4. Secondary Server Can’t Load Zone Data
If a secondary name server can’t get the current serial number for a zone from its master server, you won’t be warned about it initially. However, if the problem persists and the secondary can’t determine within the expire interval whether or not its data is up to date, it expires the zone. On a Microsoft DNS Server, you’ll see a message like this in the DNS Server event log:
Zone movie.edu expired before it could obtain a successful zone transfer or update from a master server acting as its source for the zone. The zone has been shut down.
Once the zone has expired and the name server has shut it down, you’ll start getting Query refused errors when you query the name server for data in the zone:
C:\> nslookup robocop wormhole.movie.edu.
Server: wormhole.movie.edu
Addresses: 192.249.249.1, 192.253.253.1
*** wormhole.movie.edu can't find robocop.movie.edu: Query refusedThree leading causes of this problem are a loss in connectivity to the master server due to network failure, an incorrect IP address configured for the master server, and a syntax error in the zone datafile on the master server.
First, use the DNS console to check the address of the master server(s) from which the secondary is attempting to load data. Right-click the domain name of the zone in the left pane, choose Properties, and look at the General tab, shown in Figure 15-3.
Make sure that’s really the IP address ...
Get DNS on Windows Server 2003, 3rd Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
