Zone transfer request for secondary zone %1 refused by master server at %2. Check the zone at the master server %2 to verify that zone transfer is enabled to this server. To do so, use the DNS console, and select master server %2 as the applicable server, then in secondary zone %1 Properties, view the settings on the Zone Transfers tab. Based on the settings you choose, make any configuration adjustments there (or possibly in the Name Servers tab) so that a zone transfer can be made to this server.

Details
Product: Windows Operating System
Event ID: 6525
Source: DNS
Version: 5.0
Symbolic Name: DNS_EVENT_AXFR_REFUSED
Message: Zone transfer request for secondary zone %1 refused by master server at %2. Check the zone at the master server %2 to verify that zone transfer is enabled to this server. To do so, use the DNS console, and select master server %2 as the applicable server, then in secondary zone %1 Properties, view the settings on the Zone Transfers tab. Based on the settings you choose, make any configuration adjustments there (or possibly in the Name Servers tab) so that a zone transfer can be made to this server.
   
Explanation

The zone transfer request initiated by the master DNS server was refused by the primary server.

   
User Action

Check the specified zone file on the primary DNS server. Verify that the zone name and the secondary master server’s IP addresses have been properly configured in a dotted decimal format. Verify that you can ping each IP address successfully. If you have set the Notify parameters, check the IP addresses and verify that they match the addresses displayed on the General tab of the Zone Properties dialog box.

1. In DNS Manager, right-click the specified zone file, then click Properties.
2. Verify that the configured IP Master(s) address(es) are valid by pinging each address in the list.
3. If you have set the Notify parameters for your DNS server, then click the Notify tab.
4. Verify that the IP addresses configured on the General tab are the same as those configured on the Notify tab. If there is a difference between the two lists, only the IP addresses displayed in the Notify list will be used to perform zone transfers if the “Only Allow Access From Secondaries Included on Notify List” check box is selected.

Related:

Leave a Reply