Zone transfer not working

A

alaiti

New Member
Zone transfers have stopped working for my domain laiti.iki.fi. When I set name servers ns17.zoneedit.com and ns8.zoneedit.com, I get an error "nameserver does not allow zone transfers." What to do?
 
Hi. NS for the domain name/subdomain is not set to ZoneEdit name servers. Where (URL, lookup?) do you get error you're reporting about "name server does not allow zone transfers"?

dig +trace laiti.iki.fi NS

; <<>> DiG 9.10.3-P4-Debian <<>> +trace laiti.iki.fi NS
;; global options: +cmd
. 518400 IN NS C.ROOT-SERVERS.NET.
. 518400 IN NS K.ROOT-SERVERS.NET.
. 518400 IN NS J.ROOT-SERVERS.NET.
. 518400 IN NS F.ROOT-SERVERS.NET.
. 518400 IN NS M.ROOT-SERVERS.NET.
. 518400 IN NS G.ROOT-SERVERS.NET.
. 518400 IN NS E.ROOT-SERVERS.NET.
. 518400 IN NS I.ROOT-SERVERS.NET.
. 518400 IN NS A.ROOT-SERVERS.NET.
. 518400 IN NS H.ROOT-SERVERS.NET.
. 518400 IN NS B.ROOT-SERVERS.NET.
. 518400 IN NS L.ROOT-SERVERS.NET.
. 518400 IN NS D.ROOT-SERVERS.NET.
;; Received 853 bytes from 64.68.199.53#53(64.68.199.53) in 2 ms

fi. 172800 IN NS c.fi.
fi. 172800 IN NS b.fi.
fi. 172800 IN NS f.fi.
fi. 172800 IN NS h.fi.
fi. 172800 IN NS d.fi.
fi. 172800 IN NS g.fi.
fi. 172800 IN NS i.fi.
fi. 172800 IN NS j.fi.
fi. 172800 IN NS a.fi.
fi. 172800 IN NS e.fi.
fi. 86400 IN DS 44855 8 2 80CD184A31C50D5DC44B4F98811F298315986B44EDCC0666455C6AEF 7DBD997E
fi. 86400 IN RRSIG DS 8 1 86400 20210607170000 20210525160000 14631 . H4T6SEfr5InrT4Z/ytD69HzI2Qc4Hl/LykrwC6YQjE4JFgq9ugmkwRHJ UwKPAr95KotgBYuLnBVOveGamsJG2Ehvixue1IFB9ayKXCK73fOLdQ+v btdD2zDXiPZCA0c2O5cfAKrmYx4Y45uhUD/3TQNxWuPxmPezgl21VxaZ qpBTxvh8kVUiosMOEH40XRgV9BB0tcya1938Af0ZNaQniTtvvPNk6fBx 652NhZMZWxICyqIlL1FDKbgnFDnqZIek3rH2ek/UwOcIchB5WvtHeeTm +IctjRJo6Gt4xbW1hoo4RbrerKXigkv+k+oXwmUHy2j/5FHVYB+jyXf/ z8/BDg==
;; Received 976 bytes from 192.33.4.12#53(C.ROOT-SERVERS.NET) in 15 ms

iki.fi. 21600 IN NS ns.iki.fi.
iki.fi. 21600 IN NS ns2.iki.fi.
iki.fi. 21600 IN NS ns3.iki.fi.
iki.fi. 21600 IN NS ns1.z.fi.
iki.fi. 21600 IN NS ns2.z.fi.
iki.fi. 21600 IN DS 5119 13 2 C063F65E1735E6465A924C3E312EA064146461D22EB93847F9109D35 D40461C6
iki.fi. 21600 IN RRSIG DS 8 2 21600 20210606074851 20210523150623 37335 fi. uxAZKpyBvE5p3XcCMqkGXcjavtPM1woZ97hCBJM9f5ixWEBpvUSFGFpX iobLJjjSgwuxkK/MUmRVs8GPSRN7MQJ8AQNxLkdaqP/0DSsf+jYb+WN4 QVRnh2/6pulsEbLm0Nh4mNU+rU8Sjo+U/Qb8H6QTlCxqoTR+MIyRQB6+ WgWoTRret/MFK7qW1TXxFdQR1YNL4Q4Sh/saNjYq58/3XtEGgmq/xAOM Xd3Gz/HlzAHs8u9RHGNvdGBm0Usgmq00qnCWEx+vKO/yuZsQIR1OSIKX 8nQdW9ioGU7PheQq0Mr78uakVyeDNhge/WR5uGATVSzOO841Dc+DbkNN M2j3uA==
;; Received 1850 bytes from 87.239.127.198#53(f.fi) in 117 ms

iki.fi. 3600 IN SOA ns.iki.fi. hostmaster.iki.fi. 1621963334 28800 7200 604800 3600
iki.fi. 3600 IN RRSIG SOA 13 2 3600 20210624162546 20210525162546 13690 iki.fi. G6fcbOW6aNI12NOgGsgZUR/xmCx6bqjTjz/t0fkbmdsO5gYB1jfMxwQb P2zn1r2/CfpYpvVydvb4bBW6axIR1w==
iki.fi. 3600 IN NSEC lahtoruutu._domainkey.iki.fi. A NS SOA HINFO MX TXT AAAA NAPTR RRSIG NSEC DNSKEY
iki.fi. 3600 IN RRSIG NSEC 13 2 3600 20210624162546 20210525162546 13690 iki.fi. 8SHeBIZuuhJgau5p4I6OLwyfgReThs5VauCCUKmwQH29a6G36iodsjAU TXkuminmU8+XlXo8wXxiBuQqLW8CnQ==
www.laite.iki.fi. 3600 IN NSEC lakki.iki.fi. CNAME RRSIG NSEC
www.laite.iki.fi. 3600 IN RRSIG NSEC 13 4 3600 20210624162546 20210525162546 13690 iki.fi. sNk2vpOjp2FZTpTYL6JfgTKbbZPYD/uOc1JyMkP6H5budMHyU7l0Ewqd K1buF7kHA7W6qMXXBDHMDFIKXtBFUQ==
;; Received 492 bytes from 185.185.170.42#53(ns.iki.fi) in 105 ms
 
Hi,

The NS is not set because iki.fi does not allow me to set it. And it does not allow that because it gets error from Zoneedit DNS servers when I try to set them; see attachment.

Translation for the screenshot: "Wrong NS record: The name server provider does not allow zone transfers for alias laiti: REFUSED"
 

Attachments

  • Screenshot 2021-05-27 at 11.13.11.png
    Screenshot 2021-05-27 at 11.13.11.png
    69.8 KB · Views: 3
I found out that the name servers for my domain have been changed and they should now be dns1.zoneedit.com and dns2.zoneedit.com. Also, I was missing a dot in the fields.

But I still get the "The name server provider does not allow zone transfers for alias laiti: REFUSED" error.
 

Attachments

  • Screenshot 2021-05-27 at 11.22.26.png
    Screenshot 2021-05-27 at 11.22.26.png
    68.7 KB · Views: 6
  • Screenshot 2021-05-27 at 11.24.00.png
    Screenshot 2021-05-27 at 11.24.00.png
    57.1 KB · Views: 6
What is the URL of the page that you are reporting is showing the refused messages?
 
Can you please be explicit on what you mean by zone transfers.... the domain is not set as secondary and there is no IP listed in the Integrations area for zone transfers.

regards.
 
Well, I do not actually know how Iki arranges the zone transfers for their domains. But the situation is this: I have a domain from iki.fi (laiti.iki.fi) and there is an option to set a name service provider for that domain in order to have a secondary DNS. But when I set zoneedit name servers there, I suppose it makes an attempt of zone transfer from Iki to ZE. That attempt fails and the settings are not saved.

My guess is that I'd need to allow the zone transfer from ZoneEdit side but I have no idea how to do that. I tried "force retransfer option but got an error"
 

Attachments

  • Screenshot 2021-05-31 at 11.08.27.png
    Screenshot 2021-05-31 at 11.08.27.png
    39 KB · Views: 0
Ok, I got this now working.

I needed to set NS and A records from Iki side to "xfr0.zoneedit.com." and "64.68.198.91" instead. And allow all 50 ip addresses of iki to ZoneEdit allowed zone transfer IP addresses. After that I was able to do that force retransfer.
 

Attachments

  • Screenshot 2021-05-31 at 13.52.05.png
    Screenshot 2021-05-31 at 13.52.05.png
    25.1 KB · Views: 0
  • Screenshot 2021-05-31 at 13.53.11.png
    Screenshot 2021-05-31 at 13.53.11.png
    78.9 KB · Views: 0
You must log in or register to reply here.
Back
Top