Re: DNSSEC secondary (free) - Was - Re: Can I run two name servers on one host with two IP addresses?

2015-08-20 Thread Mathew Ian Eis 

I believe Hurricane Electric’s free DNS https://dns.he.net/  supports DNSSEC if 
you do zone transfers to them. (No personal experience, but we’ve been 
considering using them for the same purpose, and they seem to have a good 
community reputation).

Mathew Eis
Northern Arizona University

From: 
mailto:bind-users-boun...@lists.isc.org>> on 
behalf of Timothe Litt
Date: Thursday, August 20, 2015 at 11:04 AM
To: "bind-users@lists.isc.org<mailto:bind-users@lists.isc.org>"
Subject: Re: DNSSEC secondary (free) - Was - Re: Can I run two name servers on 
one host with two IP addresses?

On 20-Aug-15 10:50, /dev/rob0 wrote:

On Thu, Aug 20, 2015 at 02:07:57PM +0200, Robert Senger wrote:


There are a number of providers out there offering secondary
dns services for free or for a few bucks/month. Even DNSSEC
is possible for free.


This is good news!  I knew there were several good choices for free
DNS hosting, but this is the first I heard of them supporting signed
zones.

https://acc.rollernet.us/help/dns/secondary.php

Are there others?  I saw another one amongst your NS hosts, but that
seems to be your own domain.  (If you're offering secondary NS for
free, please do mention your service here.)


I use 
https://puck.nether.net/dns<https://puck.nether.net/dns/>/<https://puck.nether.net/dns/>
 .  It's free, it uses current version of bind, supports DNSSEC,
has been stable for several years.  Only drawback is that if you're in Chicago, 
you won't get
enough geographic diversity.  They have only server, which is there.  And of 
course, with free
the SLA is "best efforts, no guarantee."

I am not affiliated, just reporting my personal experience.


___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: DNSSEC secondary (free) - Was - Re: Can I run two name servers on one host with two IP addresses?

2015-08-20 Thread Timothe Litt 
On 20-Aug-15 10:50, /dev/rob0 wrote:
> On Thu, Aug 20, 2015 at 02:07:57PM +0200, Robert Senger wrote:
>> There are a number of providers out there offering secondary
>> dns services for free or for a few bucks/month. Even DNSSEC
>> is possible for free.
> This is good news!  I knew there were several good choices for free 
> DNS hosting, but this is the first I heard of them supporting signed 
> zones.
>
> https://acc.rollernet.us/help/dns/secondary.php
>
> Are there others?  I saw another one amongst your NS hosts, but that 
> seems to be your own domain.  (If you're offering secondary NS for
> free, please do mention your service here.)
I use https://puck.nether.net/*dns* /
 .  It's free, it uses current version of
bind, supports DNSSEC,
has been stable for several years.  Only drawback is that if you're in
Chicago, you won't get
enough geographic diversity.  They have only server, which is there. 
And of course, with free
the SLA is "best efforts, no guarantee."

I am not affiliated, just reporting my personal experience.




smime.p7s
Description: S/MIME Cryptographic Signature
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Can I run two name servers on one host with two IP addresses?

2015-08-20 Thread Warren Kumari 
On Thu, Aug 20, 2015 at 12:14 PM, Tony Finch  wrote:
> /dev/rob0  wrote:
>>
>> This is good news!  I knew there were several good choices for free
>> DNS hosting, but this is the first I heard of them supporting signed
>> zones.
>
> https://web.gratisdns.dk/
> https://puck.nether.net/dns/
>

I have been a happy "customer" of puck.nether.net for many years. It
is run by Jared Mauch and has always performed well for me, no issues,
fast response if help is ever needed, etc.

Jared is awesome, thanks Jared

> There are probably many others...

Yah.

W

>
> Tony.
> --
> f.anthony.n.finchhttp://dotat.at/
> Dover, Wight, Portland, Plymouth, North Biscay: Southerly or southwesterly 4
> or 5, occasionally 6 in Plymouth. Moderate in west Plymouth, otherwise slight
> or moderate. Rain or drizzle at times, fog patches. Moderate or good,
> occasionally very poor.
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
> from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users



-- 
I don't think the execution is relevant when it was obviously a bad
idea in the first place.
This is like putting rabid weasels in your pants, and later expressing
regret at having chosen those particular rabid weasels and that pair
of pants.
   ---maf
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Can I run two name servers on one host with two IP addresses?

2015-08-20 Thread Tony Finch 
/dev/rob0  wrote:
>
> This is good news!  I knew there were several good choices for free
> DNS hosting, but this is the first I heard of them supporting signed
> zones.

https://web.gratisdns.dk/
https://puck.nether.net/dns/

There are probably many others...

Tony.
-- 
f.anthony.n.finchhttp://dotat.at/
Dover, Wight, Portland, Plymouth, North Biscay: Southerly or southwesterly 4
or 5, occasionally 6 in Plymouth. Moderate in west Plymouth, otherwise slight
or moderate. Rain or drizzle at times, fog patches. Moderate or good,
occasionally very poor.
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Can I run two name servers on one host with two IP addresses?

2015-08-20 Thread Mark Elkins 
On Thu, 2015-08-20 at 09:50 -0500, /dev/rob0 wrote:
> On Thu, Aug 20, 2015 at 02:07:57PM +0200, Robert Senger wrote:
> > There are a number of providers out there offering secondary
> > dns services for free or for a few bucks/month. Even DNSSEC
> > is possible for free.
> 
> This is good news!  I knew there were several good choices for free 
> DNS hosting, but this is the first I heard of them supporting signed 
> zones.
> 
> https://acc.rollernet.us/help/dns/secondary.php
> 
> Are there others?  I saw another one amongst your NS hosts, but that 
> seems to be your own domain.  (If you're offering secondary NS for
> free, please do mention your service here.)

Just for informational purposes...
I offer this as a paid service. Site is https://secdns.posix.co.za.
Secondaries: London (TeleHouse) and Johannesburg.
IDN aware (Puny/UTF8 names), IPv6 Connected, TSIG Management system
(supported/encouraged), DNSSEC aware (can view your DNSKEY records -
does not Sign domains).

Cost is R3 (Three South African Rand) a month per domain. That's about
US$ 3 a year.  For five or less names, I probably would not bother
charging. I've also done "Service Swaps".

Its always a good idea to have your Nameservers geographically dispersed
to try to reduce the number of any single point of failure. ie - not
just same Machine/Rack/DataCenter but also not the same City, IP-Block,
ASN, Transit Provider - etc.

-- 
Mark James ELKINS  -  Posix Systems - (South) Africa
m...@posix.co.za   Tel: +27.128070590  Cell: +27.826010496
For fast, reliable, low cost Internet in ZA: https://ftth.posix.co.za


smime.p7s
Description: S/MIME cryptographic signature
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Can I run two name servers on one host with two IP addresses?

2015-08-20 Thread /dev/rob0 
On Thu, Aug 20, 2015 at 02:07:57PM +0200, Robert Senger wrote:
> There are a number of providers out there offering secondary
> dns services for free or for a few bucks/month. Even DNSSEC
> is possible for free.

This is good news!  I knew there were several good choices for free 
DNS hosting, but this is the first I heard of them supporting signed 
zones.

https://acc.rollernet.us/help/dns/secondary.php

Are there others?  I saw another one amongst your NS hosts, but that 
seems to be your own domain.  (If you're offering secondary NS for
free, please do mention your service here.)
-- 
  http://rob0.nodns4.us/
  Offlist GMX mail is seen only if "/dev/rob0" is in the Subject:
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Can I run two name servers on one host with two IP addresses?

2015-08-20 Thread Robert Senger 
There are a number of providers out there offering secondary dns
services for free or for a few bucks/month. Even DNSSEC is possible for
free.


Am Mittwoch, den 19.08.2015, 17:53 -0500 schrieb Tom Browder:
> I have a single server with access to several IP addresses from my
> dedicated host provider.  They do not provide DNS service so I
> currently use my domain registrar.
> 
> I would like  to run my own DNS server but I only have the one server
> (with 5 IP addresses).  Is it possible (and permitted) to run DNS with
> just one real server?
> 
> Thanks.
> 
> Best regards,
> 
> -Tom
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
> from this list
> 
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users

-- 
Robert Senger


___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Can I run two name servers on one host with two IP addresses?

2015-08-19 Thread Tom Browder 
On Wed, Aug 19, 2015 at 5:59 PM, Reindl Harald  wrote:
> Am 20.08.2015 um 00:53 schrieb Tom Browder:
>> I have a single server with access to several IP addresses from my
...
>> I would like  to run my own DNS server but I only have the one server
...
> they have to be on different IP networks and the reason si simply to avoid a
> single-point of failure
> so even if you have different IP ranges on your single machine don't do it -
...

That makes sense--thanks, Reindl!

Best,

-Tom
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Can I run two name servers on one host with two IP addresses?

2015-08-19 Thread Reindl Harald 


Am 20.08.2015 um 00:53 schrieb Tom Browder:

I have a single server with access to several IP addresses from my
dedicated host provider.  They do not provide DNS service so I
currently use my domain registrar.

I would like  to run my own DNS server but I only have the one server
(with 5 IP addresses).  Is it possible (and permitted) to run DNS with
just one real server?


they have to be on different IP networks and the reason si simply to 
avoid a single-point of failure


so even if you have different IP ranges on your single machine don't do 
it - unless they come from different internet connections and your 
machine itself is a HA cluster


DNS going down has a lot of side-effects for a domain



signature.asc
Description: OpenPGP digital signature
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users