Prev-20 Home Next-20 7 msg reg named.conf configuration file in bind 9.3.4 12 msg Providing local DNS service behind a cheap rout... 5 msg how to get a list like 'domains using this as n... 2 msg having DNS problems with sites hosted at ns1.el... 5 msg DNS Server Host's Network DNS Settings loss of masters over ipsec hoses bind \ Matt LaPlante (21 Dec 2007) . \ Barry Margolin (22 Dec 2007) . . \ Matt LaPlante (22 Dec 2007) . \ Mark Andrews (23 Dec 2007) . \ Mark Andrews (24 Dec 2007) . . \ Matt LaPlante (24 Dec 2007) . . . \ Matt LaPlante (24 Dec 2007) . . . . \ Matt LaPlante (9 Jan 2008) . . . . . \ Adam Tkac (9 Jan 2008) . . . . . . \ Matt LaPlante (10 Jan 2008) 21 msg override ttl=0 2 msg BIND8 was adding glue NS records to parent zones 2 msg Slaves not picking up when master is offline 12 msg Unable to get Zone transfer to work 3 msg multiple answers from the same server 4 msg Accents in Bind 9.3.1. (Extended ascii) 1 msg RE: set up Reverse DNS zone 2 msg OT: set up Reverse DNS zone 2 msg BIND 9 utilities (dig, host, nslookup) error in... 6 msg small sibling glue records help 2 msg View Transfer 7 msg tips on debugging DNS 3 msg Trouble with reverse DNS 2 msg Newbie: How to add PTR records Prev-20 Home Next-20

Prev-Msg Prev-Thread Bind-users Dec-2007 Next-Thread Next-Msg Subject: loss of masters over ipsec hoses bind Group: Bind-users From: Matt LaPlante Date: 21 Dec 2007 I'm currently running Bind 9.4.1 (Ubuntu Gutsy). I have several zones in master->slave setups, which normally works just fine. The other day, however, I ran into an odd problem. A couple of the slave zones generally update over an ipsec connected network. The ipsec connection went away, and shortly thereafter bind royally wedged itself, refusing to serve any data (including basic forward lookups) and was not even responding to rndc restarts. It took me a good while of restarting the system and poking around logs to decide to strace the process, which eventually lead me to removing the ipsec-dependant slave zones from the config. As soon as I did this, Bind became stable again. Interestingly, zones which updated over public IP space behaved fine, even if the master server was unreachable. It was only zones that were trying to go over the down ipsec connection that hosed the daemon. This whole issue is logged in a bit more detail here, including output from strace: https://bugs.launchpad.net/ubuntu/+source/bind/+bug/177489 I can (apparently) reproduce this issue again with little difficulty, so I'd be glad to help debug it. - Matt LaPlante Prev-Msg Prev-Thread Bind-users Dec-2007 Next-Thread Next-Msg

© 2004-2008 readlist.com