Zone transfer is happening but it is taking time to update zone file
Hi team,
we have master-slave setup with axfr zone transfer. Have enabled notify option in master and slave . Master is sending the notification, slave is receiving it and showing in log as transferred but it is taking 12 minutes to update the zone file. I am not sure, why it is taking 12 min to update zone file when the log shows as transfer complete
Master Named.conf +++
options {
listen-on port 53 { any; };
listen-on-v6 { none; };
directory "/etc/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
dnssec-enable no;
dnssec-validation no;
zone-statistics yes;
interface-interval 0;
empty-zones-enable yes;
check-names master warn;
transfers-in 48;
transfers-out 48;
transfers-per-ns 24;
max-transfer-time-in 5;
max-transfer-idle-in 2;
max-transfer-time-out 5;
max-transfer-idle-out 2;
#};
keys, acls, etc.
#include "common.conf";
internal view
#view "internal" in {
match-destinations { 10.x.x.x; };
recursion no;
zone "." in { type hint; file "named.root"; };
allow-query { any; };
allow-transfer { any; };
notify explicit;
also-notify {
x.x.x.x;
x.x.x.x;
};
include "internal.conf";
#};
+++
//Slave Named.conf
+++ #options {
listen-on port 53 { any; };
listen-on-v6 port 53 { any; };
directory "/etc/namedb";
# don't dump large cores...
coresize 0;
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
zone-statistics yes;
interface-interval 0;
empty-zones-enable yes;
ixfr-from-differences yes;
transfers-in 48;
transfers-out 48;
transfers-per-ns 24;
max-transfer-time-in 5;
max-transfer-idle-in 2;
max-transfer-time-out 5;
max-transfer-idle-out 2;
max-journal-size 2m;
# NOTE: 'unlimited' is a special value, according to BINDv9ARM:
# "unlimited means the maximum value of 32-bit unsigned integers (0xffffffff)"
# we are capping the cache at 4GB.
max-cache-size unlimited;
acache-enable yes;
max-acache-size 1073741824;
check-names master warn;
minimal-responses yes;
# default 10
clients-per-query 50;
# default 100
max-clients-per-query 500;
# setting this too high is counter-productive
# http://marc.info/?l=bind-users&m=143463374704452&w=2
recursive-clients 3000;
notify no;
masterfile-format text;
qname-minimization disabled;
# dnssec validation
dnssec-enable yes;
dnssec-validation auto;
#};
#disable client cookie validation #include "disable_client_cookie.conf";
keys, acls, etc.
#include "common.conf";
internal ces view
#view "internal" in {
match-destinations { 127.0.0.1; x.x.x.x; };
recursion yes;
zone "." in { type hint; file "named.root"; };
allow-query { any; };
allow-recursion { any; };
allow-transfer { any; };
allow-notify { any; };
include "internal.conf";
# Perf Zone
include "perf.conf";
};
+++
Logs in Master (messages)
+++ 07-Oct-2021 03:52:57.657 notify: zone perf.test.com/IN/internal: sending notifies (serial 1633521028) 07-Oct-2021 03:52:57.665 notify: zone perf.test.com/IN/external: sending notifies (serial 1633521002) 07-Oct-2021 03:52:58.157 xfer-out: client x.x.x.x.#51164 (perf.test.com): view internal: transfer of 'perf.test.com/IN': AXFR-style IXFR started 07-Oct-2021 03:52:58.160 xfer-out: client x.x.x.x#51164 (perf.test.com): view internal: transfer of 'perf.test.com/IN': AXFR-style IXFR ended +++
Logs in Slave ( Messages) ++ 07-Oct-2021 03:51:29.204 notify: client @0x7f7c5c1f17a0 x.x.x.x#61849: view internal: received notify for zone 'perf.test.com' 07-Oct-2021 03:51:29.205 xfer-in: transfer of 'perf.test.com/IN/internal' from x.x.x.x#53: connected using 10.10.133.16#35051 07-Oct-2021 03:51:29.208 notify: client @0x7f7c676ee840 x.x.x.x#5572: view ces-internal: received notify for zone 'perf.test.com' 07-Oct-2021 03:51:29.211 xfer-in: transfer of 'perf.test.com/IN/internal' from x.x.x.x#53: Transfer status: success 07-Oct-2021 03:51:29.211 xfer-in: transfer of 'perf.test.com/IN/internal' from x.x.x.x#53: Transfer completed: 1 messages, 661 records, 16213 bytes, 0.005 secs (3242600 bytes/sec) ++
but zone file got updated after 12 minutes root@stage-ces-rdns1 ~]# ls -ltr /etc/namedb/perf_test.zone -rw-r--r--. 1 named named 18812 Oct 7 04:04 /etc/namedb/perf_test.zone
Why there is a delay in updating zone file when the logs as transfer complete. PLease help us to narrow down the issue.
Regards K.Keerthiga