Re: head scratcher: nsupdate, Bind views, and TLSA record updates

In message <1509508757.25100.19.ca...@ns.five-ten-sg.com>, Carl Byington writes: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA512 > > On Tue, 2017-10-31 at 17:16 -0700, Kevin via bind-users wrote: > > $ dig TLSA _25._tcp.mail.thesandiegos.com @75.149.33.153 +dnssec > > +short > > > > > I'm r

Re: head scratcher: nsupdate, Bind views, and TLSA record updates

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On Tue, 2017-10-31 at 17:16 -0700, Kevin via bind-users wrote: > $ dig TLSA _25._tcp.mail.thesandiegos.com @75.149.33.153 +dnssec > +short > > I'm really at a loss as to what's going on inside of Bind. dig TLSA _25._tcp.mail.thesandiegos.com @75.1

Re: head scratcher: nsupdate, Bind views, and TLSA record updates

- Original Message - > From: "Warren Kumari" > To: "Kevin" > Cc: "bind-users" > Sent: Tuesday, October 31, 2017 12:47:06 PM > Subject: Re: head scratcher: nsupdate, Bind views, and TLSA record updates > So, can you confirm that you are not getting SERVFAIL? > > You really haven't pro

Re: head scratcher: nsupdate, Bind views, and TLSA record updates

So, can you confirm that you are not getting SERVFAIL? You really haven't provided enough information (like the actual domains!) for people to be able to help you. W On Tue, Oct 31, 2017 at 3:39 PM, Kevin via bind-users wrote: > > > - Original Message - >> From: "Kevin" >> To: "Kevin"

Re: head scratcher: nsupdate, Bind views, and TLSA record updates

- Original Message - > From: "Kevin" > To: "Kevin" > Cc: "Warren Kumari" , "bind-users" > > Sent: Tuesday, October 31, 2017 12:33:56 PM > Subject: Re: head scratcher: nsupdate, Bind views, and TLSA record updates > - Original Message - > > From: "Kevin" > > To: "Warren Kumar

Re: head scratcher: nsupdate, Bind views, and TLSA record updates

- Original Message - > From: "Kevin" > To: "Warren Kumari" > Cc: "Kevin" , "bind-users" > > Sent: Tuesday, October 31, 2017 12:18:41 PM > Subject: Re: head scratcher: nsupdate, Bind views, and TLSA record updates > From: "Warren Kumari" > To: "Kevin" > Cc: "bind-users" > Sent: Tue

Re: head scratcher: nsupdate, Bind views, and TLSA record updates

From: "Warren Kumari" To: "Kevin" Cc: "bind-users" Sent: Tuesday, October 31, 2017 11:28:58 AM Subject: Re: head scratcher: nsupdate, Bind views, and TLSA record updates On Tue, Oct 31, 2017 at 1:50 PM, Kevin via bind-users wrote: > I'm running into an odd issue with Bind 9.9.4 whereby

Re: head scratcher: nsupdate, Bind views, and TLSA record updates

On Tue, Oct 31, 2017 at 1:50 PM, Kevin via bind-users wrote: > I'm running into an odd issue with Bind 9.9.4 whereby I'm trying to run a > scripted nsupdate to rotate TLSA records. I'm running nsupdate via a Bash > script that executes the following nsupdate batch commands which are > directed to

head scratcher: nsupdate, Bind views, and TLSA record updates

I'm running into an odd issue with Bind 9.9.4 whereby I'm trying to run a scripted nsupdate to rotate TLSA records. I'm running nsupdate via a Bash script that executes the following nsupdate batch commands which are directed to a Bind "view" that is accessible from the wider internet: server

Re: RPZ and static stubs

Trevor Woolley wrote: > > The issue lies with RPZ's and static stubs. > > Required functionality: Override main domain for some entries, but allow > look ups for the main domain if not located in the RPZ rewrite zone file. This caught my eye because I want this to work (though I don't currently d