kevin ,帮忙看看， redhat AS 3.0 ----bind DNS config salve 出什么问题了！？十分感

liuliangbin · 发表于 2005-4-18 00:45:55

////////////192.168.0.252  master///////////
///////////192.168.0.199  slave ///////////////////    ywtech.com

/////////////////////////////// 192.168.0.252  ////////////////////////////////////////

named.conf
//////////////////////////////////////////////////////////////////////////////
// generated by named-bootconf.pl

options {
directory "/var/named";
// forwarders {210.33.116.8};
      allow-query {192.168.0.0/24; };
// allow-transfer {192.168.0.0/24; };

/*
   * If there is a firewall between you and nameservers you want
   * to talk to, you might need to uncomment the query-source
   * directive below.  Previous versions of BIND always asked
   * questions using port 53, but BIND 8.1 uses an unprivileged
   * port by default.
   */
// query-source address * port 53;
};

//
// a caching only nameserver config
//
//controls {
// inet 127.0.0.1 allow { localhost; } keys { rndckey; };
//};
zone "." IN {
type hint;
file "named.ca";
};

zone "localhost" IN {
type master;
file "localhost.zone";
allow-update { none; };
};

zone "0.0.127.in-addr.arpa" IN {
type master;
file "named.local";
allow-update { none; };
};

zone "ywtech.com" IN {
type master;
file "ywtech.com.zone";
// allow-update { none; };
};

zone "0.168.192.in-addr.arpa" IN {
type master;
file "0.168.192.named.net";
// allow-update { none; };
};

zone "ywtech.org" IN {
type master;
file "ywtech.org.zone";
// allow-update { none; };
};

/*
zone "0.168.192.in-addr.arpa" IN {
type master;
file "0.168.192.named.net";
// allow-update { none; };
};
*/
include "/etc/rndc.key";

==================================================
///////////////////////192.168.0.252
ll /var/named/

total 24
-rwxrwxrwx 1 named named       538 Feb 16  2005 0.168.192.named.net
-rwxrwxrwx 1 named named       195 Jan 24  2003 localhost.zone
-rwxrwxrwx 1 named named       2499 Jan 24  2003 named.ca
-rwxrwxrwx 1 named named       433 Jan 24  2003 named.local
-rwxrwxrwx 1 named named       556 Mar 23 08:57 ywtech.com.zone
-rwxrwxrwx 1 named named       551 Feb 17  2005 ywtech.org.zone
==============================================

//////////////////////////////////////////////////////////////////////////////////////////////////
               slave
/////////////////////////////////////////////////// 192.168.0.199////////////////////////

named.conf
//////////////////////////////////////////////////////

// generated by named-bootconf.pl

options {
directory "/var/named";

/*
   * If there is a firewall between you and nameservers you want
   * to talk to, you might need to uncomment the query-source
   * directive below.  Previous versions of BIND always asked
   * questions using port 53, but BIND 8.1 uses an unprivileged
   * port by default.
   */
// query-source address * port 53;
};

//
// a caching only nameserver config
//
//controls {
// inet 127.0.0.1 allow { localhost; };
//    keys { rndckey; };
//};
zone "." IN {
type hint;
file "named.ca";
};

zone "ywtech.com" IN {
type slave;
file "ywtech.com.zone";
masters { 192.168.0.252; };
};

zone "0.168.192.in-addr.arpa" IN {
type slave;
file "named.net.192.168.local";
masters { 192.168.0.252; };
};

zone "localhost" IN {
type master;
file "localhost.zone";
allow-update { none; };
};

zone "0.0.127.in-addr.arpa" IN {
type master;
file "named.local";
allow-update { none; };
};

include "/etc/rndc.key";

//////////////////////////////////////////////////////////////////////

on 192.168.0.199
///////////////////////////////////////////////////////////////////

host -t MX ywtech.com 192.168.0.252
host -l ywtech.com 192.168.0.252

ywtech.com mail is handled by 10 mail.ywtech.com.
Using domain server:
Name: 192.168.0.252
Address: 192.168.0.252#53
Aliases:

# host -l ywtech.com 192.168.0.252

ywtech.com SOA ywtech.com. root.ywtech.com. 42 10800 900 604800 86400
ywtech.com name server ywtech.com.
ywtech.com has address 192.168.0.200
ywtech.com mail is handled by 10 mail.ywtech.com.
ftp.ywtech.com has address 192.168.0.200
mail.ywtech.com has address 192.168.0.200
pops.ywtech.com is an alias for mail.ywtech.com.
stmp.ywtech.com is an alias for mail.ywtech.com.
www.ywtech.com has address 192.168.0.200
www1.ywtech.com has address 192.168.0.198
www1.ywtech.com has address 192.168.0.199
www1.ywtech.com has address 192.168.0.200
ywtech.com SOA ywtech.com. root.ywtech.com. 42 10800 900 604800 86400
Using domain server:
Name: 192.168.0.252
Address: 192.168.0.252#53
Aliases:

ywtech.com mail is handled by 10 mail.ywtech.com.

／／／／／／／／／／／／／／／／／／／／／／／／／／／／／／／／／／／
１９２．１６８．０．１９９　tail -f /var/log/message
／／／／／／／／／／／／／／／／／／／／／／／／//////////////////////////////////
Mar 21 11:40:00 mail last message repeated 2 times
Mar 21 11:40:27 mail sshd(pam_unix)[3386]: 3 more authentication failures; logname= uid=0 euid=0 tty=NODEVssh ruser= rhost=192.168.0.197
Mar 21 11:40:27 mail sshd(pam_unix)[3386]: service(sshd) ignoring max retries; 4 > 3
Mar 21 11:41:56 mail named[3363]: dumping master file: tmp-XXXXBPulKM: open: permission denied
Mar 21 11:41:57 mail named[3363]: transfer of '0.168.192.in-addr.arpa/IN' from 192.168.0.252#53: failed while receiving responses: permission denied
Mar 21 11:41:57 mail named[3363]: transfer of '0.168.192.in-addr.arpa/IN' from 192.168.0.252#53: end of transfer
Mar 21 11:42:56 mail named[3363]: dumping master file: tmp-XXXXLuNqrP: open: permission denied
Mar 21 11:42:56 mail named[3363]: transfer of 'ywtech.com/IN' from 192.168.0.252#53: failed while receiving responses: permission denied
Mar 21 11:42:56 mail named[3363]: transfer of 'ywtech.com/IN' from 192.168.0.252#53: end of transfer
Mar 21 11:43:01 mail sshd(pam_unix)[3391]: session opened for user root by (uid=0)
Mar 21 11:43:02 mail sshd(pam_unix)[3391]: session opened for user root by (uid=0)
Mar 21 11:55:04 mail named[3363]: dumping master file: tmp-XXXXtBow1t: open: permission denied
Mar 21 11:55:04 mail named[3363]: transfer of 'ywtech.com/IN' from 192.168.0.252#53: failed while receiving responses: permission denied
Mar 21 11:55:04 mail named[3363]: transfer of 'ywtech.com/IN' from 192.168.0.252#53: end of transfer
Mar 21 11:57:45 mail named[3363]: dumping master file: tmp-XXXXFRRX9G: open: permission denied
Mar 21 11:57:45 mail named[3363]: transfer of '0.168.192.in-addr.arpa/IN' from 192.168.0.252#53: failed while receiving responses: permission denied
Mar 21 11:57:45 mail named[3363]: transfer of '0.168.192.in-addr.arpa/IN' from 192.168.0.252#53: end of transfer
//////////////////////////////////////////////////////////////////////////////////////////////

northwindrocker · 发表于 2005-4-18 00:54:19

好象是文件没能从master dumping 过来。　

liuliangbin · 发表于 2005-4-18 01:06:39

Post by northwindrocker
好象是文件没能从master dumping 过来。　

高手．　如何解决啊？？．．谢谢

kissingwolf · 发表于 2005-4-18 09:19:28

Check your /var/named directory of slave DNS server , user named must can write it .

liuliangbin · 发表于 2005-4-18 09:40:28

Post by kissingwolf
Check your /var/named directory of slave DNS server , user named must can write it .

谢谢。。
  /var/named  directory of slave DNS server

ls -dl  /var/named/
drwxr-x--- 3 root    named       4096 Apr 16 12:20 /var/named/

================================================

chown named.named /var/named -R

问题解决了。thank you again !!现在可以了。。
============================================

		自动登录	找回密码
密码			注册

kevin ,帮忙看看， redhat AS 3.0 ----bind DNS config salve 出什么问题了！？ 十分感

kevin ,帮忙看看， redhat AS 3.0 ----bind DNS config salve 出什么问题了！？十分感