[Pdns-users] AXFR Zone Transfer Problem
Kenneth Marshall
ktm at rice.edu
Fri Jan 8 16:41:52 UTC 2021
On Fri, Jan 08, 2021 at 04:22:14PM +0000, Ralph via Pdns-users wrote:
> Hi @all,
>
> i need your help with my configuration.
> I configured PowerDNS Auth and recursor on one vm. Everything works fine - recursion, authoritative zone etc
>
> BUT i have a big problem with zone transfers.
> When the pdns is configured as a slave for a zone then it works fine. I can see in my tcpdump that i get the zone from the master successfully.
> When the pdns is configured as the master of a zone nobody can start an axfr. Also notifies don't work!
>
> ...
>
> Has anyone an idea?
> I think the problem is the pdns recursor which is configured in front of the construct and forward every query.
>
> Do I really need dnsdist only for zone transfer?
>
> Best regards
> Chris
Hi Chris,
We use iptables to pass the request to the authoritative server and
everyone else hits the recursor. You definitely cannot go through the
recursor for AXFRs.
Regards,
Ken
More information about the Pdns-users
mailing list