Allow-transfer in 7.0.0

[imperio]

Hi,
in Kloxo-MR 7.0.0 dont work allow-transfer for bind (named)
in /opt/configs/bind/conf/defaults/named.options.conf
i changed to this

Code: [Select]

allow-transfer { any; };

Code: [Select]

service named restartbut DNS domain zones dont work on my secondary (slave) server
DNS slave server cant access to my main (master) server

[MRatWork]

1. Set 'allow-transfer' to 'any' is danger because possible to hijack your domain
2. The trick for secondary worked, create 'a record' to assign to your secondary server IP (better use 'ns2' or 'ns3').

At this moment, secondary dns only work for bind and nsd.

To make sure, update to 2014092607.

[imperio]

Sorry, but allow-transfer function for bind (named) is not working on kloxo-mr 7
On my slave server i see this error

An error occurred during the update zone.

On this https://puck.nether.net/dns/ slave server i see this error

Unable to axfr that domain from that IP

On kloxo-mr 6.5.0 allow-transfer function working fine
If need i can give access to my server with kloxo-mr 7

[MRatWork]

Inform here 'cat /opt/configs/bind/conf/defaults/named.acl.conf'

[imperio]

Code: [Select]

acl allow-transfer {
    localhost;
};

[MRatWork]

Wait for next update.

[imperio]

Thank you! I will wait

[imperio]

2014092702
allow-transfer is not working

[MRatWork]

Check again 'cat /opt/configs/bind/conf/defaults/named.acl.conf'. Need restart-dns.

[imperio]

service named restart
Stopping named:                                            [  OK  ]
Starting named:                                            [  OK  ]

cat /opt/configs/bind/conf/defaults/named.acl.conf

Code: [Select]

acl allow-transfer {
    localhost;
};

[imperio]

sorry, but 2014092804 also not helping
problem with allow-transfer for bind still exists

secondary server cant access to main server

Unable to axfr that domain from that IP

[MRatWork]

sorry, but 2014092804 also not helping
problem with allow-transfer for bind still exists

secondary server cant access to main server

Unable to axfr that domain from that IP

I am not testing with bind. All settings look like ok in latest upload (see named.acl.conf).

My favorite is nsd because small and have the same features. Also secondary dns in other Kloxo-MR server running well. It's mean server1 using nsd and server2 using nsd too.

After centalt repo down (and active until now), I was recompile bind repo from centalt src.rpm.

[imperio]

2014092804

see named.acl.conf

/opt/configs/bind/conf/defaults/named.acl.conf

Code: [Select]

acl allow-transfer {
    localhost;
};

[MRatWork]

This is my named.acl.conf:

Code: [Select]

acl allow-transfer {
    localhost;
    204.42.254.5;
    109.233.59.138;
    209.99.17.18;
    209.99.17.23;
    209.99.17.21;
    108.61.191.40;
    104.194.88.110;
};

acl allow-notify {
    204.42.254.5;
    109.233.59.138;
    209.99.17.18;
    209.99.17.23;
    209.99.17.21;
    108.61.191.40;
    104.194.88.110;
};
where one of domain declare like (other IP declare in other domains):

Code: [Select]

ns1 A - 198.100.146.10
ns2 A - 204.42.254.5
ns3 A - 109.233.59.138


[MRatWork]

So, possible after update, you didn't execute 'sh /script/cleanup'.