DNS Nameserver Zonentransfer

M

mallmis

New Member
[Erledigt] - DNS Nameserver Zonentransfer

Hallo liebes Forum,

habe einen virtual Server bei Host Europe und habe dort den Master Nameserver konfiguriert. Betriebssystem ubuntu-he-8.04-x86_64 mit BIND 9.4.2-P2.1.

Hier die named.conf vom Master:
Code: 
options {
// directory "/var/named/run-root";
	pid-file "named.pid";
	
	notify yes;

	forwarders {
        80.237.128.144;
        80.237.128.145;
};

	auth-nxdomain no;    # conform to RFC1035
	listen-on-v6 { any; };
};

zone "." {
	type hint;
	file "/etc/bind/db.root";
};

zone "localhost" {
	type master;
	file "/etc/bind/db.local";
};

zone "127.in-addr.arpa" {
	type master;
	file "/etc/bind/db.127";
};

zone "0.in-addr.arpa" {
	type master;
	file "/etc/bind/db.0";
};

zone "255.in-addr.arpa" {
	type master;
	file "/etc/bind/db.255";
};

zone "webdesign-mallorca.es" in {
	type master;
	file "/etc/bind/db.webdesign-mallorca.es";
	allow-transfer { 80.26.108.114; };
};

zone "34.169.83.in-addr.arpa" {
	type master;
	file "/etc/bind/db.83";
	allow-transfer { 80.26.108.114; };
};

und die zone files dazu:
1. für webdesign-mallorca.es
Code: 
$ORIGIN webdesign-mallorca.es.
$TTL 604800
webdesign-mallorca.es.				IN SOA     ns1.hosting.webdesign-mallorca.es. webmaster.webdesign-mallorca.es. (
                                                20100220003     ;Seriennummer
                                                8H              ;Refresh
                                                15M             ;Retry
                                                1W              ;Expire
                                                1D )            ;TTL
						
						IN  NS          ns1.hosting.webdesign-mallorca.es.
                                                IN  NS          ns2.hosting.webdesign-mallorca.es.

;
ns1.hosting.webdesign-mallorca.es.        	IN A             83.169.34.190
ns2.hosting.webdesign-mallorca.es.        	IN A             80.26.108.114

;

sowie reverse 34.169.83.in-addr.arpa:

Code: 
$TTL 604800
34.169.83.in-addr.arpa.		IN SOA		ns1.hosting.webdesign-mallorca.es. webmaster.webdesign-mallorca.es. (
                           
                           	20100220001     ;Seriennummer
                           	8H              ;Refresh
                           	15M             ;Retry
                           	1W              ;Expire
                           	1D )            ;TTL

                IN NS		ns1.hosting.webdesign-mallorca.es.
		IN NS		ns2.hosting.webdesign-mallorca.es.

;
; Host definition
;

190             IN PTR		ns1.hosting.webdesign-mallorca.es.

DIG gibt für ns1 folgendes aus:

Code: 
; <<>> DiG 9.4.2-P2.1 <<>> ns1.hosting.webdesign-mallorca.es
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 44201
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 1

;; QUESTION SECTION:
;ns1.hosting.webdesign-mallorca.es. IN  A

;; ANSWER SECTION:
ns1.hosting.webdesign-mallorca.es. 604800 IN A  83.169.34.190

;; AUTHORITY SECTION:
webdesign-mallorca.es.  604800  IN      NS      ns1.hosting.webdesign-mallorca.es.
webdesign-mallorca.es.  604800  IN      NS      ns2.hosting.webdesign-mallorca.es.

;; ADDITIONAL SECTION:
ns2.hosting.webdesign-mallorca.es. 604800 IN A  80.26.108.114

;; Query time: 0 msec
;; SERVER: 83.169.34.190#53(83.169.34.190)
;; WHEN: Mon Feb 22 08:57:50 2010
;; MSG SIZE  rcvd: 115

Den Slave habe ich bei mir auf dem Server konfiguriert.
Betriebssystem: Suse Linux Server 2.6.16.21-0.8 default mit Bind 9.3.2

die named.conf

Code: 
options {

	# The directory statement defines the name server's working directory

	directory "/var/lib/named";

	# Write dump and statistics file to the log subdirectory.  The
	# pathenames are relative to the chroot jail.

	dump-file "/var/log/named_dump.db";
	statistics-file "/var/log/named.stats";

	# The forwarders record contains a list of servers to which queries
	# should be forwarded.  Enable this line and modify the IP address to
	# your provider's name server.  Up to three servers may be listed.

	#forwarders { 80.237.128.144; 80.237.128.145; };

	# Enable the next entry to prefer usage of the name server declared in
	# the forwarders section.

	# forward first;

	# The listen-on record contains a list of local network interfaces to
	# listen on.  Optionally the port can be specified.  Default is to
	# listen on all interfaces found on your system.  The default port is
	# 53.

	# listen-on port 53 { 127.0.0.1; };

	# The listen-on-v6 record enables or disables listening on IPv6
	# interfaces.  Allowed values are 'any' and 'none' or a list of
	# addresses.

	listen-on-v6 { any; };

	# The next three statements may be needed if a firewall stands between
	# the local server and the internet.

	#query-source address * port 53;
	#transfer-source * port 53;
	#notify-source * port 53;

	# The allow-query record contains a list of networks or IP addresses
	# to accept and deny queries from. The default is to allow queries
	# from all hosts.

	# allow-query { 127.0.0.1; };

	# If notify is set to yes (default), notify messages are sent to other
	# name servers when the the zone data is changed.  Instead of setting
	# a global 'notify' statement in the 'options' section, a separate
	# 'notify' can be added to each zone definition.

	notify no;
};

# The following zone definitions don't need any modification.  The first one
# is the definition of the root name servers.  The second one defines
# localhost while the third defines the reverse lookup for localhost.

zone "." in {
	type hint;
	file "root.hint";
};

zone "loopback" in {
	type master;
	file "loopback.fw";
};

zone "0.0.127.in-addr.arpa" in {
	type master;
	file "loopback.bw";
};


#
# Slave Nameserver on local IP: 80.26.108.114
#

zone "ns2.hosting.webdesign-mallorca.es" in {
	type slave;
	file "../slave/webdesign-mallorca.es.fw";
	masters { 83.169.34.190; };
	allow-transfer { any; };
};

zone "108.26.80.in-addr.arpa" in {
	type slave;
	file "../slave/webdesign-mallorca.es.bw";
	masters { 83.169.34.190; };
	allow-transfer { any; };
};

DIG sagt folgendes zu ns2:

Code: 
; <<>> DiG 9.4.2-P2.1 <<>> ns2.hosting.webdesign-mallorca.es
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 35056
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 1

;; QUESTION SECTION:
;ns2.hosting.webdesign-mallorca.es. IN  A

;; ANSWER SECTION:
ns2.hosting.webdesign-mallorca.es. 604800 IN A  80.26.108.114

;; AUTHORITY SECTION:
webdesign-mallorca.es.  604800  IN      NS      ns2.hosting.webdesign-mallorca.es.
webdesign-mallorca.es.  604800  IN      NS      ns1.hosting.webdesign-mallorca.es.

;; ADDITIONAL SECTION:
ns1.hosting.webdesign-mallorca.es. 604800 IN A  83.169.34.190

;; Query time: 0 msec
;; SERVER: 83.169.34.190#53(83.169.34.190)
;; WHEN: Mon Feb 22 09:10:28 2010
;; MSG SIZE  rcvd: 115

Sieht eigentlich auch gut aus.

Jetzt zum eigentlichen Problem, dazu habe ich die LOGS.
Zuerst vom Master auf Host Europe Virtual Server:
Code: 
Feb 22 09:12:28 lvps83-169-34-190 named[10151]: starting BIND 9.4.2-P2.1 -t /var/named/run-root -c /etc/named.conf -u bind
Feb 22 09:12:28 lvps83-169-34-190 named[10151]: found 1 CPU, using 1 worker thread
Feb 22 09:12:28 lvps83-169-34-190 named[10151]: loading configuration from '/etc/named.conf'
Feb 22 09:12:28 lvps83-169-34-190 named[10151]: listening on IPv6 interfaces, port 53
Feb 22 09:12:28 lvps83-169-34-190 named[10151]: listening on IPv4 interface lo, 127.0.0.1#53
Feb 22 09:12:28 lvps83-169-34-190 named[10151]: listening on IPv4 interface venet0:0, 83.169.34.190#53
Feb 22 09:12:28 lvps83-169-34-190 named[10151]: automatic empty zone: 254.169.IN-ADDR.ARPA
Feb 22 09:12:28 lvps83-169-34-190 named[10151]: automatic empty zone: 2.0.192.IN-ADDR.ARPA
Feb 22 09:12:28 lvps83-169-34-190 named[10151]: automatic empty zone: 255.255.255.255.IN-ADDR.ARPA
Feb 22 09:12:28 lvps83-169-34-190 named[10151]: automatic empty zone: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Feb 22 09:12:28 lvps83-169-34-190 named[10151]: automatic empty zone: 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Feb 22 09:12:28 lvps83-169-34-190 named[10151]: automatic empty zone: D.F.IP6.ARPA
Feb 22 09:12:28 lvps83-169-34-190 named[10151]: automatic empty zone: 8.E.F.IP6.ARPA
Feb 22 09:12:28 lvps83-169-34-190 named[10151]: automatic empty zone: 9.E.F.IP6.ARPA
Feb 22 09:12:28 lvps83-169-34-190 named[10151]: automatic empty zone: A.E.F.IP6.ARPA
Feb 22 09:12:28 lvps83-169-34-190 named[10151]: automatic empty zone: B.E.F.IP6.ARPA
Feb 22 09:12:28 lvps83-169-34-190 named[10151]: command channel listening on 127.0.0.1#953
Feb 22 09:12:28 lvps83-169-34-190 named[10151]: command channel listening on ::1#953
Feb 22 09:12:29 lvps83-169-34-190 named[10151]: zone 0.in-addr.arpa/IN: loaded serial 1
Feb 22 09:12:29 lvps83-169-34-190 named[10151]: zone 127.in-addr.arpa/IN: loaded serial 1
Feb 22 09:12:29 lvps83-169-34-190 named[10151]: zone 255.in-addr.arpa/IN: loaded serial 1
Feb 22 09:12:29 lvps83-169-34-190 named[10151]: zone 34.169.83.in-addr.arpa/IN: loaded serial 2920350817
Feb 22 09:12:29 lvps83-169-34-190 named[10151]: zone webdesign-mallorca.es/IN: loaded serial 2920350819
Feb 22 09:12:29 lvps83-169-34-190 named[10151]: zone localhost/IN: loaded serial 2
Feb 22 09:12:29 lvps83-169-34-190 named[10151]: running
Feb 22 09:12:29 lvps83-169-34-190 named[10151]: zone 34.169.83.in-addr.arpa/IN: sending notifies (serial 2920350817)
Feb 22 09:12:29 lvps83-169-34-190 named[10151]: zone webdesign-mallorca.es/IN: sending notifies (serial 2920350819)
Feb 22 09:13:52 lvps83-169-34-190 named[10151]: client 80.26.108.114#32807: query (cache) '108.26.80.in-addr.arpa/SOA/IN' denied
Feb 22 09:13:52 lvps83-169-34-190 named[10151]: client 80.26.108.114#43071: bad zone transfer request: '108.26.80.in-addr.arpa/IN': non-authoritative zone (NOTAUTH)

Sieht aus, als ob die Berechtigungen nicht passen und keine Authoritive Zone existiert???

hier ein Auszug von Named Ordner Dateien mit Berechtigungen

Code: 
-rw-r--r-- 1 root  root   192 2001-07-04 09:27 127.0.0.zone
drwxr-xr-x 2 root  root   120 2010-02-17 21:50 dev
drwxr-xr-x 2 named named   48 2006-06-16 20:10 dyn
drwxr-xr-x 3 root  root   232 2010-02-22 09:14 etc
-rw-r--r-- 1 root  root   158 2001-07-04 09:27 localhost.zone
drwxrwxrwx 2 named named   80 2010-02-21 18:30 log
-rw-r--r-- 1 root  root   636 2010-02-17 19:47 loopback.bw
-rw-r--r-- 1 root  root   637 2010-02-17 19:44 loopback.bw~
-rw-r--r-- 1 root  root   611 2010-02-17 19:40 loopback.fw
-rw-r--r-- 1 root  root    56 2010-02-17 19:23 loopback.fw~
drwxr-xr-x 2 root  root   136 2010-01-31 22:18 master
-rw-r--r-- 1 root  root  2517 2006-06-16 20:11 root.hint
drwxrwxrwx 2 named named   48 2006-06-16 20:10 slave
drwxr-xr-x 4 root  root   120 2008-01-18 22:15 var
-rw-r--r-- 1 root  root   677 2010-02-17 19:55 webdesign-mallorca.es.bw
-rw-r--r-- 1 root  root   664 2010-02-17 19:51 webdesign-mallorca.es.bw~
-rw-r--r-- 1 root  root   664 2010-02-17 19:51 webdesign-mallorca.es.fw
-rw-r--r-- 1 root  root   637 2010-02-17 19:45 webdesign-mallorca.es.fw~

Hier dann ein Auszug aus dem LOG vom SLAVE:
Code: 
Feb 22 09:14:01 SERVER named[29409]: starting BIND 9.3.2 -t /var/lib/named -u named
Feb 22 09:14:01 SERVER named[29409]: found 1 CPU, using 1 worker thread
Feb 22 09:14:01 SERVER named[29409]: loading configuration from '/etc/named.conf'
Feb 22 09:14:01 SERVER named[29409]: listening on IPv6 interfaces, port 53
Feb 22 09:14:01 SERVER named[29409]: listening on IPv4 interface lo, 127.0.0.1#53
Feb 22 09:14:01 SERVER named[29409]: listening on IPv4 interface eth0, 10.0.0.3#53
Feb 22 09:14:01 SERVER named[29409]: command channel listening on 127.0.0.1#953
Feb 22 09:14:01 SERVER named[29409]: command channel listening on ::1#953
Feb 22 09:14:01 SERVER named[29409]: loopback.bw:12: no TTL specified; using SOA MINTTL instead
Feb 22 09:14:01 SERVER named[29409]: zone 0.0.127.in-addr.arpa/IN: loaded serial 2920347817
Feb 22 09:14:01 SERVER named[29409]: loopback.fw:12: no TTL specified; using SOA MINTTL instead
Feb 22 09:14:01 SERVER named[29409]: loopback.fw:26: ignoring out-of-zone data (localhost)
Feb 22 09:14:01 SERVER named[29409]: zone loopback/IN: loaded serial 2920347817
Feb 22 09:14:01 SERVER named[29409]: running
Feb 22 09:14:01 SERVER named[29409]: zone ns2.hosting.webdesign-mallorca.es/IN: refresh: NODATA response from master 83.169.34.190#53 (source 0.0.0.0#0)
Feb 22 09:14:02 SERVER named[29409]: zone 108.26.80.in-addr.arpa/IN: refresh: unexpected rcode (REFUSED) from master 83.169.34.190#53 (source 0.0.0.0#0)
Feb 22 09:14:02 SERVER named[29409]: zone 108.26.80.in-addr.arpa/IN: Transfer started.
Feb 22 09:14:02 SERVER named[29409]: transfer of '108.26.80.in-addr.arpa/IN' from 83.169.34.190#53: connected using 10.0.0.3#43071
Feb 22 09:14:02 SERVER named[29409]: transfer of '108.26.80.in-addr.arpa/IN' from 83.169.34.190#53: failed while receiving responses: NOTAUTH
Feb 22 09:14:02 SERVER named[29409]: transfer of '108.26.80.in-addr.arpa/IN' from 83.169.34.190#53: end of transfer

Natürlich finde ich keine synchronisierten Dateien auf meinem Server SLAVE.

Woran kann ich noch feilen, damit das klappt?

Bedanke mich schon einmal recht herzlich für die Antworten.

Gruß

Michael
 
Last edited by a moderator:
Code: 
#
# Slave Nameserver on local IP: 80.26.108.114
#

zone "[B][COLOR="Red"]ns2.hosting.[/COLOR][/B]webdesign-mallorca.es" in {
	type slave;
	file "../slave/webdesign-mallorca.es.fw";
	masters { 83.169.34.190; };
	allow-transfer { any; };
};
 
Hallo Whistler und vielen Dank, das war es schon einmal
fürs erste.

Leider wird der reverse Eintrag noch nicht transferiert.

Das liegt warscheinlich daran, das die ip noch nicht auf den richtigen Nameserver abgebildet wird?

Feb 22 10:05:19 SERVER named[2604]: zone 108.26.80.in-addr.arpa/IN: refresh: unexpected rcode (REFUSED) from master 83.169.34.190#53 (source 0.0.0.0#0)
Feb 22 10:05:19 SERVER named[2604]: zone 108.26.80.in-addr.arpa/IN: Transfer started.
Feb 22 10:05:19 SERVER named[2604]: transfer of '108.26.80.in-addr.arpa/IN' from 83.169.34.190#53: connected using 10.0.0.3#44772
Feb 22 10:05:20 SERVER named[2604]: transfer of '108.26.80.in-addr.arpa/IN' from 83.169.34.190#53: failed while receiving responses: NOTAUTH
Feb 22 10:05:20 SERVER named[2604]: transfer of '108.26.80.in-addr.arpa/IN' from 83.169.34.190#53: end of transfer
Click to expand...

Muss ich da einfach noch ein bisschen warten und schon mal Domains mit diesen
Nameservern registrieren, odr habe ich einen generellen Denkfehler?

Danke,

Michael
 
Code: 
inetnum: 80.26.0.0 - 80.26.127.255
netname: RIMA
descr:   Telefonica de Espana SAU
descr:   Red de servicios IP
descr:   Spain
country: ES
address: Ronda de la Comunicación s/n
address: Edificio Norte 1, planta 6ª
address: 28050 Madrid
address: SPAIN

Für den Addressbereich ist HostEurope nicht zuständig - und kann damit auch keinen RDNS eintragen.

Ob Telefonica Espana das macht (und wie, meist ist es keine DNS-Delegation, sondern nur ein Eintrag in einem Webinterface), kann man nur dort erfragen.
 
Hallo,

vielen Dank nochmals für die Antworten.

Bei der Telefonica geht das wohl nicht. Habe mit dem Support gesprochen. Man müsste wohl eine Domain registrieren und dann kann man einen Umkonnektierungsservice buchen.

Werde als zweiten nameserver einen von Host Europe nutzen. Geht ja auch.

Vielen Dank nochmals,

Michael
 
You must log in or register to reply here.
Back
Top