• Please be aware: Kaspersky Anti-Virus has been deprecated
    With the upgrade to Plesk Obsidian 18.0.64, "Kaspersky Anti-Virus for Servers" will be automatically removed from the servers it is installed on. We recommend that you migrate to Sophos Anti-Virus for Servers.
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

Slave DNS Manager not replicating zones

J

JamloMX

New Pleskian
Hi fourm,


Needing your help to figure out what is going on with my DNS master/slave setup.

I do have a couple o VPS running
Plesk v12.5.30_build1205150826.19 on CentOS 6.6

Server1 is hosting websites, DNS server and is my name server ns1.domain.com
Server2 also running with plesk will perform only task as a DNS slave and FTP repository for backups of master one.

I installed Slave DNS manager extension on master and perform the modification requiered on slave named.conf file, now I see in green the status saying is up and running.

Then I go to verify if SLAVE has the zones of master's domains and I can't see nothing there, named conf file is empty, I did a reverse test adding a domain on SLAVE and see if replied to master and also is not doing it.

Port 953 is open in both servers and 53 on master for DNS.
I performed a reinstallation of the extension and still the same.

Hope someone can showme the light to troubleshoot this and make it work.
 
Need more detail from logs. Do you have any results of troubleshooting?
 
I have followed instructions mentioned on
http://download1.parallels.com/Ples...extensions-guide/index.htm?fileName=73349.htm

Server clock are the same on master and slave, DNS manager shows on green the link between them.
Logs from /var/log/messages

May 12 13:04:20 jamlowebhost01 drwebd.real: Replacing dead child with new one...
May 12 13:04:21 jamlowebhost01 named[2047]: client 74.208.2.6#46817: zone transfer 'chriscaballero.com/AXFR/IN' denied
May 12 13:05:19 jamlowebhost01 named[2047]: client 74.208.2.6#14388: query (cache) 'jamlo.com.mx/SOA/IN' denied
May 12 13:06:28 jamlowebhost01 named[2047]: received control channel command 'retransfer jamlo.mx'
May 12 13:09:27 jamlowebhost01 named[2047]: client 74.208.2.6#37321: zone transfer 'jamlo.mx/AXFR/IN' denied
May 12 13:09:28 jamlowebhost01 named[2047]: client 74.208.2.6#33474: zone transfer 'granjahuayatla.com/AXFR/IN' denied
May 12 13:09:29 jamlowebhost01 named[2047]: client 74.208.2.6#40089: zone transfer 'granjahuayatla.mx/AXFR/IN' denied
May 12 13:10:19 jamlowebhost01 named[2047]: client 74.208.2.6#42244: zone transfer 'autoparteslastorres.com/AXFR/IN' denied
May 12 13:11:24 jamlowebhost01 named[2047]: client 74.208.2.6#10587: query (cache) 'jamlo.com.mx/SOA/IN' denied

74.208.2.6 is my current secondary DNS by my host provider......
 
JamloMX said:
zone transfer 'autoparteslastorres.com/AXFR/IN' denied
Click to expand...
Do you have specified IP address of Slave DNS server in the named.conf of master DNS server like:

allow-transfer { 74.208.2.6; };
Click to expand...

Also, check named logs on slave server side. Most probably that there are incorrect permissions on zones directory.
 
I don't see ...allow-transfer { 74.208.2.6; };...... on master DNS server, here is my named.conf of Master DNS....

Code: 
options {
        allow-recursion {
                localhost;
        };
listen-on-v6 { any; };
        version "none";
        directory "/var";
        auth-nxdomain no;
        pid-file "/var/run/named/named.pid";
};

key "rndc-key" {
        algorithm hmac-md5;
        secret "CeMgS23y0oWE20nyv0x40Q==";
};

controls {
        inet 127.0.0.1 port 953
        allow { 127.0.0.1; } keys { "rndc-key"; };
};

zone "." {
        type hint;
        file "named.root";
};

zone "0.0.127.IN-ADDR.ARPA" {
        type master;
        file "localhost.rev";
};

and the named.conf of slave DNS

Code: 
options {

        allow-recursion {
                localnets;
        };
        version "none";
        directory "/var";
        auth-nxdomain no;
        pid-file "/var/run/named/named.pid";
        allow-new-zones yes;
        listen-on-v6 { any; };

};
key "rndc-key" {
        algorithm hmac-md5;
        secret "MGE5MWU1YzVhZDQ1YzE4ZTBmM2RjMg==";
};
key "rndc-key-70.35.204.240" {
      algorithm hmac-md5;
      secret "MGE5MWU1YzVhZDQ1YzE4ZTBmM2RjMg==";
    };

    controls {
        inet * port 953 allow { 70.35.204.240; 127.0.0.1; } keys { "rndc-key"; "rndc-key-70.35.204.240"; };
    };

zone "." {
        type hint;
        file "named.root";
};

zone "0.0.127.IN-ADDR.ARPA" {
        type master;
        file "localhost.rev";
};

If you could please guide me what is missing on both and files and how to correct them would be great

Thanks in advanced Igor
 
Also started facing DNS problems after installing DNS slave manager, now is not resolving correctly domains stored on my hosting server which is my primary DNS server.

Troubleshooting I found this in /etc/resolv.conf

Code: 
; generated by /sbin/dhclient-script
nameserver 10.255.255.1
it possible that resolvconf is misconfigured???
Should I change it for public ones like 8.8.8.8, registrar DNS or my custom ones that are my DNS IPs??
 
JamloMX said:
; generated by /sbin/dhclient-script
Click to expand...
Hmm... Do you have DHCP IP addresses in your DNS infrastructure? Have you tried to add allow-transfer { 74.208.2.6; }; to config of master server?
 
my DNS infrastructure does not have DHCP, Plesk server has a dedicated public IP that also works as DNS server.

I have done the following and still not working replication to slave server

  • allows port 953 outgoing on master and 53 udp on both.
  • Configure named to listen on the server IP and not just localhost by adding it to the "listen-on port 53" directive.
  • allow-new-zones yes; directive on slave server
  • set permissions correctly with this command: `chown named:named /var/named/`.
  • add the allow-transfer { IP slave dns; } directive on the master conf file
  • Slave server IP address listed in ACL slave transfer tab
  • named-checkconf /etc/named.conf command does not show any error

Here is Master named.conf

Code: 
options {
        listen-on port 53 { 127.0.0.1; 70.35.204.240; };
        allow-recursion {localhost;};
        listen-on-v6 port 53 { any; };
        allow-transfer { localhost; 70.35.202.223; };
        version "none";
        directory "/var";
        auth-nxdomain no;
        pid-file "/var/run/named/named.pid";
        allow-query { any; };
};

key "rndc-key" {
        algorithm hmac-md5;
        secret "CeMgS23y0oWE20nyv0x40Q==";
};

controls {
        inet 127.0.0.1 port 953
        allow { 127.0.0.1; } keys { "rndc-key"; };
};

zone "." {
        type hint;
        file "named.root";
};

zone "0.0.127.IN-ADDR.ARPA" {
        type master;
        file "localhost.rev";
};
// -- END OF LINES GENERATED BY PLESK. --

what else I'm missing ??
I'm completely frustated right now.... :(
 
You must log in or register to reply here.

Similar threads

N
Question Two Plesk Obsidian Linux Servers Master and Slave DNS
Replies
2
Views
555
Geisti
G
enerspace
Forwarded to devs Slave DNS manager does not transfer subdomains
Replies
10
Views
1K
Dave W
Dave W
C
Issue Slave DNS Manager
Replies
1
Views
221
AYamshanov
AYamshanov
L
Resolved Can't Install Slave DNS Manager
Replies
6
Views
2K
Ladylinux
L
C
Question Slave DNS Manager not sync and connect
Replies
4
Views
1K
Creativados
C
Back
Top