On Tue, 3 Dec 2002, vince cagud wrote: > okay, if BIND is such a horror, i have a question for all serious DNS > administrators out there. what nameserver program would you use that > supports the RFCs as much as BIND does? i'm talking about ISP grade, or > root-server grade name service software? one that supports primaries, > secondaries, master-slave, zone transfers and updates...and what-not?
First of all, you don't need to support the entire RFC line to have a functional name server. All you need for a public nameserver is the ability to answer DNS queries to the domains you are authoritative for. If you control both the masters and slave DNS servers then you can use whatever technique to ensure that both servers give out consistent information. That can be via the DNS zone transfer, via SQL, rsync, via ftp, via nfs, or whatever is neat for your setup. You only need zone transfer capability if your secondaries are not under your control and running bind can can only talk zone transfer to pull data out of your sever. Other than that, the TSIG stuff, the DNSSEC stuff are all used for special purposes and not really needed. > the reason i'm asking is i'm using djbdns for the office lan, but i use > bind for our central nameserver which has several slave dns machines, > including those of our providers. i feel i would be able to sleep better > at night knowing that the risk of the bind instances running amok is > lessened. _ Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph To leave: send "unsubscribe" in the body to [EMAIL PROTECTED] Fully Searchable Archives With Friendly Web Interface at http://marc.free.net.ph To subscribe to the Linux Newbies' List: send "subscribe" in the body to [EMAIL PROTECTED]
