Uploaded image for project: 'Support'
  1. Support
  2. SUPPORT-280

Adding a second downstream DNS consumer requires restart

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Open
    • Priority: Minor
    • Resolution: Unresolved
    • Affects Version/s: 2.1.8
    • Fix Version/s: None
    • Component/s: None
    • Labels:
      None
    • Environment:

      NetBSD/amd64 10.0_BETA

       

      Description

      I'm in the process of moving from one downstream DNS server to a second, and as a transition aid I added the new one as a second member to the "ProvideTransfer" and "Notify" constructs in my "addns.xml" inside the "Outbound" stanza.

      Initially I tried first to do "ods-enforcer zonelist export" (based on prior experience this is probably a good idea...), and then "ods-enforcer update all", but despite this, it was still not possible to do zone transfers from the new downstream DNS name server – the log still pointed to "acl failure".

      After a full re-start of OpenDNSSEC, both downstream name servers can transfer the zones.  However, this is ... surprising and unexpected, and I wonder if it isn't in fact a (minor) bug.

        Attachments

          Activity

            People

            Assignee:
            Unassigned
            Reporter:
            he Håvard Eidnes
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated: