- Plesk 12.5 for Linux
- Plesk Onyx for Linux
- Plesk 11.x for Linux
- Plesk 12.0 for Linux
Master server with Plesk is running behind NAT. Slave DNS server is running outside of the internal network and has public IP.
Slave DNS server could not update any zones from Master server.
The following error is present in the
file on the slave DNS server:
CONFIG_TEXT: named: transfer of 'domain.tld/IN' from <internal Master DNS ip>#53: failed to connect: host unreachable
Despite all DNS records are correct and pointed to the public IP, in the zones config, master server still has internal IP 192.0.2.2. When master server sends request to update to the slave server, slave server tries to connect to the master server as per received zone config to the internal IP i.e. 192.0.2.2
Since IP address 192.0.2.2 is unreachable from the slave's network it is failing with the mentioned error.
Add NAT rule from internal IP address to external IP address using Plesk Firewall for TCP/UDP.
Using command line via SSH:
rules to ensure all outgoing traffic redirection from internal 203.0.113.2 to public 203.0.113.2
# iptables -t nat -A OUTPUT -d 192.0.2.2 -p udp -j DNAT --to-destination 203.0.113.2
# iptables -t nat -A OUTPUT -d 192.0.2.2 -p tcp -j DNAT --to-destination 203.0.113.2