Re: one-zone-only forwarding DNS

2018-11-13 Thread Kevin Darcy
9.5.5 is old -- upgrade. But, to the architecture issue... sounds like you need an "internal root with forwarding exceptions" setup. - As per best practices, consider separating the recursive-resolver and hosting functions into separate views, separate named instances (listening on

Re: conflicting subdomain delegation

2018-11-13 Thread Mark Andrews
> On 14 Nov 2018, at 4:04 am, Frank Liu wrote: > > Hi, > > Is there a RFC determining which nameserver to use if there is a conflicting > subdomain delegation? > > eg: > In the zone of a.com, there are two NS delegations This one is used. > b.a.com NS host1 This one is ignored as it is

Re: conflicting subdomain delegation

2018-11-13 Thread Matus UHLAR - fantomas
On 13.11.18 09:04, Frank Liu wrote: Is there a RFC determining which nameserver to use if there is a conflicting subdomain delegation? eg: In the zone of a.com, there are two NS delegations: b.a.com NS host1 c.b.a.com NS host2 this should produce "out of zone data" error. Since the b.a.com

Re: Common zone file, on multiple views

2018-11-13 Thread Grant Taylor via bind-users
On 11/12/2018 04:57 AM, Sabri MJAHED (VINC) wrote: Hi all, Hi, I want to have the same zone on multiple views, but i didn't find any solution that ease the use of this. I would think that the zone's "in-view" statement would do what you want. I don't want to make 3 file of zone conf with

Re: conflicting subdomain delegation

2018-11-13 Thread Frank Liu
bind9 resolver a simple cache only with root hint. no local zones. On Tue, Nov 13, 2018 at 9:18 AM Lyle Giese wrote: > On 11/13/2018 11:04 AM, Frank Liu wrote: > > Hi, > > Is there a RFC determining which nameserver to use if there is a > conflicting subdomain delegation? > > eg: > In the zone

Re: conflicting subdomain delegation

2018-11-13 Thread Lyle Giese
On 11/13/2018 11:04 AM, Frank Liu wrote: Hi, Is there a RFC determining which nameserver to use if there is a conflicting subdomain delegation? eg: In the zone of a.com , there are two NS delegations: b.a.com NS host1 c.b.a.com NS host2 On

conflicting subdomain delegation

2018-11-13 Thread Frank Liu
Hi, Is there a RFC determining which nameserver to use if there is a conflicting subdomain delegation? eg: In the zone of a.com, there are two NS delegations: b.a.com NS host1 c.b.a.com NS host2 On host1 in zone b.a.com, there is c.b.a.com NS host3 As you can see, there is a conflicting

Re: Method of writing zone files

2018-11-13 Thread Marcus Frenkel
Thanks Matus. Does bind keep the received messages for zone updates in queue during rndc freeze, and apply them after rndc thaw? I think that while rndc freeze is in effect, bind will ignore (and not keep) notify messages for zone updates. The drawback in this case is that a zone will only update

Re: Method of writing zone files

2018-11-13 Thread Matus UHLAR - fantomas
On 12-Nov-18 14:39, Marcus Frenkel asked about backing up slave zone files & bind's update mechanism: On 13.11.18 06:37, Timothe Litt wrote: I believe you're asking the wrong questions and are likely to run into complications.  You don't know when BIND will merge the journal, or that rsync

Re: Method of writing zone files

2018-11-13 Thread Timothe Litt
On 12-Nov-18 14:39, Marcus Frenkel asked about backing up slave zone files & bind's update mechanism: I believe you're asking the wrong questions and are likely to run into complications.  You don't know when BIND will merge the journal, or that rsync will atomically snapshot the zone file and

one-zone-only forwarding DNS

2018-11-13 Thread Sig Pam
Hi all!   I’m really despairing on a configuration, and start to wonder if it is possible at all.   Running Bind 9.5.5, I want to serve IP-Addresses for my internal network only, and none from the internet, except for a few domains. The idea is I don’t want any intranet client to be able to

Re: Common zone file, on multiple views

2018-11-13 Thread Tony Finch
Sabri MJAHED (VINC) wrote: > > I dont have the -l option on the named-checkconf command. > > My version of bind is 9.11 Oh, it seems you need 9.12. Your other option is to parse a zone list out of your other config files with a bit of perl, which is what I did previously. Tony. --

Re: forwarder selection logic by bind9

2018-11-13 Thread József Lázár
Ok, I see. However, could you please specify this "time to time" period? Does it depends of the dns traffic which the bind receives? I've tried the following scenario: Configured two dns forwarders, both of them worked at the beginning. After one minute I turned off the first dns forwarder and

Re: Common zone file, on multiple views

2018-11-13 Thread Sabri MJAHED (VINC)
Hi Tony, I dont have the -l option on the named-checkconf command. My version of bind is 9.11 Sabri. On 12/11/2018 13:09, Tony Finch wrote: Sabri MJAHED (VINC) wrote: I want to have the same zone on multiple views, but i didn't find any solution that ease the use of this. I have scripts