Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

EA_Hicham_26895's avatar
EA_Hicham_26895
Icon for Nimbostratus rankNimbostratus
8 years ago
Solved

DNS Express as Slave

Hello guys, I'm setting up DNS Express to serve as a secondary NS for my zone. A hidden master is configured using NSD server. The initial AXFR query is successful when creating the zone on the BigIP. But when a notify is sent from the master to the BigIP, I'm getting an error (captured on tcpdump) saying : DNS123Zone change notification response 0xe24e Not authoritative SOA zone.com TSIG. NB: the IP address of the master is added on "Allow NOTIFY From" list Any hints

 

application delivery
BIG-IP DNS
  • Kevin_K_51432's avatar
    Kevin_K_51432
    8 years ago

    Greetings,

     

    I set up UDP virtual server (notify listener) per this article and it seems to be working:

     

    K45411181: Configuring DNS Express using tmsh

     

    https://support.f5.com/csp/article/K45411181

     

    When I change serial and initiate transfer from NS, DNS Express is updated. Without virtual, DNS Express says not authoritative.

     

    Hope this is helpful!

     

    Kevin

     

3 Replies

No RepliesBe the first to reply