[Info] Slave DNS servers configured in ‘Transfer Restrictions’ do not receive copies of DNS zones from the server « Plesk Tips and tricks ( Revenda de hospedagem )

[Info] Slave DNS servers configured in ‘Transfer Restrictions’ do not receive copies of DNS zones from the server

By revenda

[Info] Slave DNS servers configured in ‘Transfer Restrictions’ do not receive copies of DNS zones from the server.
SYMPTOMS
After switching the default DNS server in Plesk from BIND to Microsoft DNS not all of the slave DNS servers configured in ‘Transfer Restrictions’ receive copies of DNS zones from the server.
CAUSE
Microsoft DNS doesn’t allow adding subnets to the transfer restrictions list (ACL), as such, 256 IP addresses from each subnet configured in Transfer restrictions in BIND will be added to MS DNS.
RESOLUTION
It is not recommended to allow transfers to all IPs from /8 and /16 networks (2^24 and 2^16 IP addresses) to DNS transfers as it may cause possible security issues. Consider using explicit restrictions for each individual slave server.

Tags: dns, plesk

This entry was posted on April 12, 2008 at 9:03 pm and is filed under dns, plesk. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Plesk Tips and tricks ( Revenda de hospedagem )

[Info] Slave DNS servers configured in ‘Transfer Restrictions’ do not receive copies of DNS zones from the server

Leave a Reply