Re: How filter with RPZ only A and AAAA type records ?

On Tue, 9 Aug 2022, sub zero wrote: Short question, is it possible to filter with BIND RPZ only A and type records? If yes, how? A similar question was asked recently on the DNS Firewalls list at Redbarn (http://lists.redbarn.org/pipermail/dnsfirewalls/) Short answer is no, or at least no

Re: dnssec-policy: Old DNSKEYs still in zone despite status showing hidden

Hi Magnus, On 10-08-2022 11:13, Magnus Holmgren wrote: Hi, I migrated a couple of zones from BIND 9.16.6 on SuSE to 9.16.27 on Debian and at the same time switched from auto-dnssec maintain to a dnssec-policy with RSASHA256 instead of RSASHA1 (actually, I first applied a policy matching the old

dnssec-policy: Old DNSKEYs still in zone despite status showing hidden

Hi, I migrated a couple of zones from BIND 9.16.6 on SuSE to 9.16.27 on Debian and at the same time switched from auto-dnssec maintain to a dnssec-policy with RSASHA256 instead of RSASHA1 (actually, I first applied a policy matching the old keys and with unlimited lifetime to avoid confusing BI