BIND 从站是否接收来自其他从站的通知?

tag-icon tag-icon domain-name-system bind nameserver master-slave
BIND 从站是否接收来自其他从站的通知?

我有一个主名称服务器,还有几个从属服务器。今天,当我将其中一个从属服务器更改为新服务器时,我遇到了一条奇怪的错误消息。
在更新主服务器上的 DNS 记录并重新启动 BIND 后,我注意到它ns3.mydomain.com正在尝试发送通知。我检查了配置文件,配置文件中ns4.mydomain.com没有它的 IP 地址。 它不应该将通知发送到而不是 吗?我还应该注意到,和上的 DNS 记录似乎都已更新。ns4.mydomain.comns3.mydomain.com
ns1.mydomain.comns4ns3ns3ns4

这是 ns3 (IP 地址: ) 上的错误消息107.161.xxx.xxx

May 15 22:08:22 vps named[23851]: client 185.38.xxx.xxx#59396: received notify for zone 'mydomain1.com'
May 15 22:08:22 vps named[23851]: zone mydomain1.com/IN: refused notify from non-master: 185.38.xxx.xxx#59396
May 15 22:08:22 vps named[23851]: client 185.38.xxx.xxx#59396: received notify for zone 'mydomain2.com'
May 15 22:08:22 vps named[23851]: zone mydomain2.com/IN: refused notify from non-master: 185.38.xxx.xxx#59396
May 15 22:08:22 vps named[23851]: client 185.38.xxx.xxx#59396: received notify for zone 'mydomain3.com'
May 15 22:08:22 vps named[23851]: zone mydomain3.com/IN: refused notify from non-master: 185.38.xxx.xxx#59396
May 15 22:08:23 vps named[23851]: client 185.38.xxx.xxx#59396: received notify for zone 'mydomain4.com'
May 15 22:08:23 vps named[23851]: zone mydomain4.com/IN: refused notify from non-master: 185.38.xxx.xxx#59396

这是 ns4 (IP 地址: ) 上的错误消息185.38.xxx.xxx

May 15 22:08:22 uk named[572]: client 107.161.xxx.xxx#48742: received notify for zone 'mydomain1.com'
May 15 22:08:22 uk named[572]: zone mydomain1.com/IN: refused notify from non-master: 107.161.xxx.xxx#48742
May 15 22:08:22 uk named[572]: client 107.161.xxx.xxx#48742: received notify for zone 'mydomain2.com'
May 15 22:08:22 uk named[572]: zone mydomain2.com/IN: refused notify from non-master: 107.161.xxx.xxx#48742
May 15 22:08:22 uk named[572]: client 107.161.xxx.xxx#48742: received notify for zone 'mydomain3.com'
May 15 22:08:22 uk named[572]: zone mydomain3.com/IN: refused notify from non-master: 107.161.xxx.xxx#48742
May 15 22:08:22 uk named[572]: client 107.161.xxx.xxx#48742: received notify for zone 'mydomain4.com'
May 15 22:08:22 uk named[572]: zone mydomain4.com/IN: refused notify from non-master: 107.161.xxx.xxx#48742

答案1

指定notify master-only;options部分中或指定notify no;zone如果您不想发送通知消息,请在从属定义中。

默认情况下,通知消息会发送到该区域的所有名称服务器(基于NS区域数据中的记录),但不包括SOA MNAME(另请参阅notify-to-soa)。

答案2

allow-notify { address_list };我认为您需要在从属区域名称服务器的选项中应用该语句,其中“address_list”应该是主名称服务器通知消息的源 IP。

答案3

作为文档显示,如果启用了通知,则通知消息将发送到该区域的 NS 记录中列出的每个服务器。这适用于主服务器和从服务器。

相关内容