Re: BIND - Declare variable?
No. You can set a path in named.conf with the options { directory ...; };
statement, but that single path applies to all unqualified paths in named.conf.
You could, however, write this:
options {
directory /var/named;
};
logging {
channel config_log {
file log/config [...];
};
channel database_log {
file log/database [...];
};
};
Your directory structure might include a symlink at /var/named/log pointing to
/var/log/dns.
Regards,
Chris Buxton
BlueCat Networks
On Nov 3, 2010, at 11:13 AM, Mike Cavanagh wrote:
I do not think this is possible, but would like to confirm.
I would like to declar a variable, and then use that variable elsewhere
within the named.conf file.
I have multiple “channel” definitions with “file” options. I want a variable
for the path so I can change it once and update all entries:
Example:
channel config_log {
file /var/log/dns/config
versions 7
size 20m
;
channel config_log {
file /var/log/dns/config
versions 7
size 20m
;
I would like:
FQPN=/var/log/dns
channel config_log (
File “$FQPN/config”
Version 7
Size 20m
;
channel database_log {
file “$FQPN/database
versions 7
size 20m
;
Obviously, I could take it even further with the version and size parameters.
It would be great to reduce this down to:
FQPN=/var/log/dns
Ch_Opts=Version 7 Size 20m
channel config_log (
File “$FQPN/config” $Ch_Opts ;
channel database_log {
file “$FQPN/database $Ch_Opts ;
Thanks,
Mike C
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: multi-master configuration?
On Nov 4, 2010, at 8:38 PM, Jiann-Ming Su wrote:
So, to clarify my question. When I add the other two dhcp servers to the
masters{} list and set multi-master yes will this allow all three dhcp
servers
to update the dyn.mydomain.com zone? If so, do the three dhcp servers also
update each other?
No, this won't work with BIND. It just doesn't work this way. If you try it,
you will have three completely different and unrelated versions of the same
zone. There's no way for a slave to try to integrate the data, either.
Create a single hidden master name server. Configure al three DHCP servers to
update it. Or create three separate zones, one per DHCP server.
Regards,
Chris Buxton
BlueCat Networks
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Success resolving messages and can I Ignore them?
We just started running bind9.7.1 in production mode and
it appears to be healthy but there is a recurring message in
named.log that goes something like:
success resolving '147.184.158.95.in-addr.arpa/PTR'
(in '95.in-addr.arpa'?) after reducing the advertised EDNS UDP packet size to
512 octets
success resolving 'www.pbs.org/A' (in 'pbs.org'?) after
reducing the advertised EDNS UDP packet size to 512 octets
I'm really glad it did that, but we got 787697
similar advisories in a 24-hour period.
What category of message is this called and can I put something
in named.conf similar to
category lame-servers { null; };
directive that will make these messages stopp logging without
effecting other possibly important types of messages?
Thank you.
Martin McCormick WB5AGZ Stillwater, OK
Systems Engineer
OSU Information Technology Department Telecommunications Services Group
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: Success resolving messages and can I Ignore them?
Op 05/11/2010 om 09:31:58 -0500, schreef Martin McCormick:
We just started running bind9.7.1 in production mode and
it appears to be healthy but there is a recurring message in
named.log that goes something like:
success resolving '147.184.158.95.in-addr.arpa/PTR'
(in '95.in-addr.arpa'?) after reducing the advertised EDNS UDP packet size to
512 octets
success resolving 'www.pbs.org/A' (in 'pbs.org'?) after
reducing the advertised EDNS UDP packet size to 512 octets
I'm really glad it did that, but we got 787697
similar advisories in a 24-hour period.
What category of message is this called and can I put something
in named.conf similar to
category lame-servers { null; };
directive that will make these messages stopp logging without
effecting other possibly important types of messages?
category edns-disabled { null; };
I believe is wat you are looking for.
--
Leo Baltus, internetbeheerder /\
NPO ICT Internet Services/NPO/\
Sumatralaan 45, 1217 GP Hilversum, Filmcentrum, west \ /\/
beh...@omroep.nl, 035-6773555 \/
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: Success resolving messages and can I Ignore them?
martin there is a recurring message in named.log that goes something
martin like:
martin success resolving 'www.pbs.org/A' (in 'pbs.org'?) after
martin reducing the advertised EDNS UDP packet size to 512 octets
martin What category of message is this called and can I put something
martin in named.conf similar to
martin category lame-servers { null; };
category edns-disabled { null; };
should make you happier.
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: Success resolving messages and can I Ignore them?
Paul Ebersman writes:
category edns-disabled { null; };
should make you happier.
I must get a newer edition of DNS and Bind, but thanks
to you and the list for your patience.
Actually, I am not sure whether it is mentioned in the
4TH edition but searching for something whose nomenclature is
uncertain is really hit and miss.
Martin
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
RE: BIND - Declare variable?
Chris. Thanks for the confirmation. Just wanted to make sure I did not
miss something.
Yes. You suggestion would work. But, I will leave things as is. It's
straight forward and easy for someone else to follow.
Thanks again,
Mike.
Michael D. Cavanagh
Phone [916] 853-9658
The information transmitted is intended only for the person or entity to
which it is addressed and may contain confidential and/or privileged
material. Any review, transmission, dissemination or other use of, or
taking of any action in reliance upon, this information by persons or
entities other than the intended recipient is prohibited and may be
unlawful. If you received this in error, please notify the sender and
delete the material from your system.
P THINK GREEN. Please consider the environment before printing this
e-mail notice.
From: Chris Buxton [mailto:chris.p.bux...@gmail.com]
Sent: Thursday, November 04, 2010 11:16 PM
To: Mike Cavanagh
Cc: bind-users@lists.isc.org
Subject: Re: BIND - Declare variable?
No. You can set a path in named.conf with the options { directory ...;
}; statement, but that single path applies to all unqualified paths in
named.conf.
You could, however, write this:
options {
directory /var/named;
};
logging {
channel config_log {
file log/config [...];
};
channel database_log {
file log/database [...];
};
};
Your directory structure might include a symlink at /var/named/log
pointing to /var/log/dns.
Regards,
Chris Buxton
BlueCat Networks
On Nov 3, 2010, at 11:13 AM, Mike Cavanagh wrote:
I do not think this is possible, but would like to confirm.
I would like to declar a variable, and then use that variable elsewhere
within the named.conf file.
I have multiple channel definitions with file options. I want a
variable for the path so I can change it once and update all entries:
Example:
channel config_log {
file /var/log/dns/config
versions 7
size 20m
;
channel config_log {
file /var/log/dns/config
versions 7
size 20m
;
I would like:
FQPN=/var/log/dns
channel config_log (
File $FQPN/config
Version 7
Size 20m
;
channel database_log {
file $FQPN/database
versions 7
size 20m
;
Obviously, I could take it even further with the version and size
parameters. It would be great to reduce this down to:
FQPN=/var/log/dns
Ch_Opts=Version 7 Size 20m
channel config_log (
File $FQPN/config $Ch_Opts ;
channel database_log {
file $FQPN/database $Ch_Opts ;
Thanks,
Mike C
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: multi-master configuration?
On Nov 4, 2010, at 8:38 PM, Jiann-Ming Su wrote:
So, to clarify my question. When I add the other two dhcp servers to the
masters{} list and set multi-master yes will this allow all three dhcp
servers
to update the dyn.mydomain.com zone? If so, do the three dhcp servers
also
update each other?
No, this won't work with BIND. It just doesn't work this way. If you try it,
you will have three completely different and unrelated versions of the same
zone. There's no way for a slave to try to integrate the data, either.
Create a single hidden master name server. Configure al three DHCP servers
to
update it. Or create three separate zones, one per DHCP server.
In that scenario, the dynamic updates are forwarded to the hidden master, right?
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: no. of Views and Zones
On 11/04/2010 06:43 PM, Alan Clegg wrote: On 11/4/2010 12:22 AM, Alans wrote: On 10/31/2010 4:48 AM, Alans wrote: Have 2 questions, is there any limitation (beside hardware) on number of views? I mean creating a view/customer? And is there any limitation for number of zones/view? Since I didn't got exact answer for my questions, I was thinking if you can tell what is your largest number of views and zones that you used so far? sizeof(zone data) * count(views) - memory required If you have enough memory, you can support whatever you need. Again, I think there's a better solution out there than bunches of views. Thanks Alan, I'll try to do more research and I really like to hear from you or anyone else about better solutions if possible. regards, Alans ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: multi-master configuration?
Jiann-Ming Su wrote:
On Nov 4, 2010, at 8:38 PM, Jiann-Ming Su wrote:
So, to clarify my question. When I add the other two dhcp servers
to the masters{} list and set multi-master yes will this allow
all three dhcp servers to update the dyn.mydomain.com zone? If so,
do the three dhcp servers also update each other?
No, this won't work with BIND. It just doesn't work this way. If you
try it, you will have three completely different and unrelated
versions of the same zone. There's no way for a slave to try to
integrate the data, either.
Create a single hidden master name server. Configure al three DHCP
servers to update it. Or create three separate zones, one per DHCP
server.
In that scenario, the dynamic updates are forwarded to the hidden
master, right?
Only if you configure something to send them there.
Either create the necessary zone statement(s) in dhcpd.conf to send
updates directly to the hidden master, or configure the published slaves
to forward updates to the hidden master by putting an
allow-update-forwarding statement into the slaves' named.conf.
Chris Buxton
BlueCat Networks
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
bind9.7.1 Instance seems to not talk to systems on its own network.
This sounds like a firewall issue, but read carefully.
Our master and slave are on 2 different networks that
are each larger than a single octet. Both are producing messages
like:
client 139.78.100.57#33486: error sending response: host unreachable
That particular VLAN or subnet is a /22 and runs from
139.78.100.0 through 139.78.103.255.
For the moment, we have the firewall on the bind system
off as there is a firewall for all the hosts on this network but
there is no firewall between the name server and the complaining
systems.
Our slave is on another subnet that is 2 octets wide and
the complaints on that host are all about other hosts in the
same octet where the DNS lives.
I should know what this is, but it doesn't quite make
sense. Both DNS's appear to actually be working right except for
these messages.
Does this sound familiar to anyone?
We were running bind9.6.3 before upgrading and never saw
similar messages there. The first firewall rule on both systems
is:
#open the firewall for testing.
${fwcmd} add pass all from any to any
This should be like not having any firewall at all.
Martin McCormick
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: bind9.7.1 Instance seems to not talk to systems on its own network.
aa Date: Fri, 05 Nov 2010 15:04:23 -0500
From: Martin McCormick mar...@dc.cis.okstate.edu
Sender: bind-users-bounces+oberman=es@lists.isc.org
This sounds like a firewall issue, but read carefully.
Our master and slave are on 2 different networks that
are each larger than a single octet. Both are producing messages
like:
client 139.78.100.57#33486: error sending response: host unreachable
That particular VLAN or subnet is a /22 and runs from
139.78.100.0 through 139.78.103.255.
For the moment, we have the firewall on the bind system
off as there is a firewall for all the hosts on this network but
there is no firewall between the name server and the complaining
systems.
Our slave is on another subnet that is 2 octets wide and
the complaints on that host are all about other hosts in the
same octet where the DNS lives.
I should know what this is, but it doesn't quite make
sense. Both DNS's appear to actually be working right except for
these messages.
Does this sound familiar to anyone?
We were running bind9.6.3 before upgrading and never saw
similar messages there. The first firewall rule on both systems
is:
#open the firewall for testing.
${fwcmd} add pass all from any to any
This should be like not having any firewall at all.
You don't say just what OS this is running on, but if it is FreeBSD,
turn off the firewall with 'sysctl net.inet.ip.fw.enable=0' for IPv4 and
'sysctl net.inet6.ip6.fw.enable=0' for IPv6. I suspect other OSes may
have similar capabilities.
Can these complaining system ping the DNS server?
It almost sounds like something has a bad subnet mask, but that is less
likely if the host is in the same /24 as the server.
--
R. Kevin Oberman, Network Engineer
Energy Sciences Network (ESnet)
Ernest O. Lawrence Berkeley National Laboratory (Berkeley Lab)
E-mail: ober...@es.net Phone: +1 510 486-8634
Key fingerprint:059B 2DDF 031C 9BA3 14A4 EADA 927D EBB3 987B 3751
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
