Hi 12.1 in HA setup with 2 DNS corresponding to two replicating DC's. DC1 192.168.1.2, DC2 192.168.1.3 Our internal zones are loaded fine after boot, but hitting any of the forwarders pointing out to Internet fails. Here is the line in /etc/named.conf on DC1: forwarders { 217.70.240.135; 217.70.70.136; 192.168.1.3 }; and on DC2: forwarders { 217.70.240.135; 217.70.70.136; 192.168.1.2 }; Both the forwarders are online and nslookup-able e.g.: lynn@hh1:~> nslookup
217.70.240.135 Server: 192.168.1.2 Address: 192.168.1.2#53
Non authoritative answer: 135.240.70.217.in-addr.arpa name = dns1.dragonet.es. Authoritative answers can be found from: 240.70.217.in-addr.arpa nameserver = dns1.dragonet.es. 240.70.217.in-addr.arpa nameserver = dns2.dragonet.es. dns1.dragonet.es internet address = 217.70.240.135 dns2.dragonet.es internet address = 217.70.240.136 But I have to restart named for the forwarders to kick in. I've tried enabling forward first; but no difference. Is it possible to have the forwarders consulted without having to restart? Thanks, L x Jul 2 17:00:17 hh3 named[3687]: starting BIND 9.8.1-P1 -u named Jul 2 17:00:17 hh3 named[3687]: built with '--prefix=/usr' '--bindir=/usr/bin' '--sbindir=/usr/sbin' '--sysconfdir=/etc' '--localstatedir=/var' '--libdir=/usr/lib' '--includedir=/usr/include/bind' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--with-openssl' '--enable-threads' '--with-libtool' '--enable-runidn' '--with-libxml2' '--with-dlz-mysql' '--with-dlz-ldap' 'CFLAGS=-fomit-frame-pointer -fmessage-length=0 -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector -funwind-tables -fasynchronous-unwind-tables -DNO_VERSION_DATE -fno-strict-aliasing' 'LDFLAGS=-L/usr/lib' Jul 2 17:00:17 hh3 named[3687]: adjusted limit on open files from 4096 to 1048576 Jul 2 17:00:17 hh3 named[3687]: found 1 CPU, using 1 worker thread Jul 2 17:00:17 hh3 named[3687]: using up to 4096 sockets Jul 2 17:00:17 hh3 named[3687]: loading configuration from '/etc/named.conf' Jul 2 17:00:17 hh3 named[3687]: reading built-in trusted keys from file '/etc/bind.keys' Jul 2 17:00:17 hh3 named[3687]: using default UDP/IPv4 port range: [1024, 65535] Jul 2 17:00:17 hh3 named[3687]: using default UDP/IPv6 port range: [1024, 65535] Jul 2 17:00:17 hh3 named[3687]: listening on IPv4 interface lo, 127.0.0.1#53 Jul 2 17:00:17 hh3 named[3687]: listening on IPv4 interface eth1, 192.168.1.2#53 Jul 2 17:00:17 hh3 named[3687]: generating session key for dynamic DNS Jul 2 17:00:17 hh3 named[3687]: sizing zone task pool based on 3 zones Jul 2 17:00:17 hh3 named[3687]: Loading 'AD DNS Zone' using driver dlopen Jul 2 17:00:18 hh3 named[3687]: samba_dlz: started for DN DC=hh3,DC=site Jul 2 17:00:18 hh3 named[3687]: samba_dlz: starting configure Jul 2 17:00:18 hh3 named[3687]: samba_dlz: configured writeable zone 'hh3.site' Jul 2 17:00:18 hh3 named[3687]: samba_dlz: configured writeable zone '_msdcs.hh3.site' Jul 2 17:00:18 hh3 named[3687]: set up managed keys zone for view _default, file '/var/lib/named/dyn//managed-keys.bind' Jul 2 17:00:18 hh3 named[3687]: Warning: 'empty-zones-enable/disable-empty-zone' not set: disabling RFC 1918 empty zones Jul 2 17:00:18 hh3 named[3687]: automatic empty zone: 0.IN-ADDR.ARPA Jul 2 17:00:18 hh3 named[3687]: automatic empty zone: 127.IN-ADDR.ARPA Jul 2 17:00:18 hh3 named[3687]: automatic empty zone: 254.169.IN-ADDR.ARPA Jul 2 17:00:18 hh3 named[3687]: automatic empty zone: 2.0.192.IN-ADDR.ARPA Jul 2 17:00:18 hh3 named[3687]: automatic empty zone: 100.51.198.IN-ADDR.ARPA Jul 2 17:00:18 hh3 named[3687]: automatic empty zone: 113.0.203.IN-ADDR.ARPA Jul 2 17:00:18 hh3 named[3687]: automatic empty zone: 255.255.255.255.IN-ADDR.ARPA Jul 2 17:00:18 hh3 named[3687]: automatic empty zone: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA Jul 2 17:00:18 hh3 named[3687]: automatic empty zone: 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA Jul 2 17:00:18 hh3 named[3687]: automatic empty zone: D.F.IP6.ARPA Jul 2 17:00:18 hh3 named[3687]: automatic empty zone: 8.E.F.IP6.ARPA Jul 2 17:00:18 hh3 named[3687]: automatic empty zone: 9.E.F.IP6.ARPA Jul 2 17:00:18 hh3 named[3687]: automatic empty zone: A.E.F.IP6.ARPA Jul 2 17:00:18 hh3 named[3687]: automatic empty zone: B.E.F.IP6.ARPA Jul 2 17:00:18 hh3 named[3687]: automatic empty zone: 8.B.D.0.1.0.0.2.IP6.ARPA Jul 2 17:00:18 hh3 named[3687]: command channel listening on 127.0.0.1#953 Jul 2 17:00:18 hh3 named[3687]: couldn't add command channel ::1#953: address not available Jul 2 17:00:18 hh3 named[3687]: zone 0.0.127.in-addr.arpa/IN: loaded serial 42 Jul 2 17:00:18 hh3 named[3687]: zone localhost/IN: loaded serial 42 Jul 2 17:00:18 hh3 named[3687]: managed-keys-zone ./IN: loaded serial 0 Jul 2 17:00:18 hh3 named[3660]: Starting name server BIND ..done Jul 2 17:00:18 hh3 named[3687]: running -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org