DDNS propagation between views
Are there any tunable's to speed up the propagation of dynamic updates between views without manually freezing and thawing the zone? Thanks! jlc ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: DDNS propagation between views
Joseph L. Casale wrote: Are there any tunable's to speed up the propagation of dynamic updates between views without manually freezing and thawing the zone? Hm, are you using the same zonefile for both your versions of the zone, trying to share it between multiple views? If you are - don't. Views are an abomination, giving people plenty of rope to hang themself with AND plenty of chances to shoot themselves in the feet :D (Yes, I'll admit, views do have their use, but it seems like more often than not they end up confusing people) Think of views as having two separate nameservers. I know it's not _really_ like that, but it helps to think of it that way. Both load their version of the zonefile into memory at startup, and even if the zone is updated in one of the views, the other view won't know until being _told_ about it. When you do a freeze/thaw you're pretty much telling one of your views There, I _might_ have changed the contents of your zonefile, so now you'll need to check it again. Regards Eivind Olsen ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: DDNS propagation between views
On 07/08/11 16:06, Joseph L. Casale wrote: Hm, are you using the same zonefile for both your versions of the zone, trying to share it between multiple views? If you are - don't. Views are an abomination, giving people plenty of rope to hang themself with AND plenty of chances to shoot themselves in the feet :D Ahh, yes you are right, I am sharing a zone file between views. How does one achieve acl matches without the use of views? I have a split dns setup specifically on this bind instance and don't know how to achieve this without views? Thanks! jlc You can have views and separate zone files. You need to plan and it helps to read the FAQs at ISC about this. http://www.isc.org/faq/item/191 http://www.isc.org/faq/item/182 Lyle Giese LCR Computer Services, Inc. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
RE: DDNS propagation between views
You can have views and separate zone files. You need to plan and it helps to read the FAQs at ISC about this. http://www.isc.org/faq/item/191 Didn't even think about it that way, ok. http://www.isc.org/faq/item/182 How does one actually do away with views if that was an approach? Docs suggest acl's can be used outside a views clause, so I presume the use of allow-query directives would facilitate this. Just curious as it was mentioned... Thanks for the pointers! jlc ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: DDNS propagation between views
On 07/08/11 19:45, Joseph L. Casale wrote: You can have views and separate zone files. You need to plan and it helps to read the FAQs at ISC about this. http://www.isc.org/faq/item/191 Didn't even think about it that way, ok. http://www.isc.org/faq/item/182 How does one actually do away with views if that was an approach? Docs suggest acl's can be used outside a views clause, so I presume the use of allow-query directives would facilitate this. Just curious as it was mentioned... Thanks for the pointers! jlc ___ ACL's determine what services you will render to that client. But I don't think you can change an answer based on ACL's. In other words, you can restrict recursive queries, but you can not give answer 1 to question A while using acl's to give answer 2 to question A. This requires views and you separate the clients by 'acl's' inside the views clause. You could use separate named processes with separation by listening to different IP address to do the same thing. Using views, you probably need to understand TSIG to get zone transfers straight. I don't think it's hard, but you do need to get your thought patterns in order. Lyle ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
