11.2, Fedora 11/16
Posts: 665

Rep: Reputation: Disabled
that sounds good.
you can post your queries here, i am always available on LQ, its my fav place to learn + here you might be helping other people too who are facing similar issues.
Please mark the thread as Solved if this is fixed.

Last edited by SAbhi; 08-12-2013 at 12:37 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
bind Views with Master and Slave fantasygoat Linux - Server 6 07-08-2014 12:47 AM
BIND Slave server not getting new records from master..!! GeorgeSKJ Linux - Server 2 07-16-2013 11:58 PM
Bind Master > Slave not updating ACDII Linux - Server 6 06-11-2009 04:24 PM
DNS BIND Zone transfer fails from Master to Slave ALInux Linux - Networking 0 08-28-2007 05:19 AM
Tranferring Zones, Master to Slave, DNS - BIND newpylong Linux - Networking 0 09-02-2004 08:01 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 07:10 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration