DNS zones not replicated to slave servers

Hi,

Since last update of Bind, we have more problems with replicating the DNS settings to the DNS slaves.
We get this error:

Warning - errors were found in this domain's DNS records : Failed to check for DNS zone on slave server linux02.webinteractive.nl : Error reading response length from fastrpc.cgi :

Any idea?

Remote support is enabled if you want to take a look at beheeer.webinteractive.nl

Thanks.

Status: 
Active

Comments

Howdy -- that error you're getting is talking about a problem in the DNS records.

To determine what that is, you may want to log into both the master and the slave DNS server, restart BIND, and then look in /var/log/messages for any errors.

If both servers are running Debian 6, you can restart BIND with this command:

/etc/init.d/bind9 restart

That error might also be caused by Virtualmin being unable to contact Webmin on the remote system. Make sure that ports 10000 to 10010 are open on the DNS slave system's firewall ..

I restarted the BIND DNS server and there are no errors or messages in /var/log/messages. The ports are open. We have not changed our firewall. Only updated Bind.

Any other ideas?

Does anything get logged to /var/webmin/miniserv.error on the remote system when you validate the domain?

I see this in the /var/webmin/miniserv.error

fastrpc: raw HASH,VAL%2Cnewsession,VAL%2C1,VAL%2Cfile,VAL%2Cbind8%252Dlib%252Epl,VAL%2Caction,VAL%2Crequire,VAL%2Cmodule,VAL%2Cbind8 fastrpc: require bind8/bind8-lib.pl fastrpc: require done

I also have problems with this server, because I cannot upgrade webmin and usermin.

Now updating webmin .. Installing package(s) with command apt-get -y install webmin .. Reading package lists... Building dependency tree... Reading state information... The following packages were automatically installed and are no longer required: libbsd-resource-perl libdevel-symdump-perl mlock libc-client2007e Use 'apt-get autoremove' to remove them. The following packages will be upgraded: webmin 1 upgraded, 0 newly installed, 0 to remove and 7 not upgraded. Need to get 14.9 MB of archives. After this operation, 229 kB of additional disk space will be used. WARNING: The following packages cannot be authenticated! webmin E: There are problems and -y was used without --force-yes .. install failed!

Now updating usermin .. Installing package(s) with command apt-get -y install usermin .. Reading package lists... Building dependency tree... Reading state information... The following packages were automatically installed and are no longer required: libbsd-resource-perl libdevel-symdump-perl mlock libc-client2007e Use 'apt-get autoremove' to remove them. The following packages will be upgraded: usermin 1 upgraded, 0 newly installed, 0 to remove and 7 not upgraded. Need to get 6097 kB of archives. After this operation, 36.9 kB of additional disk space will be used. WARNING: The following packages cannot be authenticated! usermin E: There are problems and -y was used without --force-yes .. install failed!

Hmm, we may need to take a peek at your virtualmin repository file. What does this command output:

cat /etc/yum.repos.d/virtualmin.repo

cat /etc/yum.repos.d/virtualmin.repo

cat: /etc/yum.repos.d/virtualmin.repo: No such file or directory

Oh, whoops, you're using Debian and not CentOS, so that'd be a different file. But, looking at your system, your repositories do appear to be correct.

However, I also see that you're actually using the most recent Webmin and Usermin already, so in theory, it shouldn't be prompting you to update Webmin or Usermin.

Where is it that you're attempting the update, is that from within Virtualmin?

However, in the meantime, you could always run this command as root to update all the packages on your system:

apt-get upgrade

Ok, I updated the server with apt-get update and now everything seems to work.

However when we added new domains, it could not be propagated to the slaves. But the domain has been added on the master. How can I get the domain added to the DNS slaves?

You mentioned a message you saw in /var/webmin/miniserv.error -- is that a message that was on the remote system containing the slave DNS server?

Yes, that was indeed on the remote DNS slave. But that problem has been solved after you gave the solution to apt-get upgrade instead of upgrading from virtualmin GUI.

The problem that still remains is that at the time we created domains, the slaves could not be updated. So the domains are only configured on the master DNS, but not on the slaves. What I want to know is how I can re-push the information from a master to the slaves. In the past we did this by deleting the domain and recreate it. But I find this a very drastic option.

Well, let's try this in order to troubleshoot the DNS replication. The first step is to run this command from the command line on your primary server:

virtualmin validate-domains --all-domains

After running that command, go to the slave server -- and on that slave server, look at /var/webmin/miniserv.error.

Did any new messages appear during the time it was running that command?

No errors on the slave. As I told you, there are no problems with the slaves NOW. All the slaves are updated and now it is working. But before I had updated the servers, the domains we created does not exist on the slaves. For example the domain "aquariumverenigingvoorne.nl" has been created BEFORE the update and therefor not replicated to the slaves:

aquariumverenigingvoorne.nl BIND DNS domein : DNS zone does not exist on slave server 83.96.168.45

So what I want is to have that DNS zone on the slave. But how can I do that without deleting and recreate it on the master?