I'm using Bind9 DNS on Fedora 5 that I need to move to another Fedora 5 server. I added the new server name to our hosting service DNS and waited for it to propagate. I then copied named.conf and all the zone files to the second server, made the appropriate changes to SOA and NS on both servers and started named. So now I have two working domain masters, the original is also the firewall running IPtables and the new one is behind the firewall. Everything works fine both inside and outside the firewall EXCEPT
1. Zone transfers only work on the original server. Incrementing the serial and restarting named on the new server does not transfer the zone (according to 'dig any domain.org')
2. Shutting down Named on the original server kills DNS after 10 minutes. This one is especially baffling since both servers are listed in our domain as name servers.
All zone files on both servers have SOA pointing to the new server and NS entries for both servers. Named.conf is the same on both servers. I opened the firewall for the new server zone transfers to our ISP's DNS servers with:
-A DNS2 -p tcp -m tcp --dport 53 -j ACCEPT
-A DNS2 -p udp -m udp --dport 53 -j ACCEPT
-A DNS2 -p udp -m udp -s 220.127.116.11 -j ACCEPT
-A DNS2 -p tcp -m tcp -s 18.104.22.168 -j ACCEPT
-A DNS2 -p udp -m udp -s 22.214.171.124 -j ACCEPT
-A DNS2 -p tcp -m tcp -s 126.96.36.199 -j ACCEPT
I've done a lot of reading, searching and work on this over the past few days. I think I'm missing something simple but elusive. Any help will be greatly appreciated.