DNS Debug Error message: update 'zone/IN' denied

  • 7009528
  • 07-Oct-2011
  • 27-Apr-2012


Novell DNS


Seeing error messages repeated over and over in the debug log or debug screen.

error: client xxx.xxx.xxx.xxx#53: update 'zone/IN' denied"

Where xxx.xxx.xxx.xxx is the IP adderss of another device and zone is replaced by a zone the DNS server services.


This error is seen when a zone is configured to not allow updates from other devices or to only allow specific devices to update a zone.

A typical DDNS configuration would only allow the DHCP server to update records in zones all other devices that try would cause an error like this to be displayed.

Microsoft workstations by default try to update their A record in a zone when they get a new lease from DHCP.

You can either:
- allow updates from any device.  (not very secure)
- configure the external devices to not update DNS (A simple change to a Microsft client)
- Ignore the error as it is just informational