On 2/24/17, 03:42, "bind-users on behalf of Andrea Gabellini" wrote:
>the server is a resolver for about 20K clients. My goal is to supply a
>courtesy page if a domain is not found. For every domain.
No approach relying on wildcards will work because of the way wildcards "work."
(*.example.com
On 4/21/15, 10:15, "Warren Kumari" wrote:
>
>From the ARM:
Sigh, RTFM...(My, BIND's gotten a lot more complicated/feature-rich since
I last read the docs.)
Hey, it's there.
smime.p7s
Description: S/MIME cryptographic signature
___
Please visit https
On 4/21/15, 9:45, "Tony Finch" wrote:
>rndc secroots
>
>You can also look in the .mkeys file.
I tried secroots with my set up, I got nothing despite the mkeys file.
(Kind of asking - does that work?):
(I had my rndc port bumped out of sudo-land, so it's overridden:)
$ rndc -p 1953 -c rndc.conf
say perhaps unnecessary because the
information may be available on disk (which an administrator could get to
via ssh, perhaps).
Ed
On 4/20/15, 15:12, "Evan Hunt" wrote:
>On Mon, Apr 20, 2015 at 06:42:42PM +, Edward Lewis wrote:
>> Being that I'm working on a laptop (
helps knowing where the loose bits are stored.)
On 4/20/15, 15:12, "Evan Hunt" wrote:
>On Mon, Apr 20, 2015 at 06:42:42PM +, Edward Lewis wrote:
>> Being that I'm working on a laptop (hence on on over the weekend) I've
>>had
>> to recreate the environment
Thanks to Evan for the last look and thanks to Jan-Piet for the suggestion
to go to 9.10.2.
Being that I'm working on a laptop (hence on on over the weekend) I've had
to recreate the environment today. I'm a bit more puzzled now.
I've built and installed BIND 9.10.2. Using http://keyroll.system
Thanks. Now have 'ad' bits via both BIND and unbound.
Will let you know when I've shot myself in the foot.
On 4/17/15, 12:45, "Evan Hunt" wrote:
...
>instead of waiting a full 30 days. (This is, I hope obviously, *not*
>something you want to run in production. :) )
smime.p7s
Description: S
I am building named and unbound recursive servers to follow a test of RFC
5011 trust anchor updates, the experiment is documented at
http://keyroll.systems. One reason why I'm asking here is in
http://jpmens.net/2015/01/21/opendnssec-rfc-5011-bind-and-unbound/
which mentions some issues with RFC 5
8 matches
Mail list logo
