May 5th, 2010, 09:29 PM
The default install of bind9 has apparmor enabled for bind9. When attempting a zone transfer to a slave it gives a permission denied error even when permissions are correct. I had to run
sudo aa-complain /usr/sbin/named to get my server working.

The error was "transfer of ... from x.x.x.x#53 failed while receiving responses: permission denied".

At some point I'll get a working apparmor profile for named, but figured I'd post this here in case it helps to save someone from banging their head on a wall for 15 minutes like I did.;)