In article ,
"da...@from525.com" wrote:
> I think between Stephane's test app and some snoop data I have a better
> idea of what is going on. It seems as if the local resolver starts by
> issuing ipv6 requests to the three name servers mentioned in resolv.conf.
Do you mean that it's issuing r
On Wed, 11 Nov 2009 20:06:11 -0600, "da...@from525.com"
wrote:
> On Thu, 12 Nov 2009 10:01:38 +0900, Stephane Bortzmeyer
> wrote:
>> On Wed, Nov 11, 2009 at 05:00:03PM -0600,
>> da...@from525.com wrote
>> a message of 60 lines which said:
>>
>>> I am wondering if anyone knows of an app simi
http://www.reedmedia.net/software/gethost/
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
On Thu, 12 Nov 2009 10:01:38 +0900, Stephane Bortzmeyer
wrote:
> On Wed, Nov 11, 2009 at 05:00:03PM -0600,
> da...@from525.com wrote
> a message of 60 lines which said:
>
>> I am wondering if anyone knows of an app similar to nslookup or
>> dig that actually uses the system resolver.
>
> C
On Wed, Nov 11, 2009 at 08:14:02PM -0500,
Barry Margolin wrote
a message of 24 lines which said:
> If you just want to do a hostname lookup, you can use practically
> any network application, e.g. ping.
It gives you less information than the program I posted.
1) On typical OS, ping forces yo
In article ,
Stephane Bortzmeyer wrote:
> On Wed, Nov 11, 2009 at 07:44:05PM -0500,
> Barry Margolin wrote
> a message of 27 lines which said:
>
> > I'm not sure if there is one, but it should be pretty easy to write
> > a program that calls res_query().
>
> But this calls directly the DNS
On Wed, Nov 11, 2009 at 05:00:03PM -0600,
da...@from525.com wrote
a message of 60 lines which said:
> I am wondering if anyone knows of an app similar to nslookup or
> dig that actually uses the system resolver.
C source attached. Compile, for instance, with:
gcc -o resolve-name resolve-nam
On Wed, Nov 11, 2009 at 07:44:05PM -0500,
Barry Margolin wrote
a message of 27 lines which said:
> I'm not sure if there is one, but it should be pretty easy to write
> a program that calls res_query().
But this calls directly the DNS. The OP wanted something which called
the system resolver,
On Wed, Nov 11, 2009 at 05:00:03PM -0600,
da...@from525.com wrote
a message of 60 lines which said:
> I am basically trying to uinderstand why the system resolver was
> getting stuck on the third entry within the resolv.conf while it
> should have tried one of the first two working DNS servers
In article ,
"da...@from525.com" wrote:
> All,
>
> It has been a long day so please excuse me if I am over looking something
> trivial. I am wondering if anyone knows of an app similar to nslookup or
> dig that actually uses the system resolver. I spent a decent amount of time
> this morning t
Hi,
first of all thanks to everyone for the interest and for pointing me
out my mistakes :) I've already changed recursion and transfer to
trusted acls. But unfortunately, I've been administering this server
for a short time and as I'm reading more and more through the
configuration, I'm starting t
All,
It has been a long day so please excuse me if I am over looking something
trivial. I am wondering if anyone knows of an app similar to nslookup or
dig that actually uses the system resolver. I spent a decent amount of time
this morning trouble shooting an issue where a third invalid namese
Jeff Lightner wrote:
I can't quite agree with that.
While public information is indeed public it is intended to be so for specific lookups not for zone transfers.
Circular argument: allowing zone transfers is bad if one didn't intend
to allow zone transfers.
Someone external to you asking get
I can't quite agree with that.
While public information is indeed public it is intended to be so for specific
lookups not for zone transfers. Someone external to you asking get a zone
transfer may be looking for what he can exploit. Maybe he can find that
information anyway with enough diggi
Holger Honert wrote:
Security issues!
Usually you only want *trusted* clients to use your server recursively.
And you don't really want to allow *any* fetching your hosted zones
for doing something bad, i.e. getting (unwanted!) infos
over your network and infrastructure.
If the infos are publ
Generally speaking, it's not a good idea to use RFCs to diagnose
operational issues, unless you've already narrowed the problem down to
some sort of standard-conformance or interoperability issue.
What is described below is merely one of potentially *dozens* of
different causes of a SERVFAIL r
In message <4afa0555.6070...@cyzap.com>, Raj Adhikari writes:
> Kevin Wrote: {QUOTE} There is no "BIND way" versus "Windows way". For a
> range smaller than /24 you either need to host all the records in the
> /24 zone, delegate each entry individually (as /32 zones), or use
> CNAMEs. This is dete
On 11.11.09 16:05, Pawel Rutkowski wrote:
> Please look below, it's normal ? Sometime servfail, sometimes nxdomain.
>
> [r...@linux ~]# host 209.85.255.187 ns1.isp
> Using domain server:
> Name: ns1.isp
> Address: ns1.isp#53
> Aliases:
>
> Host 187.255.85.209.in-addr.arpa not found: 2(SERVFAIL)
> [
Hello again,
I just saw the same thing:
Please look below, it's normal ? Sometime servfail, sometimes nxdomain.
[r...@linux ~]# host 209.85.255.187 ns1.isp
Using domain server:
Name: ns1.isp
Address: ns1.isp#53
Aliases:
Host 187.255.85.209.in-addr.arpa not found: 2(SERVFAIL)
[r...@linux
On Wed, Nov 11, 2009 at 01:27:30PM +0200,
Jukka Pakkanen wrote
a message of 94 lines which said:
> I just saw the same thing:
There are no less than *four* CNAMEs to resolve to get to the result,
while even two is discouraged. It is not suprising that it may fails
with resolvers which limit t
> Raj Adhikari wrote:
>> Thanks Chris for the reply.
>> Actually, let me put my question the other way.
>> How can one delegate the classless subnet to other DNS?
>> Actually, one of our ISP could not delegate classless subnet to our
>> server ns1.cyzap.net. I am trying to help them in delegating t
Sorry about that,
but I only pressed the button "answer all" and thunderbird did the rest
automagically ;-) .
Regards
SIGNAL Krankenversicherung a. G., Sitz: Dortmund, HR B 2405, AG Dortmund
IDUNA Vereinigte Lebensversicherung aG für Handwerk, Handel und Gewerbe,
Sitz: Hamburg, HR B 2740, AG Ha
From: Holger Honert [mailto:holger.hon...@signal-iduna.org]
..
*Please be carefull when quoting, this was not me:
Jukka Pakkanen schrieb:
Sorry, but could You specify more accurately what is "bad" ? This is
my first bind configuration, so probably I've made some mistakes, but
I'd
Security issues!
Usually you only want *trusted* clients to use your server recursively.
And you don't really want to allow *any* fetching your hosted zones for
doing something bad, i.e. getting (unwanted!) infos
over your network and infrastructure.
Regards
Holger
Jukka Pakkanen schrieb:
> S
Sorry, but could You specify more accurately what is "bad" ? This is
my first bind configuration, so probably I've made some mistakes, but
I'd like to do it the right way in the end.:)
On Tue, Nov 10, 2009 at 11:19 PM, Laurent CARON wrote:
>> allow-recursion { any; };
>
> bad
>
>> allow-
> Hello,
>
> My Internet ISP give two nameservers address.
> But when I'm asking those two servers sometimes I get:
> [r...@linux ~]# host d.yimg.com ns.my.isp
> Using domain server:
> Name: ns.my.isp
> Address: ns.my.isp#53
> Aliases:
> Host d.yimg.com not found: 2(SERVFAIL)
I just saw the s
> From: "Pawel Rutkowski"
> To:
> Subject: Bind sometimes SERVFAIL
> Date: Wed, 11 Nov 2009 07:42:14 +0100
>
> Hello,
>
> My Internet ISP give two nameservers address.
> But when I'm asking those two servers sometimes I get:
> [r...@linux ~]# host d.yimg.com ns.my.isp
> Using domain server
27 matches
Mail list logo
