huge count of DNS deny hits

2012-01-08 Thread babu dheen
Dear All,   Today we have noticed one peculier issue in our firewall logs. We have internal DNS server running in bind which is protected by firewall. All clients are allowed to perform DNS lookup using our BIND internal DNS server( so only UDP 53 is allowed from LAN to DNS server in firewall)  

forwarding @ to a different domain?

2012-01-08 Thread enigmedia
Hi All: I have a situation where I need to forward requests for mydomain.com and www.mydomain.com to a third party: mydomain.myshopify.com (while still pointing other things like MX records elsewhere). I realize I can point a CNAME for WWW to mydomain.myshopify.com, but how do I point

Re: forwarding @ to a different domain?

2012-01-08 Thread Jukka Pakkanen
www in cname mydomain.myshopify.com. mydomain.com. in cname mydomain.myshopify.com. Is this what you are looking for? 8.1.2012 17:48, enigmedia kirjoitti: Hi All: I have a situation where I need to forward requests for mydomain.com and www.mydomain.com to a third party:

Re: forwarding @ to a different domain?

2012-01-08 Thread Ben Croswell
You can't cnane mydomain.com to anything because it has, at the minimum, ns and soa records. -Ben Croswell On Jan 8, 2012 1:11 PM, Jukka Pakkanen jukka.pakka...@qnet.fi wrote: www in cname mydomain.myshopify.com. mydomain.com. in cname mydomain.myshopify.com. Is this what you are looking

Re: forwarding @ to a different domain?

2012-01-08 Thread enigmedia (onl)
On Sun, 08 Jan 2012 20:00:07 +0200 Jukka Pakkanen jukka.pakka...@qnet.fi wrote www in cname mydomain.myshopify.com. mydomain.com. in cname mydomain.myshopify.com. Is this what you are looking for? Yes, but I thought you couldn't use a cname for the root record of the domain?

Re: forwarding @ to a different domain?

2012-01-08 Thread enigmedia (onl)
On Sun, 8 Jan 2012 13:20:56 -0500 Ben Croswell ben.crosw...@gmail.com wrote You can't cnane mydomain.com to anything because it has, at the minimum, ns and soa records. -Ben Croswell Thanks Ben...that's what I thought. So just to ask the question another way: How do I point requests

Re: forwarding @ to a different domain?

2012-01-08 Thread Jukka Pakkanen
8.1.2012 19:02, enigmedia (onl) kirjoitti: On Sun, 08 Jan 2012 20:00:07 +0200 Jukka Pakkanen jukka.pakka...@qnet.fi wrote www in cname mydomain.myshopify.com. mydomain.com. in cname mydomain.myshopify.com. Is this what you are looking for? Yes, but I thought you couldn't use a cname

Re: forwarding @ to a different domain?

2012-01-08 Thread Jukka Pakkanen
8.1.2012 20:46, Jukka Pakkanen kirjoitti: 8.1.2012 19:02, enigmedia (onl) kirjoitti: On Sun, 08 Jan 2012 20:00:07 +0200 Jukka Pakkanen jukka.pakka...@qnet.fi wrote www in cname mydomain.myshopify.com. mydomain.com. in cname mydomain.myshopify.com. Is this what you are looking for?

Re: forwarding @ to a different domain?

2012-01-08 Thread Matthew Seaman
On 08/01/2012 17:09, enigmedia (onl) wrote: How do I point requests for http://mydomain.com; and http://www.mydomain.com; to http://mydomain.myshopify.com;? Look up an A record (or ) for mydomain.myshopify.com, then create a similar A (or ) record pointing to the same address in your

bind9.9.0rc1 DNSSEC key rollover failure

2012-01-08 Thread Spain, Dr. Jeffry A.
A couple of weeks ago I found a DNSSEC key rollover problem with bind 9.9.0b2. See https://lists.isc.org/pipermail/bind-users/2011-December/086063.html. This appears to have persisted after upgrading to bind 9.9.0rc1 this afternoon. See http://dnsviz.net/d/jaspain.net/dnssec/. The RRSIGs on the

Re: forwarding @ to a different domain?

2012-01-08 Thread /dev/rob0
On Sunday 08 January 2012 09:48:42 enigmedia wrote: Hi All: I have a situation where I need to forward requests for mydomain.com and www.mydomain.com to a third party: mydomain.com is a real domain, and probably not yours. If for some reason you do not want to mention your real domain name,

Re: huge count of DNS deny hits

2012-01-08 Thread babu dheen
Dear Sebastian,   Thanks for the update. I would like to inform you about another finding on this is that; my IPS report shows DNS version request from below said client to my DNS server more than 2000 times   Unfortunately, i have not enabled logs in my internal DNS server.   Any idea ..  

Re: huge count of DNS deny hits

2012-01-08 Thread Fajar A. Nugraha
On Mon, Jan 9, 2012 at 1:37 PM, babu dheen babudh...@yahoo.co.in wrote: Unfortunately, i have not enabled logs in my internal DNS server. You just dismissed the only reliable source of information Any idea .. Without logs, you only have assumptions. The best assumption at this point is that

rndc and views

2012-01-08 Thread Psychobyte
Hi, I use rndc to update records for my zones currently not using any views. I'm going to be creating two different views(perhaps more) with the same zones declared each. How does rndc work w/ views? Can you edit records in a zone in a specific view only? Delete a record in a zone in all

Re: rndc and views

2012-01-08 Thread Psychobyte
Sorry, I didn't mean rndc I meant DDNS updates. in particular using the Perl Net::DNS module. Thanks, ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list