comp.protocols.dns.bind
Has the newsgroup gateway been switched off or is it just broken? The most recent post for this newsgroup in Google groups is 15-Feb-2011. -- John Marshall ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
(fixed) bad cache hit (eduftcdnsp01.ed.gov/DS)
Thanks to everyone who replied on and off list, my first dnssec related problem and no self confidence. :-) They got it fixed yesterday evening and working OK again. have a great weekend! jim On Fri, 27 May 2011 15:09:39 -0400 Jim Glassford jmgl...@iup.edu wrote: Hi, Running BIND 9.7.0-P2 Is this just me or other seeing this? Starting today got reports of unable to reach some student ad sites such as studentloans.gov # dig eduftcdnsp01.ed.gov ; DiG 9.7.0-P2-RedHat-9.7.0-5.P2.el6_0.1 eduftcdnsp01.ed.gov ;; global options: +cmd ;; Got answer: ;; -HEADER- opcode: QUERY, status: SERVFAIL, id: 46012 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;eduftcdnsp01.ed.gov. IN A ;; Query time: 550 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: Fri May 27 15:06:00 2011 ;; MSG SIZE rcvd: 37 ~in dnssec log file; 27-May-2011 15:06:00.097 dnssec: info: validating @0x7ff40c023520: eduftcdnsp01.ed.gov A: bad cache hit (eduftcdnsp01.ed.gov/DS) With the checking disabled; # dig eduftcdnsp01.ed.gov +cd ; DiG 9.7.0-P2-RedHat-9.7.0-5.P2.el6_0.1 eduftcdnsp01.ed.gov +cd ;; global options: +cmd ;; Got answer: ;; -HEADER- opcode: QUERY, status: NOERROR, id: 11700 ;; flags: qr rd ra cd; QUERY: 1, ANSWER: 1, AUTHORITY: 4, ADDITIONAL: 0 ;; QUESTION SECTION: ;eduftcdnsp01.ed.gov. IN A ;; ANSWER SECTION: eduftcdnsp01.ed.gov.3539IN A 148.9.101.50 ;; AUTHORITY SECTION: ed.gov. 2777IN NS eduptcdnsp01.ed.gov. ed.gov. 2777IN NS eduptcdnsp02.ed.gov. ed.gov. 2777IN NS eduftcdnsp02.ed.gov. ed.gov. 2777IN NS eduftcdnsp01.ed.gov. ;; Query time: 0 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: Fri May 27 15:07:01 2011 ;; MSG SIZE rcvd: 148 thanks! jim ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
bind 9.8.0 with openssl 1.0.0d in chroot Bug
Hello together, I'm try to use bind 9.8.0 with openssl 1.0.0d under chroot. Unfortunably I see, wehen I start named/bind: named[13260]: [ID 873579 daemon.crit] initializing DST: openssl failure This bind is compiled: named[13260]: [ID 873579 daemon.notice] starting BIND 9.8.0-P2 -c /etc/bind/named.conf -u dnsrun -t /opt/chroot/bind named[13260]: [ID 873579 daemon.notice] built with '--withopenssl=yes' '--enable-largefile' '--sysconfdir=/usr/local/etc' '--localstatedir=/usr/local/var' 'CC=gcc' 'CFLAGS=-O2 -L/usr/local/lib -R/usr/local/lib -L/usr/local/ssl/lib -R/usr/local/ssl/lib -L/usr/openwin/lib -R/usr/openwin/lib -I/usr/local/rrdtool-1.2.19/include -I/usr/local/BerkeleyDB.4.7/include -I/usr/local/include/cairo' 'LDFLAGS=-L/usr/local/lib -R/usr/local/lib -R/usr/lib -L/usr/lib -R/usr/openwin/lib -L/usr/openwin/lib -L/usr/local/ssl/lib -R/usr/local/ssl/lib -L/usr/X11R6/lib -R/usr/X11R6/lib -L/usr/local/BerkeleyDB.4.7/lib -R/usr/local/BerkeleyDB.4.7/lib' 'CPPFLAGS=-I/usr/local/include -I/usr/local/ssl/include -I/usr/local/include/ncurses -I/usr/openwin/include -I/usr/local/rrdtool-1.2.19/include -I/usr/local/BerkeleyDB.4.7/include -I/usr/local/include/lzo' 'CXX=g++' 'CXXFLAGS=-fpermissive -felide-constructors' Does anybody solve this issue? Till now I only found this Phenomena under different OS but no working solution [Except: use old bind 9.7.3 / no chroot / copy everything in chroot ] Thank's for your Help. Greetings Martin PS) specially SUN Solaris 10 with SUN-Freeware Packages. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: [dns-operations] Bind 9.8.0 intermittent problem with non-recursive responses
This will be in BIND 9.8.1 final. BIND 9.8.1b1 is already cut and will need this to be applied. I just noticed that the patch for query.c has been added as an extra patch to the FreeBSD port for 9.8.0-P2, so if you build the bind98 port from the latest FreeBSD ports collection, you'll get the bugfix now. (Thanks, dougb) michael ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
