Hi Pablo,
On 27.12.24 21:17 Pablo wrote:
> This is my docker-compose.yml (my start command has to be sudoed for
> some reason, Debian 12 machine: sudo docker compose up -d):
Guess: Your user is not part of the docker group?
Side note: I avoid docker and use (rootless) podman instead, which can
Hi,
On 16.02.17 17:31 John Ratliff wrote:
> IN NS ipa-test-client.example.com.
> idm IN NS ipa1.example.com.
>
> IN MX 50 spamfw.example.com.
>
> IN A 10.9.6.54
I could be totally wrong, but doesn't an empty first column use the
first column of the last entry? So yo
On 14.02.17 13:24 MURTARI, JOHN wrote:
> Johannes,
> Noted your message below. I might suggest you check out the 'views'
> feature of BIND. You may find it a lot easier to setup/manage. Some
> starting info:
> https://kb.isc.org/article/AA-00851/0/Understanding-views-in-BIND-9-by-examp
Hi Tony,
On 14.02.17 13:16 Tony Finch wrote:
> It's annoying but benign.
[nice explanation snipped]
Thanks for the confirmation, so it's nothing to worry about.
> For a "forward" zone, BIND acts as a recursive client, and expects
> the target server to be a recursive server. This mostly becom
Hi all,
I am trying to get more familiar with named/bind, and thus I am
experimenting a little. I am seeking for guidance in setting up a
split-dns server (aka resolving internal hosts that the outside does
not see and know about).
Host_1
I have bind running as caching resolver in my home dmz, on
On 09.02.17 09:24 Sudharanjan Patnaik wrote:
> Issue: The named process is getting hung or stopped at least once a
> day on each of these Replicas. This is happening since more than 1
> year. Meanwhile, many vulnerability patch versions upgraded and
> currently running with the latest BIND 9.9.9.P
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 31.07.14 13:55 Mark Andrews wrote:
>
> 9.10 also has "rndc scan" for platforms without a routing socket or
> if you want to do it manually.
As I have not found a working RPM of bind 9.10 for openSUSE this far,
I have to ask:
How to handle this us
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi everyone,
On 01.08.14 15:58 Reindl Harald wrote:
> the whole discussion about rndc or not rndc follow up therads and
> side-threads startet after that reply below from me yesterday and
> whoever brought "bounce" in the game did also not understand
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 31.07.14 13:29 Tony Finch wrote:
> Have you tried it to see if it just works automatically without an
> explicit poke from rndc?
I guess I made a problem where there is none. At least if the option
below works...
I'll give it a try...
> The ARM
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi everyone,
in the quest to use a master behind a Router with changing IPs, I set
up a VPN and told bind on both sides to listen on the additional VPN-IPs.
But, sometimes they are not available at bind startup or the VPN loses
connection. So, when t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 28.07.14 23:05 Evan Hunt wrote:
>> "rndc signing -nsec3param" can change your salt. Specifying
>> "auto" as the salt causes named to generate a salt at random.
>
> I forgot to mention that the "auto" feature is new in 9.10, not in
> older version
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 28.07.14 19:09 Evan Hunt wrote:
> On Mon, Jul 28, 2014 at 06:16:13PM +0200, Johannes Kastl wrote:
>> So basically BIND cannot do that for me, each time it does a key
>> rollover. That's what I wanted to know.
>
> &quo
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi Carsten and all,
sorry for the late reply.
On 24.07.14 19:53 Carsten Strotmann wrote:
> I'm not aware that BIND 9 can do a ZSK rollover all on its own, it
> is however possible to set the timing values on the ZSK key files
> in a away that BIND 9
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi everyone,
I read quite a bit on DNSSEC in the last couple of weeks, and found
that BIND can automatically rollover the ZSK without manual intervention.
I also found the recommendation, to change the NSEC3 salt each time
the key is rolled over.
Wh
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 28.06.14 10:51 Anand Buddhdev wrote:
> BIND uses TCP for zone transfers by default. It doesn't fall back
> to UDP, so you don't have to configure anything.
Oh, my bad, I must have mixed that up with something else then.
I'll try using stunnel and
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 28.06.14 02:06 Reindl Harald wrote:
> setup openvpn with your dyndns as VPN client
Another idea I had was using stunnel to tunnel just one port from the
home lan to the vserver. But I would need to tell bind to only use
TCP, as stunnel is only abl
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 27.06.14 19:56 Doug Barton wrote:
> That's because it cannot be done. You need a master with a fixed
> address.
I was hoping it could be done. My bad. I'll try it with a VPN.
Thanks for the answer.
Regards,
Johannes
- --
Love ist like Pi: Natur
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello everyone,
sorry if this is a stupid question, I would love to get a RTFM
pointing me to the right documentation (I found none...).
My setup is like this (at least that is my plan):
In my home network I have:
Host A with bind as master for my z
18 matches
Mail list logo
