[tech] Sorting out webservers and member domains
Matt Johnston
matt at ucc.asn.au
Tue Apr 23 21:46:31 AWST 2019
> On Tue 23/4/2019, at 3:18 pm, Matt Johnston <matt at ucc.asn.au> wrote:
> With a bit more investigation it looks like the ns?.he.net secondary DNS servers don't update domains immediately (mooneye sends them a DNS NOTIFY when the config changes, they must ignore it). So until the change TTL expires (an hour or so) I've commented out donsuth.ucc.asn.au from members.conf - sorry Donald!
Mooneye wasn't notifying the right servers. I've added some config so DNS updates should be propagated to the secondary servers (he.net and afraid.org) straight away.
mooneye:/etc/bind/named.conf.local now has
// notify ns1.he.net, it will request from slave.dns.he.net
// https://forums.he.net/index.php?topic=3183.0
also-notify { 216.218.130.2; };
allow-transfer { 216.218.133.2; 2001:470:600::2; 69.65.50.192;}; // slave.dns.he.net, ns2.afraid.org
Matt
More information about the tech
mailing list