[Pdns-users] Need help re: Remote tried to sneak in out-of-zone data ''|SOA during AXFR of zone

Chris Moody chris at node-nine.com
Tue Feb 18 15:40:20 UTC 2014 

Hello all.

First off - been a powerdns user & advocate for several years now - LOVE 
IT!!!

I've been hitting my head on a problem with a new install of a slave 
server for the past couple days though and could use some help.

Just stood up a new slave.  It's set to 'slave=yes' in the config.  This 
is confirmed in the web-gui output for this slave's operational status.

I've added in my master for a particular zone into the supermasters table.

ex>
=====
mysql> SELECT * FROM supermasters;
+--------------------+-------------------+-------------------+
| ip                 | nameserver        | account           |
+--------------------+-------------------+-------------------+
| 206.71.169.116     | ns2.node-nine.com | ns1.node-nine.com |
| 2001:470:c:109e::2 | ns2.node-nine.com | ns1.node-nine.com |
+--------------------+-------------------+-------------------+
2 rows in set (0.00 sec)
=====

This appears to be working in that I'm seeing the logs indicating "1 
slave domain needs checking".  Trouble I'm running into though is that 
the logs also are stating the following error:
=====
Remote 206.71.169.116 tried to sneak in out-of-zone data ''|SOA during 
AXFR of zone 'node-nine.com', ignoring
=====

Because of this the zone-transfer never completes.

I've nuked and re-added the SOA record on my master according to the 
syntax I've always used (and what's documented here 
<http://doc.powerdns.com/html/types.html>) but still, this error persists.

ex>
=====
mysql> SELECT * FROM records WHERE name LIKE '%node-nine%' AND type = 'SOA';
+-------+-----------+---------------+------+-------+------+---------------------------------------------------------------------+-----------+------+----------+
| id    | domain_id | name          | type | ttl   | prio | content | 
ordername | auth | disabled |
+-------+-----------+---------------+------+-------+------+---------------------------------------------------------------------+-----------+------+----------+
| 35272 |       457 | node-nine.com | SOA  | 86400 | NULL | 
ns1.node-nine.com postmaster at node-nine.com 0 10800 3600 604800 3600 | 
NULL      | NULL |     NULL |
+-------+-----------+---------------+------+-------+------+---------------------------------------------------------------------+-----------+------+----------+
1 row in set (0.00 sec)
=====

A lookup of the SOA record on the master works great, so I'm not sure 
what exactly the slave is complaining about.

Any help, pointers, clue-bat, etc are greatly appreciated.

Cheers,
-Chris

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.powerdns.com/pipermail/pdns-users/attachments/20140218/50379e9e/attachment.html>

More information about the Pdns-users mailing list