Agenda: dns-swatch-zone-transfer.txt

File dns-swatch-zone-transfer.txt, 1.5 KB (added by admin, 6 years ago)
Line 
1Configuring SWATCH
2
3On AUTH1
4
51. Create the configuration file for swatch:
6
7        - Edit /usr/local/etc/swatch.conf -- use TAB and not SPACE
8          for the lines below "watchfor"!
9
10- - - - - - - - - - - - - - cut below - - - - - - - - - - - - -
11
12watchfor /client ([0-9A-F.:]+)\D\d+: transfer of '(.*)\/IN': .XFR/
13        mail=adm,subject=Zone AXFR
14        threshold type=limit,count=1,seconds=600
15
16- - - - - - - - - - - - - - cut above - - - - - - - - - - - - -
17
18
192. Enable the mail server
20
21        - Add to /etc/rc.conf
22
23        postfix_enable="YES"
24
25        # newaliases
26        # /usr/local/etc/rc.d/postfix start
27
283. Try sending mail to yourself
29
30        - First become the adm user:
31
32        # su - adm
33
34        - Now send yourself an email:
35
36        $ echo hello | mail adm@auth1.grpX.ws.nsrc.org
37
38        - See if the mail has arrived:
39
40        $ mutt -f /var/mail/adm
41
424. Start swatch:
43
44        - Be sure you are the root user again:
45
46        $ exit
47
48        # swatch -c /usr/local/etc/swatch.conf --tail-file=/etc/namedb/log/transfers --daemon
49
50        # ps axuww | grep swatch
51
52        - You should see a line like the following:
53
54   root 58811  0.0  0.0 11500  2124   5  RJ   11:41AM   0:00.02 /usr/local/bin/perl /usr/local/bin/swatch -c /usr/local/etc/swatch.conf --tail-file=/etc/namedb/log/transfers --daemon
55
567. Ask another group to perform a zone transfer of your zone:
57
58        From their machine:
59
60        # dig @auth1.grpX.ws.nsrc.org YOURTLD axfr              (where X is YOUR group)
61
62        Q: do they get a copy of your zone ?
63        Q: do you get an email about it ?
64
658. Check that mails are coming in:
66
67        # mutt -f /var/mail/adm
68       
69        Note the information contained in the message.
70