June 17th, 2003, 02:05 PM
Add second IP address to DNS server
Our ISP recently informed us that they are renumbering their IP network and our address block is changing. They have enabled both the old and new IPs for us during the transfer period. We are running BIND9 on an OpenBSD firewall using pf. I aliased the new addresses on the firewall external interface and created a second logical internal network, binat-ing the new external addresses to the new internal network. That all works fine and I can hit the services of the internal servers on either IP. But on the firewall, named will not start on the new IP address, error:
named: could not listen on UDP socket: permission denied
named: creating IPv4 interface dc1 failed: interface ignored
Is there any way to get BIND to work on the aliased IP address (which of course is in a completely different subnet)?
June 19th, 2003, 06:59 PM
I didn't quite understand some of that. However, thinking strictly about having the BIND server listen on more than one IP address. Is it acceptable that you just set it to listen on 0.0.0.0? In that case it will listen on all interfaces. If that is not acceptable. I'll do a little research.
June 19th, 2003, 09:42 PM
Thanks for responding. This got me thinking. I tried all zeros and did a reload and it stopped listening on all interfaces. I deleted that line from named.conf and it still wouldn't listen! So I killed the process and restarted and now it is listening on both IPs I wanted it to. DOH!
Sorry for wasting your time...
June 20th, 2003, 08:06 AM
yeah by default it should listen on all interfaces (0.0.0.0). Good to know it's working.