[SOLVED] transfer the zone from bind9 to windows server 2008 R2

technicien14 · 12-03-2015, 01:25 PM

hi friends,
I think you can help me.
i configured a dns server (bind9 ) in debian.
here is the configuration i have,
named.conf.local
zone "test.local" {
type master;
file "/var/cache/bind/db.test.local";
allow-update{127.0.0.1;192.168.1.0/24;192.168.1.200;key "secret";};
allow-transfer {192.168.1.106;};
};

zone "1.168.192.in-addr.arpa" {
type master;
file "/var/cache/bind/db.test.rev";
allow-update{127.0.0.1;192.168.1.0/24;192.168.1.200;key "secret";};
};

named.conf

include "/etc/bind/named.conf.options";
include "/etc/bind/named.conf.local";
include "/etc/bind/named.conf.default-zones";
include "/etc/dhcp/cle.key";

named.conf.options
options {
directory "/var/cache/bind";

// If there is a firewall between you and nameservers you want
// to talk to, you may need to fix the firewall to allow multiple
// ports to talk. See http://www.kb.cert.org/vuls/id/800113

// If your ISP provided one or more IP addresses for stable
// nameservers, you probably want to use them as forwarders.
// Uncomment the following block, and insert the addresses replacing
// the all-0's placeholder.

forwarders {
192.168.1.254;8.8.8.8;
};

//========================================================================
// If BIND logs error messages about the root key being expired,
// you will need to update your keys. See https://www.isc.org/bind-keys
//========================================================================
dnssec-validation auto;
allow-transfer {192.168.1.106;};
auth-nxdomain no; # conform to RFC1035
listen-on-v6 { any; };
};

db.test.local

$ORIGIN .
$TTL 604800 ; 1 week
test.local IN SOA testserv1.test.local. test\@hotmail.com. (
165 ; serial
604800 ; refresh (1 week)
86400 ; retry (1 day)
2419200 ; expire (4 weeks)
604800 ; minimum (1 week)
)
NS testserv1.
$ORIGIN test.local.
$TTL 604800 ; 1 week
testserv1 A 192.168.1.200

testtest A 192.168.1.106 ( this is secondary dns which is in windows server 2008 R2 )

after this configuration i created a role dns and configured a dns secondary but bind9 is not tranfering any thing.

i don't know why it is not working? Someenoe please help me

bathory · 12-04-2015, 03:24 AM

Hi,

You need to add a 2nd NS RR for the secondary nameserver of your domain.
Since your zone file has also some minor, errors, you may try the following:

Code:

$TTL 604800 ; 1 week
test.local. IN SOA testserv1.test.local. test.hotmail.com. (
165 ; serial
604800 ; refresh (1 week)
86400 ; retry (1 day)
2419200 ; expire (4 weeks)
604800 ; minimum (1 week)
)
 NS testserv1.test.local.
 NS testserv.test.local.

testserv1 A 192.168.1.200
testtest A 192.168.1.106

Don't forget to increase the serial when doing changes in the master dns zone file(s)

Regards

technicien14 · 12-04-2015, 07:14 AM

Hi,
have modified the db.test.local that you have recommended to me. but now i have anew problem.now in windows server , there a message tell me that the zone is locked. impossible to transfer the zone.
I need to know one thing . is it possible to put a secondary server dns in windows server 2008 R2 fot a master whicj is in debian jesssie (bind9 ) that i am configured.

bathory · 12-04-2015, 03:09 PM

Quote:

Originally Posted by technicien14

Hi,
have modified the db.test.local that you have recommended to me. but now i have anew problem.now in windows server , there a message tell me that the zone is locked. impossible to transfer the zone.
I need to know one thing . is it possible to put a secondary server dns in windows server 2008 R2 fot a master whicj is in debian jesssie (bind9 ) that i am configured.

This is clearly a windows dns problem. I'm not familiar with M$ products but maybe this is relevant.
If not, better ask your question at a windows forum where you may find more support than a linux forum like LQ

Regards