On 12/06/11 1:01 PM, "Craig Whitmore" wrote:
>>
>Ah ok.. I understand.. All backend database types don't support triggers
>so maybe it can be added in the future.. But yes mysql does so I'll see if
>I can write something which does it
>
I was understanding how TSIG works incorrectly.. It auth
On 12/06/11 10:49 AM, "Christof Meerwald" wrote:
>On Sun, 12 Jun 2011 10:23:15 +1200, Craig Whitmore wrote:
>>>But you should be able to add the TSIG stuff just after creating the
>>>domain entry (and before it gets transferred) - you might even be able
>>>to use a database trigger to do it...
Hi,
According to the docs, the latest version of pdns-recursor also has
a max-cache-ttl parameter along with the max-negative-ttl.
http://doc.powerdns.com/built-in-recursor.html#recursor-settings
thanks. For some reason I was looking at the "/usr/sbin/pdns-recursor
--config" of the RHEL4 EPE
On Sun, 12 Jun 2011 10:23:15 +1200, Craig Whitmore wrote:
>>But you should be able to add the TSIG stuff just after creating the
>>domain entry (and before it gets transferred) - you might even be able
>>to use a database trigger to do it...
> Yes on the master and that¹s fine.. What about the slav
>> slaves .
>
>But you should be able to add the TSIG stuff just after creating the
>domain entry (and before it gets transferred) - you might even be able
>to use a database trigger to do it...
>
>
Yes on the master and that¹s fine.. What about the slave? I have to log
into it still and add the T
On Sat, Jun 11, 2011 at 07:08:54PM +0200, Marten Lehmann wrote:
> Hi,
>
> I'm about to migrate from BIND named caching daemon to
> pdns-recursor, but I cannot find an equivalent for BINDs
> max-cache-ttl option.
>
> While max-negative-ttl in pdns is the same as max-ncache-ttl in
> BIND, I cannot
Hi,
I'm about to migrate from BIND named caching daemon to pdns-recursor,
but I cannot find an equivalent for BINDs max-cache-ttl option.
While max-negative-ttl in pdns is the same as max-ncache-ttl in BIND, I
cannot find an analog parameter for max-cache-ttl. Parameters that I
found in diff
On Sat, 11 Jun 2011 22:11:57 +1200, Craig Whitmore wrote:
> Ok.. Can similar be done with TSIGS . As domains are not transferred
> securely without TSIG (as far as I know) I have to enter the TSIG stuff in
> after it has transferred which kind of defeats the purpose of unattended
> slaves .
But yo
On Sat, 11 Jun 2011 15:16:14 +0200, Christof Meerwald wrote:
> On Sat, 11 Jun 2011 22:11:57 +1200, Craig Whitmore wrote:
> [...]
>> And testing if everything worked out.. Except it sets the options
>> differently that if I typed "pdnssec set-nsec3 spam.co.nz" I have no idea
>> what the difference i
On Sat, 11 Jun 2011 22:11:57 +1200, Craig Whitmore wrote:
[...]
> And testing if everything worked out.. Except it sets the options
> differently that if I typed "pdnssec set-nsec3 spam.co.nz" I have no idea
> what the difference is but it still passes the dig tests I do...
I have to say that I am
>>
>>
>
>Thanks a lot.. I'll patch my copy and see how it works out.
>
Seemed to work.
Jun 11 21:45:29 database1 pdns[4861]: Done launching threads, ready to
distribute questions
Jun 11 21:48:44 database1 pdns[4861]: Received NOTIFY for spam.co.nz from
114.23.33.130 for which we are not author
On 11/06/11 8:54 PM, "Christof Meerwald" wrote:
>On Fri, 10 Jun 2011 23:12:36 +0200, Christof Meerwald wrote:
>> On Thu, 09 Jun 2011 11:54:53 +1200, Craig Whitmore wrote:
>>> Is there anyway to make presigned-zones on slaves the default.
>> It shouldn't be too difficult to detect a DNSSEC zone
On Fri, 10 Jun 2011 23:12:36 +0200, Christof Meerwald wrote:
> On Thu, 09 Jun 2011 11:54:53 +1200, Craig Whitmore wrote:
>> Is there anyway to make presigned-zones on slaves the default.
> It shouldn't be too difficult to detect a DNSSEC zone during the zone
> transfer and set the presigned flag (a
13 matches
Mail list logo
