BuddyNS logo

Enable AXFR transfer to BuddyNS

AXFR is the mechanism that secondary DNS servers use to get the fresh zone (domain data) from the master DNS server. (Details at DNS transfers).

BuddyNS must be able to AXFR your zone from your primary server. This is a step you have to take, but it normally takes one minute.

Click on your DNS software from the list below: (if your software is not in list, feedback us!)

Enterprise users follow these instructions using the IP addresses of your own cluster, as you find in your BuddyBoard.

ISC BIND

This is the most common software. Perform the following actions:

  1. locate the options { section in your main configuration file /etc/bind/named.conf (or one of the files it includes).For example:
    options {
            [ ... some stuff ... ]
        }
  2. you add this block in that section (provide BuddyNS with the zone data to serve) – note that transfer must be enabled on ALL addresses:
    options {
    [ ... some stuff ... ]
    allow-transfer {
    # allow ALL the following addresses! BuddyNS employs them all.
    173.244.206.26;
    88.198.106.11;
    108.61.224.67;
    103.6.87.125;
    185.136.176.247;
    # uncomment these for IPv6:
    #2607:f0d0:1001:d::100;
    #2a01:4f8:d12:d01::10:100;
    #2001:19f0:6400:8642::3;
    #2403:2500:4000::f3e;
    #2a06:fdc0:fade:2f7::1;
    };
    # Ignore this if you did not restrict queries with allow-query: allow queries from BuddyNS hosts
    #allow-query { 173.244.206.26; 88.198.106.11; 108.61.224.67; 103.6.87.125; 185.136.176.247; 2607:f0d0:1001:d::100; #2a01:4f8:d12:d01::10:100; 2001:19f0:6400:8642::3; 2403:2500:4000::f3e; 2a06:fdc0:fade:2f7::1; };
    }
  3. Tell BIND to UPdate with the new configuration: run as root this command:
    killall -HUP named

cPanel / WHM

We have a custom-built integration plugin for this. It will let you control your domains exclusively from your cPanel/WHM server, and have BuddyNS transparently replicate your zones in the background.

See our BuddyNS-cPanel integration plugin page.

DjbDNS

If you're running DjbDNS (TinyDNS), you've probably gone through its standard installation process and therefore have axfrdns running. (If not, follow the link and do :) It takes about 5 minutes ).

Perform these operations:

  1. add these lines at beginning of file /var/axfrdns/tcp (or you have it at /etc/axfrdns/tcp ?):
    # allow {a,b}.transfer.buddyns.com
    # allow ALL the following addresses! BuddyNS employs them all.
    173.244.206.26:allow
    88.198.106.11:allow
    108.61.224.67:allow
    103.6.87.125:allow
    185.136.176.247:allow
    # uncomment these for IPv6:
    #2607:f0d0:1001:d::100:allow
    #2a01:4f8:d12:d01::10:100:allow
    #2001:19f0:6400:8642::3:allow
    #2403:2500:4000::f3e:allow
    #2a06:fdc0:fade:2f7::1:allow
    
  2. run make to commit the change (no reload/restart is needed)

Dyn

In this set-up, you edit your zone(s) on Dyn.com's website. Dyn serves as your primary DNS server and provides zone data to BuddyNS via AXFR. Here's what to do:

  1. Follow Dyn's instructions for Allow zone data to be downloaded via DIG for all of your domains.
  2. Add each of the following IP addresses as Custom External Servers:
    • 173.244.206.26
    • 88.198.106.11
    • 108.61.224.67
    • 103.6.87.125
    • 185.136.176.247
  3. On BuddyNS, enter Dyn's AXFR host as Primary Server: 208.78.68.66.

Done!

Afraid FreeDNS

In this set-up, you edit your zone(s) on Afraid FreeDNS's website. Afraid serves as your primary DNS server and provides zone data to BuddyNS via AXFR.

Here's what to do:

  1. Log into your Afraid account.
  2. Follow "Backup DNS" in the main menu, then Manage AXFR Allow ACLs.
  3. Add each of the following addresses:
    • 173.244.206.26
    • 88.198.106.11
    • 108.61.224.67
    • 103.6.87.125
    • 185.136.176.247
    • 2607:f0d0:1001:d::100
    • 2a01:4f8:d12:d01::10:100
    • 2001:19f0:6400:8642::3
    • 2403:2500:4000::f3e
    • 2a06:fdc0:fade:2f7::1
  4. On BuddyNS, enter Afraid's AXFR host as Primary Server: 50.23.197.95.

If you want to apply this configuration to multiple domains, add the following domains and use "clone" with the domain you configured for AXFR.

Done!

DNSMadeEasy

In this set-up, you edit your zone(s) on DNSMadeEasy's website. DNSMadeEasy serves as your primary DNS server and provides zone data to BuddyNS via AXFR.

We point you to Mark's excellent post "DNS Made Easy with BuddyNS" for instructions.

GoDaddy

In this set-up, you edit your zone(s) on GoDaddy's website. GoDaddy serves as your primary DNS server and provides zone data to BuddyNS via AXFR. Here's what to do:

  1. Follow GoDaddy's instructions for Enabling Secondary DNS with Our Nameservers as Masters.
  2. As IPv4 Address Range of slave nameservers, enter ALL of the following BuddyNS transfer hosts:
    • 173.244.206.26 to 173.244.206.26
    • 88.198.106.11 to 88.198.106.11
    • 108.61.224.67 to 108.61.224.67
    • 103.6.87.125 to 103.6.87.125
    • 185.136.176.247 to 185.136.176.247
    GoDaddy does not support IPv6 transfers at the time of writing.
  3. On BuddyNS, enter GoDaddy's AXFR host as Primary Server: 72.167.238.110.

Done!

maraDNS

Add this line to maraDNS' configuration file:

# allow ALL the following addresses! BuddyNS employs them all.
zone_transfer_acl = "173.244.206.26, 88.198.106.11, 108.61.224.67, 103.6.87.125, 185.136.176.247"
# if you use IPv6:
zone_transfer_acl = "173.244.206.26, 88.198.106.11, 108.61.224.67, 103.6.87.125, 185.136.176.247, 2607:f0d0:1001:d::100, 2a01:4f8:d12:d01::10:100, 2607:f0d0:1001:d::100, 2a01:4f8:d12:d01::10:100, 2001:19f0:6400:8642::3, 2403:2500:4000::f3e, 2a06:fdc0:fade:2f7::1"

Refer to using maraDNS as master for further details.

Microsoft DNS

Microsoft DNS is configured differently depending on the version you're running.

Determine which of the following Microsoft docs applies to your software version, then perform the indicated actions:

When configuring zone transfer, you need to enable transfers from ALL of the following address:

  • 173.244.206.26 and IPv6 2607:f0d0:1001:d::100
  • 88.198.106.11 and IPv6 2a01:4f8:d12:d01::10:100
  • 108.61.224.67 and IPv6 2001:19f0:6400:8642::3
  • 103.6.87.125 and IPv6 2403:2500:4000::f3e
  • 185.136.176.247 and IPv6 2a06:fdc0:fade:2f7::1

If none of the docs applies to you, contact our support.

NSD

Perform these operations:

  1. Add the following line in the server: section of the main configuration file /etc/nsd.conf:
    # allow {a,b}.transfer.buddyns.com
    # allow ALL the following addresses! BuddyNS employs them all.
    provide-xfr: 173.244.206.26 NOKEY
    provide-xfr: 88.198.106.11 NOKEY
    provide-xfr: 108.61.224.67 NOKEY
    provide-xfr: 103.6.87.125 NOKEY
    provide-xfr: 185.136.176.247 NOKEY
    # uncomment these for IPv6:
    #provide-xfr: 2607:f0d0:1001:d::100 NOKEY
    #provide-xfr: 2a01:4f8:d12:d01::10:100 NOKEY
    #provide-xfr: 2001:19f0:6400:8642::3 NOKEY
    #provide-xfr: 2403:2500:4000::f3e NOKEY
    #provide-xfr: 2a06:fdc0:fade:2f7::1 NOKEY
  2. Restart nsd after the update.

Parallels Plesk Panel

In this setup, you host your zones on Parallels Plesk Panel, and use BuddyNS to improve your uptime. Follow this procedure:

  1. Log into your plesk Admin's account
  2. Choose "Tools & Settings" in "Server Management" in the navigation menu.
  3. Choose "DNS Template" from the "General Settings" group.
  4. Choose "Transfer Restrictions Template"
  5. Choose "Add New Address" to add each of BuddyNS' transfer server's addresses:
    • 173.244.206.26
    • 88.198.106.11
    • 108.61.224.67
    • 103.6.87.125
    • 185.136.176.247
    • 2607:f0d0:1001:d::100
    • 2a01:4f8:d12:d01::10:100
    • 2001:19f0:6400:8642::3
    • 2403:2500:4000::f3e
    • 2a06:fdc0:fade:2f7::1

Done!

P.S.: There's a 3rd-party Extension (plug-in) to integrate BuddyNS into Plesk. Thanks Jerome! Like any 3rd-party code, use at your own risk and do not enquire our support about it.

Tools and Settings pane AXFR ACL settings pane

PowerDNS

[Thanks Jyri-Petteri Paloposki for contributing this]

Add these lines to /etc/powerdns/pdns.d/pdns.local (or /etc/powerdns/pdns.conf ):

allow-axfr-ips=173.244.206.26 88.198.106.11 108.61.224.67 103.6.87.125 185.136.176.247 2607:f0d0:1001:d::100 2a01:4f8:d12:d01::10:100 2001:19f0:6400:8642::3 2403:2500:4000::f3e 2a06:fdc0:fade:2f7::1
disable-axfr=no
master=yes

Simple DNS Plus

[Contributed by JH software, maintainer of Simple DNS Plus.]

Follow these steps:

  1. Reach the Options dialog in Simple DNS Plus
  2. Follow DNS → Local Zones → Zone Transfers in options navigator.
  3. Check "Accept un-signed zone transfer requests for any zone on this server"
  4. Select "Only from the following IP addresses"
  5. Press the "Add" button to add of of BuddyNS' transfer host addresses:
    • 173.244.206.26
    • 88.198.106.11
    • 108.61.224.67
    • 103.6.87.125
    • 185.136.176.247
    • 2607:f0d0:1001:d::100
    • 2a01:4f8:d12:d01::10:100
    • 2001:19f0:6400:8642::3
    • 2403:2500:4000::f3e
    • 2a06:fdc0:fade:2f7::1

Done!

AXFR setup screen in Simple DNS Plus

TotalUptime

In this set-up, you edit your zone(s) on TotalUptime's website. TotalUptime serves as your primary DNS server and provides zone data for DNS replication to BuddyNS via AXFR.

Follow these steps to set this up:

  1. On your TotalUptime account, allow zone transfers by BuddyNS. Follow TotalUptime's Enable zone transfer doc. Permit transfer to ALL BuddyNS transfer systems:
    • 173.244.206.26
    • 88.198.106.11
    • 108.61.224.67
    • 103.6.87.125
    • 185.136.176.247
  2. On BuddyNS, add your TotalUptime domains using as Primary Server either of TotalUptime's master DNS server addresses:
    • 216.59.59.1
    • 216.59.60.1

Webmin / Virtualmin

[Thanks Tim for contributing this!]

From Virtualmin, reach Webmin first with the "Webmin" button (top left).

First, add BuddyNS servers as secondary for your zone:

  1. Click "Servers".
  2. Click "Bind DNS Server".
  3. Click the domain to edit.
  4. Click "Name Server".
  5. Add (or edit) one record for each BuddyNS nameserver (or as many as possible):
    b.ns.buddyns.com.
    c.ns.buddyns.com.
    d.ns.buddyns.com.
    e.ns.buddyns.com.
    f.ns.buddyns.com.
    Don't forget the trailing period . for each (absolute names).

Now enable AXFR (zone transfers) from BuddyNS:

  1. Click the "Edit Zone Options" icon
  2. In "Allow transfers from", add ALL the following addresses (one per line):
    173.244.206.26
    88.198.106.11
    108.61.224.67
    103.6.87.125
    185.136.176.247
  3. For IPv6 transfers, include these IPv6 addresses too:
    2607:f0d0:1001:d::100
    2a01:4f8:d12:d01::10:100
    2001:19f0:6400:8642::3
    2403:2500:4000::f3e
    2a06:fdc0:fade:2f7::1
  4. Click "Apply Configuration" (top right).

Done!

Zerigo

In this setup, you host your zones with Zerigo, and use BuddyNS to improve your uptime. Follow this procedure:

  1. Log into your zerigo account, and ensure to land in the "DNS" > "Domains" panel. Zerigo landing page
  2. Choose the domain you want to replicate with BuddyNS from the list. Here, usa.gov .
  3. Change the service type for this domain: press "edit" and change the "Service" option to "Standard with master support": change service type
  4. Save changes, then head to the "Nameservers" tab: Zerigo allow BuddyNS servers
  5. Enter your desider BuddyNS servers (we have b through h.ns.buddyns.com, see below for their locations) then press "Save". For example:
    • c.ns.buddyns.com
    • f.ns.buddyns.com
    • g.ns.buddyns.com
  6. In BuddyNS, use 64.27.57.17 as master IP address for Zerigo's transfer server p.ns.zerigo.net.
  7. Zerigo might take several hours before applying these changes.

Other nameserver

Your goal is to allow AXFR for the following IPs of the BuddyNS cluster:

  • 173.244.206.26
  • 88.198.106.11
  • 108.61.224.67
  • 103.6.87.125
  • 185.136.176.247
  • 2607:f0d0:1001:d::100
  • 2a01:4f8:d12:d01::10:100
  • 2001:19f0:6400:8642::3
  • 2403:2500:4000::f3e
  • 2a06:fdc0:fade:2f7::1

Please feedback us with the name of your DNS system so we can provide docs for commonly requested ones.

Services lacking support for zone transfers

The following services do not support AXFR zone transfers, hence they are incompatible with BuddyNS (or any secondary DNS service):

  • Namecheap's FreeDNS
  • Rackspace Cloud DNS
  • CloudFlare DNS

Each entry was checked with their respective support desk. Some may have implemented AXFR support recently. Please report any correction to us.

Proceed to Setup Zone Delegation »

Testing & troubleshooting your AXFR setup

Target troubleshooting tool

Live AXFR test

The BuddyBoard allows you to perform a live test of your zone transfer configuration at the primary. Simply:

  1. Log into your BuddyBoard
  2. reach the "Zones" pane
  3. click the Target button next to the zone you wish to test (1.)
  4. Check the test outcomes (2.) in the grey box.

The Target runs a number of tests to survey your situation and builds some tips tailored to it.

Troubleshooting

There is not much help our support can give beyond the suggestions of the Target.

If you are hosting your zones on a third-party server or service, we suggest you contact their support, include the following data, and ask to why their server is rejecting zone transfers (AXFR) to BuddyNS:

  • a screenshot of their web configuration panel showing that you enabled zone transfers for the IP addresses of our transfer servers
  • a link to our setup page
  • the list of troubleshooting tips suggested to you by the Target
  • our support @ buddyns.com address (or CC us)

If you are hosting your zones on your own server, you may contact our support indicating the following:

  • the full configuration of your DNS server
  • the full configuration of your firewall (ruleset), if you have any
  • the output of the commands suggested by the target
  • the topology of your network (ISP, firewalls and server on your side)
  • logs of your DNS server for 5 minutes since you presssed the SyncNOW button