[Pdns-users] Can't make AXFR work with LDAP backend

David Douard david.douard at logilab.fr
Fri Dec 3 17:05:36 UTC 2010 

> Hi,
> 
> I never had problems with AXFR between powerdns authoritative server and
> BIND9, but the problem was in Notify messages.
> 
> You may want to read the threads:
> 
>     Can pdns (with ldap backend) be a master of BIND9 slave?:
>    
> http://www.mail-archive.com/pdns-users@mailman.powerdns.com/msg03248.html
> Successful, yet incomplete AXFR to BIND9 slave:
>    
> http://old.nabble.com/Successful,-yet-incomplete-AXFR-to-BIND9-slave-td296
> 60781.html NOTIFY by pdns master with ldap backend in next authoritative
> server releases?:
>    
> http://www.mail-archive.com/pdns-users@mailman.powerdns.com/msg03357.html
> 

Thank you. I've seen these threads. But for now, I am just trying to make this 
AXFR query work.

> Remember that the slave should be included in the zone NS entries and
> should be configured as a slave.

Thanks for the reminder.

> Anyway the command:
> dig example.net AXFR @pdns.server.example.com
> should run without problems. You don't have to configure pdns as a
> master for that. It is always capable to produce AXFR output.
> 
> I would assume that something is corrupt on your server. Check logs. You
> may also want to try a clean installation.

In fact, I have the problem on several pdns servers ; I have 2 of them for my 
private network running on Debian Lenny boxes (with native LDAP replication), 
and I just installed a new Squeeze box in a kvm in order to prepare and 
validate some network and DNS reconfiguration I am planning.

But I'll try to set up another brand new kvm with a simpler configuration (the 
LDAP tree on my test machine is a partial (push) replication of another ldap 
tree living on another test machine), and see if the problem appears again.


> Nick
> 
> On 3/12/2010 3:49 μμ, Kenneth Marshall wrote:
> >> The problem is that I have never been able make AXFR dig. I have the
> >> problem for years now, but until now, I never really need to make it
> >> work. But I'd like now to use a PowerDNS server as shadow master for my
> >> public zone (the DNS server is BIND9).
> 
> _______________________________________________
> Pdns-users mailing list
> Pdns-users at mailman.powerdns.com
> http://mailman.powerdns.com/mailman/listinfo/pdns-users
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part.
URL: <http://mailman.powerdns.com/pipermail/pdns-users/attachments/20101203/131b9ebb/attachment-0001.sig>

More information about the Pdns-users mailing list