Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

bind9 Getting error between master servers as follows: "...named general: info: zone ... refresh: non-authoritative..."

Posted on 2013-01-21
6
Medium Priority
?
342 Views
Last Modified: 2015-02-25
Hello Experts!

I have 2 DNS servers and each is both a master and slave to the other.

For some reason this error only shows up on one of the servers and I cant' figure out why.

It actually shows up in the logs of the one I call mydomain2 or master2 in the attached files.

To make the configuration files easier to read I combined all the include files into one big file for each server and you will see them attached.

You can see when a portion of the configuration was in an included file because you will see the include statement commented out above the configuration block that was formally in an include file.

Your help much appreciated!

Here's the full error and happens for every domain on server master1/mydomain1 (used interchangeably):
mydomain2 named[18986]: general: info: zone one-of-the-zones.com/IN/public: refresh: non-authoritative answer from master nnn.nnn.nn.nnn#53 (source 0.0.0.0#0
master2-named.conf.txt
master1-named.conf.txt
0
Comment
Question by:RegProctor
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
6 Comments
 
LVL 29

Expert Comment

by:Jan Springer
ID: 38801181
It would be helpful if you could provide the domain name.
0
 
LVL 1

Author Comment

by:RegProctor
ID: 38804050
There are dozens of domain names as I said however if you want one to look at: seowebsales.com.
0
 
LVL 29

Expert Comment

by:Jan Springer
ID: 38805537
I am seeing a zone in the private view and none in the public view.

I also see two IP specified for each server.  Are these errors on the internal or external server?
0
Looking for the Wi-Fi vendor that's right for you?

We know how difficult it can be to evaluate Wi-Fi vendors, so we created this helpful Wi-Fi Buyer's Guide to help you find the Wi-Fi vendor that's right for your business! Download the guide and get started on our checklist today!

 
LVL 1

Author Comment

by:RegProctor
ID: 38807465
The servers have both a private and a public IP, each on their own interface (i.e. each has 2 physical cat 6 cables) so you will see two IP's.

One IP will be 192.168.... and the other public. The public interface has a tight lock down through the server's firewall and is connected directly to the internet, the private IP passes through the server firewall almost unchecked so there is no restrictions on LAN communications and is connected to a local router (the router takes care of Internet facing firewall needs of course and is locked down tight).

Having a public and private IP on a server is normal practice for a server facing the Internet and a LAN, it's the cleanest way to handle the different security needs of the LAN vs. public Internet connection.

On server1 there are dozens of zones in the public and private views.

On server2 there are a few zones in the public view and none in the private view.

For here to keep the files small/manageable/readable I copied one or two zones over instead of the dozens and if it shows anything different than I mentioned above for server's 1 & 2 then I made a mistake copying and pasting for here. I also sanitized the zones by making them just names like domain1.com, domain2.com etc.

Please assume as such if it looks different to you but when I looked that's what I saw so I'm not sure what you are seeing when you say no public zones.
0
 
LVL 29

Accepted Solution

by:
Jan Springer earned 2000 total points
ID: 38807681
You should only be allowing the transfer of the zones using the public IPs since those are the IPs registered.
0
 
LVL 1

Author Comment

by:RegProctor
ID: 38807920
It makes no difference, the error occurs whether I allow one IP, the other IP or both IP's so whether that is true or not isn't relevant to the problem.

I do not allow sharing of any private zones however for the obvious reason that they are specific to the server they are on.
0

Featured Post

Are You Ready for GDPR?

With the GDPR deadline set for May 25, 2018, many organizations are ill-prepared due to uncertainty about the criteria for compliance. According to a recent WatchGuard survey, a staggering 37% of respondents don't even know if their organization needs to comply with GDPR. Do you?

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I wrote this article to explain some important DNS concepts that should be known to avoid some typical configuration errors I often see in forums. I assume that what is described here is the typical behavior of Microsoft DNS client. I don't know …
There have been a lot of times when we have seen the need to enter a large number of DNS entries in a forward lookup zone. The standard procedure would be to launch the DNS Manager console, create the Zone and start adding new hosts using the New…
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
How to Install VMware Tools in Red Hat Enterprise Linux 6.4 (RHEL 6.4) Step-by-Step Tutorial
Suggested Courses

688 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question