{print $0 >
> named-queries-inside; next} / view outside / {print $0 >
> named-queries-outside; next} {print $0 > named-queries-other}' &
>
> (not tested, but have used similar before)
Ok, I'm officially blind... Should have seen this myself.
This will solve my
.3.6-25.P1.el5_11.5).
So the setup is really in need of a refresh. :-)
Thank you in advance!
--
Peter Rathlev
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
master. As far as I can see
this should Just Work™.
> My program nsdiff (http://dotat.at/prog/nsdiff) is useful for copying
> dynamic zones from from an existing master to a new master without
> faffing around with `rndc freeze`.
Nice. :-) Perfect for copying changes without touching t
nsition we will introduce an extra recursing
server.
Keeping things simple, even if that means running more servers, helps
me sleep at night. It helps my colleagues handling things without
having to call me. :-)
--
Peter Rathlev
___
Please visit https:/
hat many nameserver admins probably would not even
notice it unless they had query logging or query-error logging turned
on and checked the logs.
Regards,
Peter Coghlan.
--Boundary_(ID_/cANmbMgveXk/KlZF+xdIQ)--
___
Please visit https://lists.isc.org/mailman/l
Tony Finch wrote:
> Peter Coghlan wrote:
> >
> > I have a nameserver which is authoritative for three or four domain names.
> > It receives around 1000 queries per day that could be regarded as plausably
> > legitimate. It receives around ten times that number of absi
Tony Finch wrote:
>Peter Coghlan wrote:
>> Instead, isn't it the case that bind knows what domains it is authoritative
>> for (or which ones it is supposed to be authoritative for) and bind is
>> therefore in the ideal position to know which queries are abusive and wh
eep on trying.
The most recent one I've seen was three days ago but there could have been
more since then that hit the packet filters when I wasn't paying attention.
Regards,
Peter Coghlan.
___
Please visit https://lists.isc.org/mailman/l
HI All,
I really would appreciate a pointer in the right direction. I took over a bind
server recently. I am not new to bind. I have used it many times and honestly
prefer it to windows dns but I have never worked with DNSSEC. I have been
reading all day and I still can’t figure out how to upda
in this arena, then shouldn't this be stated
clearly instead of also declaring that it is highly portable?
Regards,
Peter Coghlan.
>
> Do you understand how ironic is for you to complain about “subscription is
> not going to happen” while **every** email on the mailing list
> Peter,
>
>
> do you seriously think that this word play is going to help the BIND 9
> support for Windows? So, I am asking you, what’s your serious
> proposal what should we do?
>
You may regard it as a word play but I am being very serious indeed.
I have looked high
ld be
interested to know what the experts think bind might have made of this
traffic had it not been filtered out. I have included some of the more
usual probes before and after the more interesting traffic for context.
Regards,
Peter Coghlan.
09:50:12.36 207.244.251.243.41020 > 192.168.80.24.53:
For those of you that may not be on the -announce list, I
would like to make you aware of the following:
https://lists.isc.org/pipermail/bind-announce/2022-January/001205.html
--
Peter Davies
Support Engineer
Internet Systems Corporation
pet...@isc.org
001 650-423-1460
here in dealing with the subject
of malicious, bogus queries etc.
Regards,
Peter Coghlan.
>
> --
>
> Hal King - h...@utk.edu
> Systems Administrator
> Office of Information Technology
> Shared Services
>
> The University of Tennessee
> 103c5 Kingston Pike Buildin
he traffic is and getting
a better idea of who is responsible for generating it and why.
In my opinion, in the absence of knowing what the problem is,
experimenting with stuff like rate limiting or blocking is unlikely
to solve the problem.
Regards,
Peter Coghlan.
--
Visit https://lists.isc.org/mail
I’m running BIND 9.11.4-P2-RedHat-9.11.4-26.P2.el7_9.9 (Extended Support
Version) on RHEL 7 in a chroot jail.
As of late, at times running some rndc commands are causing my server to lock
up. It’s usually an “rndc addzone” that triggers the issue. I’ll also mention
that I have recently started
problem continues.
Thanks so much for your help!
From: Greg Choules
Date: Monday, August 1, 2022 at 6:21 PM
To: White, Peter
Cc: bind-users@lists.isc.org
Subject: Re: Bind 9.11/RHEL7 Server Freezes FUTEX_WAKE_PRIVATE
CAUTION: This email originated from outside of Penguin Random House. Please be
I don’t mean to hijack the thread, but I think this is related. I also use the
BIND python modules. In particular, I'm using it to update my catalog zones as
described here: https://kb.isc.org/docs/aa-01401
This document has several references to BIND 9.18 without any mention of the
BIND python
from the EOL BIND 9.11
branch to the BIND 9.16 branch read the following document:
https://kb.isc.org/docs/changes-to-be-aware-of-when-moving-from-911-to-916
--
Peter Davies
ISC Support
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the
Is there any good source of documentation on containerizing an authoritative
BIND instance in a Kubernetes cluster?
The main part I’m trying to grasp is how to dynamically horizontally scale the
cluster and keep the BIND notify process working between the containers.
Thanks,
Peter
--
Visit
Bad Thing, especially for mailservers.
Is there a way to use $GENERATE to just "fill the gaps"?
No.
Go look at your slave cache. The dupes pop right out since they have a tab
at the beginning (since first few fields are the same). That's how I
identified ours.
Well, m
Not ISC BIND specific, but if someone could point me at the magic
incantations to get RHEL 5.2's SELinux to play nice with named's logs
(daemon is serving names fine), I'd be appreciative.
Off-list would be best as this isn't really an ISC BIND issue.
Thanks.
--
Peter L
Is it possible to update the SOA record of a zone via ddns update? Or do I
have to shut bind down complete to change the SOA.
Specifically the refresh timer.
Thanks
--
Peter (K0VX)
http://www.planetnet.org
2CFF D38A 3F42 B215 2098 DA89 26C4 A1B6 3C6E 199F
signature.asc
Description
or this is the
direct link...
http://members.iinet.com.au/~pyard...@ihug.com.au/#%5B%5BBIND%209.5%20DNS%20Stats%5D%5D
Peter.
--
UTS CRICOS Provider Code: 00099F
DISCLAIMER: This email message and any accompanying attachments may contain
confidential information. If you are not the intended
couple of other zones.
vanadium up 5+14:18, 1 user, load 0.00, 0.00, 0.00
It is running for 5 and a half days now.
Freshly started the swapsize is zero but after a day or two
swap is waxing, never waning.
Kind regards
Peter
JINMEI Tatuya / 神明達哉 wrote:
> At Sat, 13 Dec 2008 11
just try
dig -t any peter-dambier.de @
If it tells you something about denic it is not recursive.
If you get the complete answer it is very likely recursive.
Something internal could have triggered the query but only
if your server is in /etc/resolv.conf.
Kind regards
Peter
Gregory Hicks
Hello Fred,
try
dig -t any domain.com @your-server
dig -t any domain.com @your-server +vc
and
dig --help
Regards
Peter
Fred Zinsli wrote:
> Hello all
>
> Well I have a basic setup going and it seems to function.
>
> What I am wanting to know is, is there a way of get
Hi Fred,
after config problems with Debian, Ubuntu and Gentoo I have given
up and got the sources from isc.org. Works perfectly and
you are more up to date than with a distro.
Kind regards
Peter
Fred Zinsli wrote:
> Hello all
>
> Well out of curiosity I thought I would see what happ
Thanks for this,
I don't check the schema version (prolly should). I (or someone else)
should be able to mod the code to cope with this. I will prolly look at
it thru the Xmas break.
Alexander Gall wrote:
On Fri, 12 Dec 2008 17:12:21 +1100, Peter Yardley said:
I have written a scri
little bit
more complicated but can be solved too.
Cheers
Peter
ozgurs wrote:
> We want to buy a unified root domain,
> but they say we can not use the domain only one word.
> like
> ozgurs
>
> so that it opens
> http://ozgurs
>
>
> but we have to use a co
Hi All
I want to set up Bind as a server in an active directory environment
since it now has GSS-TSIG support and I would like some instructions
on how to do this. Can someone please tell me where the manuals are,
better yet PDF versions of it. I have been unable to find a manual I
can search so fa
Well I think I need to ask now since I have not been able to find
instructions on how to set up bind 9.5 or 9.6 to use GSS-TSIG and
accept updates from a WIndows DC. I would like to set bind up as an AD
dns server.
Can anyone please help me. Even a good link would do.
Thanks.
Hi All
I'm trying to configure bind-9.5 logging to help troubleshoot a
problem. I put this in named.conf
logging {
channel myfile {
file "/etc/namedb/dns.log";
severity info;
print-time yes;
print-severity yes;
print-category yes;
};
not on the same subnet, or something. Is there a
configuration that I've missed? How do the ISP's make their DNS servers
usable for everyone?
/Peter
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
In addition to these recommendation, you can use MAC filtering to restrict
users.
This is ofcourse if you have a iptables based firewall with MAC module.
/Peter
-Original Message-
From: bind-users-boun...@lists.isc.org
[mailto:bind-users-boun...@lists.isc.org] On Behalf Of Jeff Lightner
Ok thanks, I did see that file and I did post some of the output. So
what else do I need to do to get say query or security logs into the
files I have specified?
On Mon, Feb 2, 2009 at 5:35 PM, JINMEI Tatuya / 神明達哉
wrote:
> At Fri, 30 Jan 2009 22:06:57 -0500,
> Peter Fraser wrote:
&g
HI All
I have been working to get dynamic updates working with bind-9.5 and
FreeBSD 7 So far I have done the following:
1. COmpiled bind with GSSAPI enabled.
2. Added these to named.conf
options {
...
tkey-gssapi-credential "DNS/mydomain.com";
...
};
and
zone "mydoma
e added the "exception to
Standard" that your PHBs are requiring.
I've been telling folks that request _ in a name that they can no longer do
that and change it to a -. I tell them that it *works*, but it violates
the standards. No pushback yet.
--
Peter Laws / N5UWY
Nati
as fast as IPv6, maybe faster :), so maybe it /is/ time
to update the naming standards.
--
Peter Laws / N5UWY
National Weather Center / Network Operations Center
University of Oklahoma Information Technology
pl...@ou.edu
--
When a validating resolver queries the parent of a zone for the DS
record(s),
and the (child) zone is NOT signed, the response contains no answer
but it does contain NSEC (NSEC3) record(s) in the authority section
together with corresponding RRSIG records (parent zone is signed).
Would it be consi
Hello, All!
I have several includes which are edited via hand-written script and
now I'm trying to simplify it by using add/delzone options of rndc.
So, the question is: how can I specify files where rndc addzone puts
new zones' descriptions?
Thanks in advance.
--
--
AP
I see that my first post wasn't clear, please, excuse me.
I'll try to explain the situation.
I have:
named.conf:
...
include "includes/file1";
include "includes/file2";
etc
...
eof
I've executed
rndc addzone test.test '{ type master; file "/etc/namedb/master/test.1"; };'
and have got the file /
2011/1/13 Alan Clegg :
> On 1/13/2011 11:08 AM, Peter Andreev wrote:
>
>> I've executed
>> rndc addzone test.test '{ type master; file "/etc/namedb/master/test.1"; };'
>>
>> and have got the file /etc/namedb/3bf305731dd26307.nzf:
>>
2011/1/14 Kalman Feher :
>
>
>
> On 14/01/11 9:57 AM, "Peter Andreev" wrote:
>
>> 2011/1/13 Alan Clegg :
>>> On 1/13/2011 11:08 AM, Peter Andreev wrote:
>>>
>>>> I've executed
>>>> rndc addzone test.test '{ type
Now I see, I really was mistaken about addzone. Kalman, Alan, thank
you very much for explanation.
I think, I won't break working things and continue with includes and scripts :)
2011/1/14 Alan Clegg :
>
>> You haven't understood. I have several includes within one default
>> view and I need to ad
Hello, List
Now DLZ supports dynamic updates and theoretically it is possible to make
such tricks:
rndc freeze example.com
put some new records in database
rndc thaw example.com
rndc sign example.com
rndc freeze example.com
That is zone isn't really dynamic, but it is dynamically loadable and
si
2011/3/10 Evan Hunt
>
> > Now DLZ supports dynamic updates and theoretically it is possible to
make
> > such tricks:
> >
> > rndc freeze example.com
> > put some new records in database
> > rndc thaw example.com
> > rndc sign example.com
> > rndc freeze example.com
> >
> > That is zone isn't reall
Hi
I'm puzzled a little - i see in my zone glue records with
link-local addresses. I think it is not good, but no rfc mentions
about link-local in glue.
Could someone tell me best practices for link-local in glue?
Thanks for advance.
--
--
AP
___
Thank you, Matus, that's all i wanted to know.
2011/6/5 Matus UHLAR - fantomas :
> On 05.06.11 17:07, Peter Andreev wrote:
>> I'm puzzled a little - i see in my zone glue records with
>> link-local addresses. I think it is not good, but no rfc mentions
>> abo
I'm not sure on that count
either. Any thoughts?
Thanks, everyone
-Alex
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https:
$GENERATE and then actually delegating with
0-63.10.in-addr.arpa. IN NS ns1.edu.
64-127.10.in-addr.arpa. IN NS ns2.edu.
etc
Where I'm confused (or have confused myself) is the part about wanting to
actually break the zone up (I want to break it up for the usual reasons -
2011/7/25 Vbvbrj :
> On 25.07.2011 10:15, Matus UHLAR - fantomas wrote:
This is how BIND is supposed to work. If you _need_ such setup, why
don't you setup your AD servers as recursive point clients directly to
them?
you can teoretically configure maximum cache time in BIN
2011/8/9 Chris Buxton :
> On Aug 9, 2011, at 10:07 AM, John Williams wrote:
>
>> --- On Tue, 8/9/11, Chris Buxton wrote:
>>
>>> With a private version of a domain, you should not need to
>>> worry about a DS record in the parent. Just make sure your
>>> internal caching servers not only can find t
2011/9/27 Tom Schmitt :
>
>> > I just updated a couple of my DNS-servers from the rather old version
>> > 9.4.1 to a newer version 9.8.0-P4.
>> >
>> > After this I have problem with outages. Looking into it, I found that
>> > the time for a "rndc reload" has nearly doubled!
>>
>> This has been poin
2011/9/27 Tom Schmitt :
>
>
>> It is not clear in your question, are you use "rndc reload" or "rndc
>> reload zone.name"? Latter will be faster in case if you change one or
>> few zones in one pass of your updating-script.
>
> I generate from my database the complete named.conf, especially includin
If you use two "A" records, your web server needs to be setup to handle both
names. If you use a CNAME, you only need to handle the single "A" record
name in the server.
On Wed, Sep 28, 2011 at 10:36 AM, feralert wrote:
> Thanks Jeff,
>
> But I really only wrote that as an example :) . The real
Hello!
We have ~30 servers running BIND (9.8, 9.7, 9.6). A week ago we have
signed first of our zones with RSA/SHA1 + NSEC3 + OPT-OUT.
Recently we realised that our servers don't generate NSEC3 for signed zone.
Problem has gone after we restarted BIND instances.
Is described behaviour normal for
2011/12/20 Mark Andrews :
>
> Named has a compiled in set of root hints. It is used if
> a root zone is not defined in named.conf.
>
> Mark
Whether it means that without hint zone named still can perform
iterative lookups for its internal purposes?
>
> --
> Mark Andrews, ISC
2011/12/20 Matus UHLAR - fantomas :
>> 2011/12/20 Mark Andrews :
>>>
>>> Named has a compiled in set of root hints. It is used if
>>> a root zone is not defined in named.conf.
>
>
> On 20.12.11 17:37, Peter Andreev wrote:
>>
>> W
2011/12/21 Matus UHLAR - fantomas :
>>>> 2011/12/20 Mark Andrews :
>>>>>
>>>>> Named has a compiled in set of root hints. It is used if
>>>>> a root zone is not defined in named.conf.
>
>
>>> On 20.12.11 17:37
2011/12/21 Matus UHLAR - fantomas :
>>>>> On 20.12.11 17:37, Peter Andreev wrote:
>>>>>>
>>>>>> Whether it means that without hint zone named still can perform
>>>>>> iterative lookups for its internal purposes?
>
&
David, thank you, I checked and all seems good :).
2011/12/21 Matus UHLAR - fantomas :
>> 2011/12/21 Matus UHLAR - fantomas :
>>>
>>> Disabling recursion should do the same afaik. However, disabling
>>>
>>> additional-from-cache is OK and afaik disabled
2012/1/2 Matus UHLAR - fantomas :
>>> On 21.12.11 19:21, Peter Andreev wrote:
>>>>
>>>> All these servers are slaves. They don't send notifies.
>
>
>> 2011/12/21 Matus UHLAR - fantomas :
>>>
>>> they do, unless you have turned it
2012/1/2 Matus UHLAR - fantomas :
>>>>> On 21.12.11 19:21, Peter Andreev wrote:
>>>>
>>>> I think that if server is authoritative - and - slave-only it should
>>>> use system resolver rather than querying by itself.
>
>
>> 2012/1/2 Mat
>>> them,
>>> you can only prevent it by configuring BIND (so it will not need them) or
>>> firewall such packets so they will not get outside (which may break its
>>> functionality).
>
>
> On 03.01.12 16:53, Peter Andreev wrote:
>>
>> My p
2012/1/3 Lyle Giese :
> On 01/03/12 07:53, Peter Andreev wrote:
>>
>> 2012/1/2 Matus UHLAR - fantomas:
>>>>>>>
>>>>>>> On 21.12.11 19:21, Peter Andreev wrote:
>>>>>>
>>>>>>
>>>>>> I thi
2012/1/3 Chuck Swiger :
> On Jan 3, 2012, at 11:13 AM, Peter Andreev wrote:
>> Unfortunately as I learning BIND more, I understand that it is not
>> very suitable for my requirements.
>
> Which are? I've been trying to understand what the actual problem you are
> t
2012/1/4 Mark Andrews :
>
> If you want named to be authoritative only set "recursion no;" or
> "allow-recursion { none; }" or "allow-query-cache { none; };" and
> no data will be returned from the cache. allow-recursion and
> allow-query-cache cross inherit from each other.
>
> If you only want m
2012/1/10 Drunkard Zhang
> I am designing a big deploy system, which will implement via DNS. The
> demond is misc, one of them is conditionally resolve, which means that
> if one CDN node near unavailable, or latency increased significantly,
> no matter why, I want bind to give another second bes
2012/1/12 MontyRee
>
> Hi, all.
>
>
> I have one question about NS cache ttl.
> for example, I can get two different NS TTL like below.
>
> $ dig google.com ns +trace
>
> google.com. 172800 IN NS ns2.google.com.
> google.com. 172800 IN NS ns1.google.
2012/1/16 Tom Schmitt
> Hi,
>
> I have a problem with the load on my Bind. Normally it's fine, but from
> time to time there are clients which causes through a misconfiguration or a
> failed local service (not intentionally) a very high amount of queries.
> After finding and informing the respons
2012/1/17 Shiva Raman
> Hi All
>
> i am running Bind version 9.8.1 as an Authoritative Name server. From
> the rndc.stats , i observe that there are some query failures happening
> in the server. I am trying to get a detailed information of this query
> failures, but the current logging option
Sorry, Shiva I have confused you. Mark is absolutely right and I was wrong.
Another way is to capture responses with tcpdump or dnscap.
2012/1/30 Mark Andrews
>
> In message <
> canbtt6nxwb4fqygev4x8_jl+m5ho7wfenirxzg3pgvc-kzc...@mail.gmail.com>
> , Shiva Raman wr
/hosts is not random. ns1 always gets the first query and ns2
only get queries that were not answered within a second.
So if my internal ns1 and ns2 were anycasted that would make a big
diff.
Outside the diff does not look so big as dns does already randomise.
Kind regards
Peter
Gordon A. Lang
name 3)
> are using at least 1: "m"
>
> So what is the accepted view on this currently? Is there another RFC that
> has made it OK now?
>
> Mike
>
>
> ___
> bind-users mailing list
> bind-users@lists.isc.org
&
Looked in the docs but find no mention of how to set a quota (would like it
to be infinite).
Mar 11 15:53:57.103 xfer-out: IXFR request denied: quota reached
Assume there is a default quota of some sort that can be overridden?
--
Peter Laws / N5UWY
National Weather Center / Network
Niall O'Reilly wrote:
On Wed, 2009-03-11 at 15:58 -0500, Peter Laws wrote:
Looked in the docs but find no mention of how to set a quota
(would like it to be infinite).
Be careful what you wish for ...
You may not need it any greater than it is.
In my experience
led with the transfer-* settings and made the quota errors go away.
Underlying issue seems to be traffic being intermittently blocked between
the master and the slaves. Not really a BIND issue.
--
Peter Laws / N5UWY
National Weather Center / Network Operations Center
University of
use views would help, but
we'd like to avoid that, at least for now.
Any quick fixes?
I checked, and per the MS-People, MS-DNS cannot put ACLs on particular
records. Neither can BIND, so no surprise there.
Which rock do I need to look under?
--
Peter Law
!!!
As far as I know, $GENERATE supports only A, PTR, CNAME.
--
Peter Laws / N5UWY
National Weather Center / Network Operations Center
University of Oklahoma Information Technology
pl...@ou.edu
---
Feedback? Contact my director
s that are difficult to reach, sometimes you are more lucky
with
tcp than with udp.
Amplification attacks using nameservers don't work with tcp.
Sometimes bugs in resolvers sometimes in clients cause failover to tcp.
With DNSSEC tcp is almost a must. Same with IPv6.
Kind regards
Peter
M
best says please keep tcp working.
Cheers
Peter
traynham@epamail.epa.gov wrote:
> Please explain:
>
> With DNSSEC tcp is almost a must. Same with IPv6.
> Is EDNS0 not sufficient?
>
> Thanks,
> Ken
>
> Ken Traynham
> Network Engineer, ITS-EPA CLIN9
> CSC
>
experienced this long ago with bind 8.
Kind regards
Peter
Wiley Sanders wrote:
> Howdy all, we're running 9.5.0-P2 (fairly recent) on two servers that
> are recursive DNS sources for a medium sized college. This week, we
> had more than a few users complaining about crai
HI All
I have been working to get dynamic updates working with bind-9.6 and
FreeBSD 7 So far I have done the following:
1. Compiled bind with GSSAPI enabled.
2. Added these to named.conf
options {
...
tkey-gssapi-credential "DNS/mydomain.com";
...
};
and
z
Yes it is.
On Thu, May 14, 2009 at 11:36 AM, Doug Barton wrote:
> Any reason you have chosen gas vs. TSIG? Is this for a windows environment?
>
>
>
> On May 14, 2009, at 7:37 AM, Peter Fraser wrote:
>
>> HI All
>> I have been working to get dynamic updates working
uot; terminates bind and you can either start it without "-g" or
whatever way you normally do.
Kind Regards
Peter
Thomas Manson wrote:
> Hi,
>
> I'm using BIND 9.5.0-P2 (on ubuntu server 8.04).
>
> And the bind server do not listen anymore on the udp port.
>
&g
Good day
I have met a trouble with non-recursive BIND 9.3.3, running on FreeBSD
6.2-R.
Sometimes if one of our clients sends query with no RD bit set, he receives
a truncated answer.
If RD bit is set then all well.
Where I should look to localise a problem?
Thank you.
___
Thank you for answer, Kevin.
Yes, recursion completely *off* by "recursion no;" option. And only my
servers are authoritative for client's zone. So I'm in confusion, because as
you said, for servers should not have a difference between RD=0 and RD=1.
I'm afraid that there are reasons for such str
QuestionCount: 1 (0x1)
AnswerCount: 5 (0x5)
NameServerCount: 0 (0x0)
AdditionalCount: 3 (0x3)
I do not understand why so occurs.
> Peter, why don't you post what you are seeing?
>
>Mark
> --
> Mark Andrews, ISC
> 1 Seymour St., Dundas Valley, NSW
Kevin, this server is totally non-recursive. Neither recurse option is
enabled and packet size does not exceed 512 byte. May be it was some
temporarly bugs due to mysterious causes.
Below I post full sniffer's output for both queries:
No. TimeSourceDestination
Can somebody explain how many retries must pass, before IP-address from
alt-transfer-source option will be used?
Thank you.
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
-address.
2009/7/9 Stacey Jonathan Marshall
> On 09/07/2009 10:22, Peter Andreev wrote:
>
>> Can somebody explain how many retries must pass, before IP-address from
&g
solve this until
tommorow and I do not know where to start looking.
Than you a lot,
Peter
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
on't
see my own resolver.
With censoring commonplace in europe at least, people with the know do run their
own resolvers. You'll see the number increasing.
I guess 0.4% is harmless. The number I see looks higher and they do not look for
domains I slave.
Kind regards
Peter
--
Peter and K
Hey! RTFRFC! :-)
Except a scanning of that RFC doesn't say anything about not using them,
only in clarifying RFC 1034's intentions regarding wildcards.
So, why is it a "very bad idea"?
Peter
Mike Ragusa wrote:
http://www.rfc-archive.org/getrfc.php?rfc=4592
This
Setup:I have a domain example.com that is hosted on DNS under control of my
internet provider.Web server www.example.com is hosted by another company.I
have setup a local DNS for computers on my LAN. I have a LDAP server on LAN.
Question:I want to make LDAP visible only for computers on LAN with
Search in arm by keyword "blackhole" will save father of russian democracy
:-)
2009/12/3 Dmitry Rybin
> Barry Margolin wrote:
>
>> In article ,
>> Dmitry Rybin wrote:
>>
>> Hello!
>>>
>>> I can't find in docs how disable answer (Refused), if recursion for IP is
>>> not allowed?
>>>
>>
>> What
Are you want to disable refused answers for recursion and allow any answers
for authoritative information in the same time?
2009/12/3 Dmitry Rybin
> Give me parabellum :)
>
> This is not answer. I wont to disable Refused answers for not allowed
> client in recursion.
>
> P
problem?
--
Peter Laws / N5UWY
National Weather Center / Network Operations Center
University of Oklahoma Information Technology
pl...@ou.edu
---
Feedback? Contact my director, Craig Cochell, cra...@ou.edu. Thank you
Chris Buxton wrote:
On Jan 14, 2010, at 5:04 PM, Peter Laws wrote:
And I right in thinking that, on a slave, I can have multiple masters
designated for a particular zone? I just have to make sure that the slave that
is pretending to be the master allows transfers, right?
Don't f
101 - 200 of 311 matches
Mail list logo
