Dawn,

Thanks for the clue-by-four. :-)

A deeper look into hsphere's iptables config found the issue:

-A RH-Firewall-1-INPUT -m state --state NEW -m udp -p udp --dport 53 -j
ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m udp -p tcp --dport 53 -j
ACCEPT <
silly Me, assuming that whomever it was that wrote their default config
would have done it correctly...

Again, thanks for the clue-by-four.

Shawn Somers
Systems Administrator
Skynet BroadBand



Dawn Connelly wrote:
> Has this ever worked? Typically when I see this error, that means that
> TCP isn't open but UDP is. The notify packet is on UDP53 but the
> actual zone transfer has to happen on TCP53. Can you telnet
> 53 from the slave and telnet 53 from the master? The quota
> message just means "Dude, I've tried this enough time with a big ol'
> no go so I'm taking a break and will try again later."
>
>