adding a secondary DNS server

  • Thread starter Thread starter Rusty Shackelford
  • Start date Start date
R

Rusty Shackelford

I have a primary standard dns server and I am unable to add the zone to
another dns server. The one I want to add is just a regular server not a
member. The message I keep getting is that the sever encountered an error
while attempting to load the zone. I have had the primary set to allow any
zone transfer and I have specified the IP. I have removed DNS and
reinstalled it. For giggles I added the zone to a AD DNS server and it
worked like it was supposed to. There is nothing in the event log. Any
ideas?
 
In
Rusty Shackelford said:
I have a primary standard dns server and I am unable to add the zone
to another dns server. The one I want to add is just a regular server
not a member. The message I keep getting is that the sever
encountered an error while attempting to load the zone. I have had
the primary set to allow any zone transfer and I have specified the
IP. I have removed DNS and reinstalled it. For giggles I added the
zone to a AD DNS server and it worked like it was supposed to. There
is nothing in the event log. Any ideas?
Click to expand...

Is the machine you are trying to add the zone to multihomed?
 
In
Rusty Shackelford said:
Yes it is, the primary is too.
Click to expand...
Make sure you have allowed zone transfers to all IP addresses on the
secondary, not just to the IP address it is listening on.

Zone transfers are made to the IP address that the primary sees when the
secondary connects, if the secondary is behind a router or if it is
multihomed it affects the IP the primary sees.
 
I added all the Ip addresses and router address to the primary allowed Ip
addresses. It still does not work, in theory wouldnt I be able to check
allow any server to connect and not have to worry about the IPs. I stopped
the service deleted the log then turned it back on then tried to transfer
from master and found this at the end of the log file:

A more recent version, version 20 of zone DOMAIN.com was found at DNS server
at X.X.X.X.
Zone transfer is in progress.
Zone usadvisorsnetwork.com failed zone refresh check. Unable to connect to
master DNS server
at X.X.X.X to receive zone transfer. Check that the zone contains correct
IP address
for the master server or if network failure has occurred. For more
information,
see "To update the master server for a secondary zone" in the online Help.
If
available, you can specify more than one master server in the list for this
zone.

----Also if I do a simple/recursive query it fails.
 
In
Rusty Shackelford said:
I added all the Ip addresses and router address to the primary
allowed Ip addresses. It still does not work, in theory wouldnt I be
able to check allow any server to connect and not have to worry about
the IPs. I stopped the service deleted the log then turned it back on
then tried to transfer from master and found this at the end of the
log file:

A more recent version, version 20 of zone DOMAIN.com was found at DNS
server at X.X.X.X.
Zone transfer is in progress.
Zone usadvisorsnetwork.com failed zone refresh check. Unable to
connect to master DNS server
at X.X.X.X to receive zone transfer. Check that the zone contains
correct IP address
for the master server or if network failure has occurred. For more
information,
see "To update the master server for a secondary zone" in the online
Help. If
available, you can specify more than one master server in the list
for this zone.
Click to expand...

This error means the secondary has the incorrect IP address of the primary.
Does the secondary connect to the primary through a router or a firewall?
 
The network setup is 2 sites connectetd by a hardware VPN ussing 10.0.X.X.
Server A is 10.0.1.5 and server B is 10.0.2.5. I have tried setting B to use
the machine name and both internal and external IP addressed.


"Kevin D. Goodknecht [MVP]"
 
In
Rusty Shackelford said:
The network setup is 2 sites connectetd by a hardware VPN ussing
10.0.X.X. Server A is 10.0.1.5 and server B is 10.0.2.5. I have tried
setting B to use the machine name and both internal and external IP
addressed.
Click to expand...

Maybe it's something simple as an incorrect subnet mask? What masks are
these machines using?


--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS-IS" with no warranties and confers no
rights.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
Back
Top