26 Dub
2025
26 Dub
'25
18:56
Thanks Jeremy, your description is perfect and correct.
Daniel
On 26. 04. 25 18:19, Jeremy C. Reed wrote:
On Fri, 25 Apr 2025, Alexandr Basov wrote:
Could you please clarify whether Knot can perform
a zone transfer not from
the first master listed, but from the one that sent the NOTIFY? The masters
are configured in the following order:
remote:
- id: master
address: [ "192.168.58.151", "192.168.58.134" ]
When a NOTIFY is sent from 192.168.58.134, the zone transfer is still
performed from 192.168.58.151.
What version of Knot are you using?
See the documentation change from
https://www.knot-dns.cz/docs/3.0/html/configuration.html
"When the server receives a zone update notification from a listed
remote, that remote will be the most preferred one for the subsequent
transfer."
https://www.knot-dns.cz/docs/3.1/html/configuration.html
"When the server receives a zone change notification from a listed
remote, only that remote is used for a subsequent zone transfer."
I didn't try it, but since this says "remote" maybe define multiple
remotes with one remote for each address.
If you always want to exclude doing zone transfers from one, then remove
the IP from the remotes address and then use acl for the the IP with
action: notify. I didn't try that either though.
--