Differences

This shows you the differences between two versions of the page.

--- ubuntu:bind:configure_bind9:secondary_nameserver [2020/12/09 16:00] – created peter
+++ ubuntu:bind:configure_bind9:secondary_nameserver [2020/12/09 16:04] (current) – peter
@@ Line 66: / Line 66: @@
 <WRAP info>
-**NOTE:**  In **/var/log/syslog** you should see something similar to the following (some lines have been split to fit the format of this document):
+**NOTE:**  In **/var/log/syslog** you should see something similar to the following:
 <code bash>
@@ Line 86: / Line 86: @@
 records, 225 bytes, 0.002 secs (112500 bytes/sec)
 </code>
+</WRAP>
+<WRAP info>
+**NOTE:**  A zone is only transferred if the Serial Number on the Primary is larger than the one on the Secondary.
+If you want to have your Primary DNS notifying other Secondary DNS Servers of zone changes, you can add **also-notify { ipaddress; };** to **/etc/bind/named.conf.local** as shown in the example below:
+<file bash /etc/bind/named.conf.local>
+zone "example.com" {
+    type master;
+    file "/etc/bind/db.example.com";
+    allow-transfer { 192.168.1.11; };
+    also-notify { 192.168.1.11; };
+};
+zone "1.168.192.in-addr.arpa" {
+    type master;
+    file "/etc/bind/db.192";
+    allow-transfer { 192.168.1.11; };
+    also-notify { 192.168.1.11; };
+};
+</file>
+</WRAP>
+<WRAP info>
+**NOTE:**  The default directory for non-authoritative zone files is **/var/cache/bind/**.
+This directory is also configured in [[https://ubuntu.com/server/docs/security-apparmor|AppArmor]] to allow the named daemon to write to it.
 </WRAP>