BIND zone transfer
-
The zone transfer making pfsense master is getting refused by pfsense. Any idea what i'm doing wrong?
Here's my config:
$TTL 43200
;
$ORIGIN snoopyfan.com.; Database file snoopyfan.com.DB for snoopyfan.com zone.
; Do not edit this file!!!
; Zone version 2436581580
;
snoopyfan.com. IN SOA 127.0.0.1. zonemaster.snoopyfan.com. (
2436581580 ; serial
1d ; refresh
2h ; retry
4w ; expire
1h ; default_ttl
);
; Zone Records
;
@ IN NS 127.0.0.1.
@ IN A 216.38.129.250
www IN A 216.38.129.250 -
Have to ask the obvious question: when you made your edit, did you bump the serial number?
-
Not sure what you mean by "bump"? When I created the zone, it was auto generated.
-
Not sure what you mean by "bump"?
Huh? This
2436581580 ; serial
needs to be incremented, everytime you make a change. (Plus, the above random number is definitely not recommended serial format.)
-
'bump', as in 'change', 'modify', 'make different from what it was before or BIND will reject it'…
http://help.dnsmadeeasy.com/secondary-dns/soa-serial-numbers/
-
@kom @doktornotor this is the reason why I've been posting: https://forum.pfsense.org/index.php?topic=97577.0
-
@CodeChuck: Eh? You need to do that on master!
-
Sorry should have been more clear. I've figured out what the master zone so this post should be marked as solved(if this forum has that feature). I'm now setting up the slave but when trying to join Windows 7 boxes to the littlesheep.example.com domain I get the following error:
The following error occurred when DNS was queried for the service location (SRV) resource record used to locate an Active Directory Domain Controller (AD DC) for domain "littlesheep.example.com":
The error was: "DNS name does not exist."
(error code 0x0000232B RCODE_NAME_ERROR)The query was for the SRV record for _ldap._tcp.dc._msdcs.littlesheep.example.com
Common causes of this error include the following:
- The DNS SRV records required to locate a AD DC for the domain are not registered in DNS. These records are registered with a DNS server automatically when a AD DC is added to a domain. They are updated by the AD DC at set intervals. This computer is configured to use DNS servers with the following IP addresses:
216.40.150.250
- One or more of the following zones do not include delegation to its child zone:
littlesheep.example.com
example.com
com
. (the root zone)I converted the slave db to text and didn't see the SRV record it was querying for. So my guess is that particular record isn't getting transferred properly or something is missing from AD DNS.