For the sake of thoroughness, the -j flag causes
named-compilezone to also look at the .jnl files so that the
zone you getis as up to date as possible.
Martin
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bin
A list member wrote:
> named-checkzone doesn't need to read the named.conf file - it just makes
> sure that the zone is correct. if you want to check named.conf, you will
> need to use named-checkconf
>
> For checking config, try
>
> named-checkconf -t [chroot directory] [relative path to name
Can you share what you're talking about since it appears you're saying
you got the reply off list?
-Original Message-
From: bind-users-bounces+jlightner=water@lists.isc.org
[mailto:bind-users-bounces+jlightner=water@lists.isc.org] On Behalf
Of Martin McCormick
Sent: Wednesday, Octo
I wrote:
> I am testing bind9.7 and seem to not be correctly defining the
> path to the localhost forward and reverse zones which are in
> /var/named/etc/namedb/master. After the chroot, they should be
> found by a path of named/etc/namedb/master but so far nothing
> seems to work.
My than
On 10/13/10 03:24, Andrey G. Sergeev wrote:
Hello David,
Mon, 11 Oct 2010 18:38:24 -0400 David Miller wrote:
On 10/11/2010 3:26 PM, Andrey G. Sergeev (AKA Andris) wrote:
Hello Alans,
Mon, 11 Oct 2010 20:07:40 +0300 Alans wrote:
Why not? OpenDNS is a good example i think.
Good example
I am testing bind9.7 and seem to not be correctly defining the
path to the localhost forward and reverse zones which are in
/var/named/etc/namedb/master. After the chroot, they should be
found by a path of named/etc/namedb/master but so far nothing
seems to work.
I have read the ma
On 13/10/10 15:16, Eivind Olsen wrote:
Has anyone here made use of the XML statistics interface in BIND9, to get
some numbers into Cacti (or another similar tool)? If so, how, and which
numbers did you feel were worth turning into graphs?
Yes.
We have a system where local scripts on our machin
Second try:
>
Is there a bug in the implementation of the update-policy or do I not have a
grasp on how it should work?
If wanted to only allow machines in an Active Directory the ability to update
their 'A' records shouldn't I be able to use a statement like this:
update-policy {
Has anyone here made use of the XML statistics interface in BIND9, to get
some numbers into Cacti (or another similar tool)? If so, how, and which
numbers did you feel were worth turning into graphs?
Regards
Eivind Olsen
___
bind-users mailing list
bin
Named is written such that each DNSKEY has its own key files. This
stores meta data about the DNSKEY. There is nothing to prevent on
extracting the RSA key pair and re-using it for a differnet DNSKEY.
We just don't have a tool to do this.
If you are using a HSM then using dnssec-keyfromlabel mu
On 13/10/10 12:13 PM, "Andrey G. Sergeev" wrote:
> Hello Alans,
>
>
> Tue, 12 Oct 2010 16:52:15 +0300 Alans wrote:
>
>> On 10/12/2010 03:44 PM, Andrey G. Sergeev (AKA Andris) wrote:
>>> Hello Ian,
>>>
>>>
>>> Tue, 12 Oct 2010 10:54:19 +0100 "Ian Tait" wrote:
>>>
> Ok, but you can alw
Hello,
I've tried to sign multiple zones using the same key. But it seems
that currently Bind does not allow this. Is this a omission or by
design ? I know OpenDNSSEC can do this, and IIRC there is nothing in
the RFC's that disallow key sharing.
Regards,
Tim
--
Tim Verhoeven - tim.verhoeven...@
Hello David,
Mon, 11 Oct 2010 18:38:24 -0400 David Miller wrote:
> On 10/11/2010 3:26 PM, Andrey G. Sergeev (AKA Andris) wrote:
>> Hello Alans,
>>
>>
>> Mon, 11 Oct 2010 20:07:40 +0300 Alans wrote:
>>
>>> Why not? OpenDNS is a good example i think.
>> Good example? Was it a joke? Do the tracer
Hello Alans,
Tue, 12 Oct 2010 16:52:15 +0300 Alans wrote:
> On 10/12/2010 03:44 PM, Andrey G. Sergeev (AKA Andris) wrote:
>> Hello Ian,
>>
>>
>> Tue, 12 Oct 2010 10:54:19 +0100 "Ian Tait" wrote:
>>
Ok, but you can always browse by IP address and in this case
there is no DNS server than
14 matches
Mail list logo
