In message <[email protected]>, Anand Buddhdev writes: > Thanks to all who responded, both publicly and privately. > > I had forgotten to mention that the clients will be under my control, > and I don't plan on using TSIG, so I'm not going to bother implementing it. > > I'm also not going to bother with the NOTIMP responses, and just return > REFUSED for queries I don't support. > > About responding to SOA queries over TCP: BIND doesn't do that (it uses > UDP to query for the SOA record) and neither does NSD (it always asks > for AXFR/IXFR, and looks at the SOA record in there, abandoning the > connection if it doesn't need the XFR). So I can get away with > implementing just AXFR over TCP, and nothing else (including returning > AXFR in response to IXFR). > > Regards, > > Anand
Actually named does do SOA queries over TCP before AXFR. -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: [email protected] _______________________________________________ dns-operations mailing list [email protected] https://lists.dns-oarc.net/mailman/listinfo/dns-operations dns-jobs mailing list https://lists.dns-oarc.net/mailman/listinfo/dns-jobs
