Infoblox Exchange Cybersecurity Roadshow 2020 – Join us!
North America | Europe | Middle East/Africa | Asia-Pacific

DNS DHCP IPAM

Reply
Accepted Solution

Zone Transfer Issue

Authority
Posts: 31
4530     0

Hi Team,

 

I have lab setup to understand zone transfer from Microsoft DNS(primary DNS) to Infoblox(Secondary DNS). Zone transfer happens successfully from MS to infoblox but incremental (any new record added/deleted in MS DNS)update is having issue. In logs I can see Infoblox received notify message from MS, later infoblox sends zone transfer request and in response received data from MS but I don’t see zone record are getting updated in infoblox zone. But if I do manual task ‘import zone’ records are update.

 

What could be the reason records are not updated in zone. Below are logs regarding zone transfer

MS DNS IP : 192.168.174.128

Infoblox IP : 192.168.174.2

 

2017-09-13T21:13:11+05:30 daemon master.sachinlab.com named[18025]: info client 192.168.174.128#60401: received notify for zone 'sachinlab.com'

2017-09-13T21:13:11+05:30 daemon master.sachinlab.com named[18025]: info zone sachinlab.com/IN: notify from 192.168.174.128#60401: serial 54

2017-09-13T21:13:11+05:30 daemon master.sachinlab.com named[18025]: info zone sachinlab.com/IN: Transfer started.

2017-09-13T21:13:11+05:30 daemon master.sachinlab.com named[18025]: info transfer of 'sachinlab.com/IN' from 192.168.174.128#53: connected using 192.168.174.2#42771

2017-09-13T21:13:11+05:30 daemon master.sachinlab.com named[18025]: info zone sachinlab.com/IN: transferred serial 54

2017-09-13T21:13:11+05:30 daemon master.sachinlab.com named[18025]: info transfer of 'sachinlab.com/IN' from 192.168.174.128#53: Transfer completed: 1 messages, 5 records, 224 bytes, 0.005 secs (44800 bytes/sec)

 

Thanks,

 

Sachin

Re: Zone Transfer Issue

AMani Community Manager
Community Manager
Posts: 39
4531     0
Sachin - did you tried doing an SOA query to Infoblox server and check the serial number? Maybe the GUI is taking time to show the record.


Thanks,
Anil Kumar M.

---Sent from phone. Please excuse the typos - - -

Re: Zone Transfer Issue

Adviser
Posts: 77
4531     0

Did you check the zone data with dig? It looks like the zon-transfer suceeds, so the data nust be there. Secondary DNS zones on Infoblox take a while to update

Re: Zone Transfer Issue

Authority
Posts: 31
4531     0

Thanks Anil,

 

nslookup displays updated record immediatly, but GUI is taking more than 10 mins to update.

What could be the reason for GUI to taking so long time to update configuration?

 

Thanks,

 

Sachin

Re: Zone Transfer Issue

Authority
Posts: 31
4531     0

Thanks Harrys.

Showing results for 
Search instead for 
Do you mean 

Recommended for You