From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <batyrshin@ieml.ru>
Message-ID: <46151F6B.3010600@ieml.ru>
Date: Thu, 05 Apr 2007 20:10:19 +0400
From: Timur Batyrshin <batyrshin@ieml.ru>
Organization: IEML
User-Agent: Thunderbird 1.5.0.2 (X11/20060502)
MIME-Version: 1.0
To: ALT Linux sysadmin discuss <sysadmins@lists.altlinux.org>
Content-Type: text/plain; charset=KOI8-R
Content-Transfer-Encoding: 8bit
X-SpamTest-Version: SMTP-Filter Version 3.0.0 [0255], KAS30/Release
X-SpamTest-Info: Not protected
X-Anti-Virus: Kaspersky Anti-Virus for MailServers 5.5.10/RELEASE,
	bases: 22032007 #267862, status: clean
Subject: [Sysadmins] =?koi8-r?b?z8LOz9fMxc7JxSBETlM=?=
X-BeenThere: sysadmins@lists.altlinux.org
X-Mailman-Version: 2.1.9rc1
Precedence: list
Reply-To: ALT Linux sysadmin discuss <sysadmins@lists.altlinux.org>
List-Id: ALT Linux sysadmin discuss <sysadmins.lists.altlinux.org>
List-Unsubscribe: <https://lists.altlinux.org/mailman/listinfo/sysadmins>,
	<mailto:sysadmins-request@lists.altlinux.org?subject=unsubscribe>
List-Archive: <http://lists.altlinux.org/pipermail/sysadmins>
List-Post: <mailto:sysadmins@lists.altlinux.org>
List-Help: <mailto:sysadmins-request@lists.altlinux.org?subject=help>
List-Subscribe: <https://lists.altlinux.org/mailman/listinfo/sysadmins>,
	<mailto:sysadmins-request@lists.altlinux.org?subject=subscribe>
X-List-Received-Date: Thu, 05 Apr 2007 16:10:23 -0000
Archived-At: <http://lore.altlinux.org/sysadmins/46151F6B.3010600@ieml.ru/>
List-Archive: <http://lore.altlinux.org/sysadmins/>

Объясните, пожалуйста, в чём разница между этими двумя наборами команд:

========
[root@server zone]# nsupdate -d
> key DHCP_UPDATER SECRET-KEY==
> server 127.0.0.1
> zone sub1.domain.ru
> update add test 3600 A 192.168.31.66
> send
Reply from update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOTZONE, id:   5024
;; flags: qr ra ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 1
;; TSIG PSEUDOSECTION:
=========

То же самое, но без директивы server :
=========
[root@server log]# nsupdate -d
> key DHCP_UPDATER SECRET-KEY==
> zone sub1.domain.ru
> update add test 3600 A 192.168.31.66
> send
; Communication with 127.0.0.1#53 failed: timed out
could not talk to any default name server
=========

Почему так? Ведь в обоих случаях запрос уходит на 127.0.0.1#53, а ответа в одном из них нет?


Вот на всякий случай настройки сервера:

/etc/resolv.conf:
search sub1.domain.ru
nameserver 127.0.0.1

/etc/HOSTNAME:
server

/var/lib/bind/etc/local.conf:
include "/etc/rfc1912.conf";
zone "sub1.ieml.ru" in {
    type master;
    file "sub1.ieml.ru.zone";
    allow-update { key DHCP_UPDATER; };
};
zone "31.168.192.in-addr.arpa" in {
    type master;
    file "31.168.192.in-addr.arpa";
    allow-update { key DHCP_UPDATER; };
};
key "DHCP_UPDATER" {
    algorithm hmac-md5;
    secret "ITmpAOsH0pwKmCJIM5LT2g==";
};

iptables отсутствует.