Re: [Pdns-users] Insert foreign DNSKEY?

2014-03-05 Thread Kees Monshouwer
On 03/05/2014 03:43 PM, Gilles Massen wrote: Hello, This feels a bit like an FAQ, but I wasn't able to dig it out, so: how can I insert a 'foreign' DNSKEY record in a zone? I don't have the key material, but I want it signed by the pdns-managed keys (it is for a secure DNS operator change). Wha

Re: [Pdns-users] Insert foreign DNSKEY?

2014-03-05 Thread Leen Besselink
On Wed, Mar 05, 2014 at 03:43:02PM +0100, Gilles Massen wrote: > Hello, > > This feels a bit like an FAQ, but I wasn't able to dig it out, so: how > can I insert a 'foreign' DNSKEY record in a zone? I don't have the key > material, but I want it signed by the pdns-managed keys (it is for a > secur

[Pdns-users] Insert foreign DNSKEY?

2014-03-05 Thread Gilles Massen
Hello, This feels a bit like an FAQ, but I wasn't able to dig it out, so: how can I insert a 'foreign' DNSKEY record in a zone? I don't have the key material, but I want it signed by the pdns-managed keys (it is for a secure DNS operator change). What I tried is an insert into records, type=DNSKE

Re: [Pdns-users] ACL based on source IP

2014-03-05 Thread AJ McKee
Hi Andrea, From your description it appears what you are looking to implement is something akin to BIND views. This is not possible with a vanilla PDNS instance. However you could overcome this by using a custom backend, say in python that would search a different table space based on the clie

[Pdns-users] ACL based on source IP

2014-03-05 Thread Andrea Cappelli
Hi, I have a PowerDNS instance with many zones I would create an ACL on the IP from which the request came to 1) reply a different value 2) doesn't reply at all So for example for record foo.bar I can reply xxx.yyy.zzz.kkk if the request arrives from an internal server and deny if arrives from