Search

Language:  

Available article translations:

[Info] Slave DNS servers configured in ‘Transfer Restrictions’ do not receive copies of DNS zones from the server.

APPLIES TO:
  • Plesk 7.6 for Windows
  • Plesk 7.5 for Windows

Symptoms

After switching the default DNS server in Plesk from BIND to Microsoft DNS not all of the slave DNS servers configured in ‘Transfer Restrictions’ receive copies of DNS zones from the server.

Cause

Microsoft DNS doesn’t allow adding subnets to the transfer restrictions list (ACL), as such, 256 IP addresses from each subnet configured in Transfer restrictions in BIND will be added to MS DNS.

Resolution

It is not recommended to allow transfers to all IPs from /8 and /16 networks (2^24 and 2^16 IP addresses) to DNS transfers as it may cause possible security issues. Consider using explicit restrictions for each individual slave server.



c0c38d2367acfa8909699e0b34b01dea eeda7e5e81623f3acf0bdb69fa51d540 e115c1a9652baf38f4af4f18d5b7ac6e 42844a8183c58f5bd71c7d59929707e6

FEEDBACK
Was this article helpful?
Tell us how we may improve it.
Yes No