Re: bind9 ns1 and ns2 not authorative

To: debian-isp@lists.debian.org
Cc: debian-isp@lists.debian.org
Subject: Re: bind9 ns1 and ns2 not authorative
From: randall <randall@songshu.org>
Date: Tue, 26 Aug 2008 14:48:48 +0200
Message-id: <[🔎] 48B3FBB0.5010806@songshu.org>
In-reply-to: <[🔎] 20080826121809.GP27723@bitfolk.com>
References: <[🔎] 48AE6DDC.20301@songshu.org> <[🔎] 48AEB9E0.1000207@pdyer.net> <[🔎] 48AEC0FD.7060203@songshu.org> <[🔎] 20080822134224.GA12851@www.lobefin.net> <[🔎] 48AEC37E.3080803@songshu.org> <[🔎] 20080822152221.GD11017@verkkotelakka.net> <[🔎] 20080826121809.GP27723@bitfolk.com>

Andy Smith wrote:

Hi,

On Fri, Aug 22, 2008 at 06:22:21PM +0300, Juha-Matti Tapio wrote:

On Fri, Aug 22, 2008 at 03:47:42PM +0200, randall wrote:

Stephen Gran wrote:
i assumed it would not be necessary to manually add each new zone on eachslave dns server, at least it does not make much sense in my reasoning,hope i'm not to wrong here ;)
You are wrong here :)
mmmmm.....at least i'm happy to find out then..

anyway to automate this process? seems like a lot of manual work here.

One option is to use PowerDNS on the slave. It has the so called
supermaster feature where the slave can be configured to add
automatically any unknown zones for which a notify is received from a
trusted IP address.


I would second this.  I was just about to respond recommending it
when I got to the end of the thread and saw this recommendation.

A couple of minor niggles I have found with PowerDNS in supermaster
mode:

- The zone has to have the slave listed as an NS

- When zones are removed they will stay in the PowerDNS database

They are not hard to work around.

Cheers,
Andy

i actually decided to try the script by marek podmaka and adjusted it alittle for use with smbind,i'm sure that the part added by me (sed 'n;n;n;n;d;' |) to remove somelines is not the cleanest way to do it but it does seem to work.have this running now as a cronjob on NS2 but plan to have it calledfrom the smbind scripts on NS1 to run it the other way around when newdomains are created.



#!/bin/bash

tmpf='tmp-domains'$RANDOM
scp  123.123.123.123:/etc/smbind/smbind.conf /etc/bind/$tmpf
if [ \! -f /etc/bind/$tmpf ]; then
 exit 1
fi
cp /etc/bind/smbind.conf /etc/bind/named.conf.domains.prev

sed 's/^zone $"[^"]*"$ .*$/zone \1 { type slave; file \1; masters {123.123.123.123; }; };/g' /etc/bind/$tmpf |

sed 'n;n;n;n;d;' |
sed 'n;n;n;d;' |
sed 'n;n;d;' |
sed 'n;d;' |

sed 's/; file $[^/]*$\/$[^"]*$"; /; file \1_\2"; /g'>/etc/bind/smbind.conf

rm -f /etc/bind/$tmpf
diff /etc/bind/smbind.conf /etc/bind/named.conf.domains.prev >/dev/null
if [ $? -ne 0 ]; then # files differ, reload bind
 /etc/init.d/bind9 reload
fi

Reply to:

References:
- bind9 ns1 and ns2 not authorative
  - From: randall <randall@songshu.org>
- Re: bind9 ns1 and ns2 not authorative
  - From: Phil Dyer <phil@pdyer.net>
- Re: bind9 ns1 and ns2 not authorative
  - From: randall <randall@songshu.org>
- Re: bind9 ns1 and ns2 not authorative
  - From: Stephen Gran <sgran@debian.org>
- Re: bind9 ns1 and ns2 not authorative
  - From: randall <randall@songshu.org>
- Re: bind9 ns1 and ns2 not authorative
  - From: Juha-Matti Tapio <jmtapio@verkkotelakka.net>
- Re: bind9 ns1 and ns2 not authorative
  - From: Andy Smith <andy@lug.org.uk>

Prev by Date: Re: bind9 ns1 and ns2 not authorative
Next by Date: sys cpu usage
Previous by thread: Re: bind9 ns1 and ns2 not authorative
Next by thread: Move INBOX to home directory
Index(es):
- Date
- Thread