Solved

bind9 Getting error between master servers as follows: "...named general: info: zone ... refresh: non-authoritative..."

Posted on 2013-01-21
6
246 Views
Last Modified: 2015-02-25
Hello Experts!

I have 2 DNS servers and each is both a master and slave to the other.

For some reason this error only shows up on one of the servers and I cant' figure out why.

It actually shows up in the logs of the one I call mydomain2 or master2 in the attached files.

To make the configuration files easier to read I combined all the include files into one big file for each server and you will see them attached.

You can see when a portion of the configuration was in an included file because you will see the include statement commented out above the configuration block that was formally in an include file.

Your help much appreciated!

Here's the full error and happens for every domain on server master1/mydomain1 (used interchangeably):
mydomain2 named[18986]: general: info: zone one-of-the-zones.com/IN/public: refresh: non-authoritative answer from master nnn.nnn.nn.nnn#53 (source 0.0.0.0#0
master2-named.conf.txt
master1-named.conf.txt
0
Comment
Question by:RegProctor
  • 3
  • 3
6 Comments
 
LVL 28

Expert Comment

by:Jan Springer
ID: 38801181
It would be helpful if you could provide the domain name.
0
 
LVL 1

Author Comment

by:RegProctor
ID: 38804050
There are dozens of domain names as I said however if you want one to look at: seowebsales.com.
0
 
LVL 28

Expert Comment

by:Jan Springer
ID: 38805537
I am seeing a zone in the private view and none in the public view.

I also see two IP specified for each server.  Are these errors on the internal or external server?
0
Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

 
LVL 1

Author Comment

by:RegProctor
ID: 38807465
The servers have both a private and a public IP, each on their own interface (i.e. each has 2 physical cat 6 cables) so you will see two IP's.

One IP will be 192.168.... and the other public. The public interface has a tight lock down through the server's firewall and is connected directly to the internet, the private IP passes through the server firewall almost unchecked so there is no restrictions on LAN communications and is connected to a local router (the router takes care of Internet facing firewall needs of course and is locked down tight).

Having a public and private IP on a server is normal practice for a server facing the Internet and a LAN, it's the cleanest way to handle the different security needs of the LAN vs. public Internet connection.

On server1 there are dozens of zones in the public and private views.

On server2 there are a few zones in the public view and none in the private view.

For here to keep the files small/manageable/readable I copied one or two zones over instead of the dozens and if it shows anything different than I mentioned above for server's 1 & 2 then I made a mistake copying and pasting for here. I also sanitized the zones by making them just names like domain1.com, domain2.com etc.

Please assume as such if it looks different to you but when I looked that's what I saw so I'm not sure what you are seeing when you say no public zones.
0
 
LVL 28

Accepted Solution

by:
Jan Springer earned 500 total points
ID: 38807681
You should only be allowing the transfer of the zones using the public IPs since those are the IPs registered.
0
 
LVL 1

Author Comment

by:RegProctor
ID: 38807920
It makes no difference, the error occurs whether I allow one IP, the other IP or both IP's so whether that is true or not isn't relevant to the problem.

I do not allow sharing of any private zones however for the obvious reason that they are specific to the server they are on.
0

Featured Post

3 Use Cases for Connected Systems

Our Dev teams are like yours. They’re continually cranking out code for new features/bugs fixes, testing, deploying, testing some more, responding to production monitoring events and more. It’s complex. So, we thought you’d like to see what’s working for us.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Office 365 - Change domain name uppercase/lowercase settings 2 44
windows 7 starter missing password 21 77
how to configure linux OS using Ubuntu 7 43
DNS Domain Issues 10 27
Setting up Secure Ubuntu server on VMware 1.      Insert the Ubuntu Server distribution CD or attach the ISO of the CD which is in the “Datastore”. Note that it is important to install the x64 edition on servers, not the X86 editions. 2.      Power on th…
Linux users are sometimes dumbfounded by the severe lack of documentation on a topic. Sometimes, the documentation is copious, but other times, you end up with some obscure "it varies depending on your distribution" over and over when searching for …
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question