Zone Transfer from Master randomly picking TTL and send to the slave servers
Summary
(Summarize the bug encountered concisely.)
BIND version used
(Paste the output of named -V
.)
Steps to reproduce
(How one can reproduce the issue - this is very important.)
What is the current bug behavior?
(What actually happens.)
What is the expected correct behavior?
Since BIND DNS allows us to configure different TTL to different records in various types including A, MX, NS, TXT, etc. Master server is able to return the correct TTL. Zone will be transfered to the Slave servers and we are expecting the Slave servers will return the same TTL we set on the Master server, which is not the case.
Relevant configuration files
Zone file on the Master server
test.com. IN SOA master.dns.com. abuse.dns.com. (
2023020113
600
300
1209600
3600 )
test.com. 40 IN NS ns1.dns.com.
test.com. 70 IN NS ns2.dns.com.
ftp.test.com. 35 IN A 192.168.8.100
mail.test.com. 80 IN A 192.168.8.100
test.com. 24 IN A 23.236.62.147
www.test.com. 16 IN CNAME www193.wixdns.net.
autodiscover.test.com. 39 IN CNAME autodiscover.outlook.com.
test.com. 60 IN MX 0 test-com.mail.protection.outlook.com.
test.com. 721831 IN TXT "v=spf1 include:spf.protection.outlook.com -all"
test.com. 654321 IN TXT "google-site-verification=z0LyqQJjbTX6D8ZsnJGGsX0_wY-o2QW_r-ocleb-Lys"
test.com. 456789 IN TXT "google-site-verification=IoRdEimdWuZ-6eOYkk5yQS1lKvA-_aP7Ql4wwScK2HI"
test.com. 987654 IN TXT "google-site-verification=b8Ryc_3pyMfS3N2-I4AF8bXHyaLd0AZJkgvG76HAxV4"
Zone file on the Slave server
$ORIGIN .
$TTL 3600 ; 1 hour
test.com IN SOA master.dns.com. abuse.dns.com. (
2023020113 ; serial
600 ; refresh (10 minutes)
300 ; retry (5 minutes)
1209600 ; expire (2 weeks)
3600 ; minimum (1 hour)
)
$TTL 40 ; 40 seconds
NS ns1.dns.com.
NS ns2.dns.com.
$TTL 24 ; 24 seconds
A 23.236.62.147
$TTL 60 ; 1 minute
MX 0 test-com.mail.protection.outlook.com.
$TTL 721831 ; 1 week 1 day 8 hours 30 minutes 31 seconds
TXT "v=spf1 include:spf.protection.outlook.com -all"
TXT "google-site-verification=z0LyqQJjbTX6D8ZsnJGGsX0_wY-o2QW_r-ocleb-Lys"
TXT "google-site-verification=IoRdEimdWuZ-6eOYkk5yQS1lKvA-_aP7Ql4wwScK2HI"
TXT "google-site-verification=b8Ryc_3pyMfS3N2-I4AF8bXHyaLd0AZJkgvG76HAxV4"
$ORIGIN test.com.
$TTL 39 ; 39 seconds
autodiscover CNAME autodiscover.outlook.com.
$TTL 35 ; 35 seconds
ftp A 192.168.8.100
$TTL 80 ; 1 minute 20 seconds
mail A 192.168.8.100
$TTL 16 ; 16 seconds
www CNAME www193.wixdns.net.
Relevant logs and/or screenshots
- CentOS 7
- Webmin installed
- However, I have consulted the developer of Webmin and he believes this is a bug under BIND DNS as Webmin has nothing to do with Zone Transfers.
- Discussion with the developer can be found at https://sourceforge.net/p/webadmin/bugs/5608/
Also, after checking the channel logs using debug level 11, the TTL is already modified before xfer-out
.
Possible fixes
N/A