Zonerunner internal/external view issue

hello guys,

 

 

i'm trying the Zonerunner feature on the GTM side of F5. I've currently 3 BIND server on my network, one is master and the other two are slaves. I've put also F5 as slave to make some tests. Each BIND has two view, one internal that use ACL to match internal hosts and one external used to resolve DNS in Public IP.

 

 

 

The transfer zone for internal view works without a problems, when I change serial number on my master and doing a "rndc reload" F5 and other two BIND update the zone file. The external transfer no.. i've setup a TSIG key to avoid using two different IP for transfer internal/external zone, on first transfer (when setup the zone on F5), the balancer get the zone file.. but when I change SOA record on my master and reload named, my BIND send notify to F5.. but F5 doesn't redownload zone files :(

 

 

 

this is the current zone configuration of my Master on the external view:

 

 

 

key "external" {

 

algorithm hmac-md5;

 

secret "xxx";

 

};

 

 

 

 

view "external" {

 

match-clients { !localnets; key external; any; };

 

 

 

 

zone "example.net" in {

 

type master;

 

allow-transfer { 10.10.4.12; };

 

also-notify { 10.10.4.12; };

 

notify yes;

 

file "external/exa_net_ext";

 

};

 

 

};

 

 

 

 

 

and this is the F5 configuration:

 

 

 

key "external" {

 

algorithm hmac-md5;

 

secret "xxx";

 

};

 

 

 

 

view "external" {

 

match-clients {

 

"zrd-acl-000-000";

 

"extkey";

 

any;

 

};

 

zone "example.net." {

 

type slave;

 

file "db.external. example.net.";

 

masters {

 

10.10.4.10 key external;

 

};

 

};

 

};

 

 

 

 

Hope someone can help me

 

 

 

Many thanks!