RHEL3 BIND issues

Posted on 2004-08-03
Medium Priority
Last Modified: 2012-05-05
I'm kinda stuck on this one at the moment so maybe some of you can help me out.  We have a network with two name servers, one is the primary for about 300 zones and the second is the slave for the same 300 zones.  pretty simple setup that was done by a previous admin so i've never had to really do anything with it other then adding a domain or two.  problem is a little while ago the slave box blew up and we've decided to move it's functions to another linux box on our network for the time being.  The other is running redhat enterprise ES 3 with bind built in (it was selected during the install i believe).  so i basically snagged the named.conf from the old box's backups and moved it over and swapped it out with the default named.conf over on this new box.  everything looked happy but when i started the named service, it trys to sync all three hundred domains and gives the same error (in bind.log) for each below:

Aug 03 12:21:54.786 general: error: dumping master file: tmp-XXXX6P2e3Z: open: permission denied
Aug 03 12:21:54.787 xfer-in: error: transfer of 'mydomain.com/IN' from failed while receiving responses: permission denied

and nothing shows up in the /var/named directory on the slave box.  i've gone into the master box and added the new slave's IP address into the "allow-transfer" and "also-notify" fields but it doesn't appear to have fixed the problem.  am i missing something obvious?  i've very little experiance with bind so any help would be appreciated...
Question by:Jaidenkell
  • 3
  • 2
LVL 36

Expert Comment

ID: 11707616
Hi Jaidenkell,
I have come across this problem before. It was caused by named not having permissions to save the new zone files in its directory. Often there is a 'secondary' directory within the /var/named area which has different permissions so named can create new files.
Also be carefull and check how named is being started. Sometime Redhat have it defaulted to startup as chrooted and the directory it needs to save its files to is slightly different.

Author Comment

ID: 11708020
i dont see any sub directories in the /var/named folder (it literally only has 3 files in it, the localhost.zone, named.ca and named.local files), and the whole directory looks to have permissions of "drwxr-x---    2 root     named"

i am not really sure where to check to see if named is chrooted at startup or where to set its directory for named files (other then named.conf which has it set to /var/named).  where would i check for these?

Author Comment

ID: 11708172
well i think i figured it out, the permissions were in fact screwy on the named folder.  i opened it up wider and suddenly it started working again.  so am i correct in thinking the permissions i need for the named folder (if its going to be owner root and group named) would be 770 or something similiar?
LVL 36

Accepted Solution

grblades earned 2000 total points
ID: 11708207
Yes 770 will give the owner (root) and the group (named) full access to the directory. Those permissions should be fine.

Author Comment

ID: 11708614
Thank you sir! i appreciate the help!

Featured Post

Get expert help—faster!

Need expert help—fast? Use the Help Bell for personalized assistance getting answers to your important questions.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
From store locators to asset tracking and route optimization, learn how leading companies are using Google Maps APIs throughout the customer journey to increase checkout conversions, boost user engagement, and optimize order fulfillment. Powered …

607 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question