[Pdns-users] Problem with 'allow-axfr-ips'
Bino Oetomo
wowon01 at gmail.com
Wed Mar 20 04:09:54 UTC 2024
dear all
I have a powerdns installation with this config :
```
bind-ignore-broken-records=yes
setuid=named
setgid=named
launch=bind
bind-config=/etc/bind-for-pdns
bind-dnssec-db=/var/cpanel/pdns/dnssec.db
local-address-nonexist-fail=no
distributor-threads=1
disable-axfr=no
also-notify=192.168.1.123:5300, 192.168.8.79:53
allow-axfr-ips=127.0.0.0/8,::1, 192.168.1.123, 192.168.8.79
webserver=yes
api=yes
webserver-address=127.0.0.1
webserver-allow-from=127.0.0.1,::1
webserver-password=SECRET
webserver-port=953
api-key=SECRET
upgrade-unknown-types=1
master=yes
```
but when I try "dig AXFR domain0.bino @127.0.0.1", from jornalctl I got
```
Mar 20 10:56:39 my-server pdns_server[102277]: AXFR-out zone
'domain0.bino', client '127.0.0.1', transfer initiated
Mar 20 10:56:39 my-server pdns_server[102277]: AXFR-out zone
'domain0.bino', client '127.0.0.1', failed: not authoritative
```
Kindly please tell me what to check/do to fix this problem
-bino-
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.powerdns.com/pipermail/pdns-users/attachments/20240320/0c0430c5/attachment.htm>
More information about the Pdns-users
mailing list