/
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing
and may be unlawful.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
:
While you can legally have multiple reverse entries for the IP, it's not
generally necessary or recommended. Pick one of the names and use that
in the reverse entry.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group
, they also have options
like allow-recursion. What sense would it make to fall through to the
next matching view -- which set of options would you use?
If you want a zone to be in multiple views, list it in all of them.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me
?
Do you mean that both foo.dataprom.com and bar.someotherdomain.com both
resolve to the same IP? That's not a problem.
While you can legally have multiple reverse entries for the IP, it's not
generally necessary or recommended. Pick one of the names and use that
in the reverse entry.
--
Barry
. They are running different versions also, one is 9.4.2 and one is
9.7.0-P1. The /etc/resolv.conf file is:
search ibg
options rotate
options ndots:3
nameserver 131.210.30.200
nameserver 131.210.30.201
nameserver 131.210.30.202
nameserver 131.210.30.203
Thanks
--
Barry Margolin, bar
interface. The queue
for the IP used by most clients could fill up, but there would still be
plenty of room in the queue for other IPs.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group
, a stupid resolver that doesn't know
about DNSSEC won't set it. Someone has to go out of their way to
request this behavior.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind
://lists.isc.org/mailman/listinfo/bind-users
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind
://lists.isc.org/mailman/listinfo/bind-users
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo
. Then when the request turns out to be a zone
transfer it further checks it against the allow-transfer option.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing
transfer for 5 hours later.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
header. It should either be the
router's hostname (if it has one) or the router's IP.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users
In article mailman.342.1281936543.15649.bind-us...@lists.isc.org,
Shiva Raman raman.shi...@gmail.com wrote:
Hi All
Which is the best method to measure dns latency ? Is there any scripts /
programs
available to measure the dns latency directly?
Google Namebench.
--
Barry Margolin, bar
records in the parent zone when the nameservers are in the
zone they're hosting. If you have:
angryserver.net. IN NS dns.angryserver.net.
and the A record for dns.angryserver.net expires, the nameserver can no
longer be resolved.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
might provide recursive
DNS for him (because of any reason).
Did you notice that the requests are in alphabetical order? That's a
strong indication that this is some kind of scan going on.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them
the masters, and perform
a zone transfer from any of them that have a higher serial than the one
you already have.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users
In article mailman.83.1279918361.15649.bind-us...@lists.isc.org,
Peter Laws pl...@ou.edu wrote:
On 07/22/10 19:57, Barry Margolin wrote:
In articlemailman.65.1279835965.15649.bind-us...@lists.isc.org,
Peter Lawspl...@ou.edu wrote:
I have multiple interfaces on my master and multiple
getting updates, but the second one
does and has a higher serial number? Don't you want the slaves to check
the SOA record on it to pick up these changes?
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group
seem like that would be
specific to recursive queries.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org
that the other view
uses the same file -- files are only read when named reloads (when it
starts up or you do rndc reload).
The other view will eventually update when the SOA Refresh timer expires.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them
#59808
This error appears because your master sends notify from external.ip, which
isn't listed in masters {}; statement.
This can be resolved by putting a notify-source option in the master's
named.conf.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me
resolver to send the TSIG key? Is there an
option in resolv.conf for this?
I suppose you can run a local BIND, and configure it with forwarders and
tsig-keys. But if you run a local BIND, why would you need to use
another server, it can do the whole lookup itself.
--
Barry Margolin, bar
for the domain report errors.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind
line.
Is it sending out any queries at all?
If not, my guess is that it's checking the Windows DNS cache first.
Does it work as expected if you do
ipconfig /flushdns
before nslookup?
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them
worrying about labeling your home phone with someone else's
number. That won't cause you to start getting their phone calls.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind
and updates the addresses
that it listens on to match. You can control this frequency with the
interface-interval configuration option.
Maybe there's also an rndc command that will cause it to re-scan.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll
safely get rid of them. With all your internal
resolvers running as stealth slaves for your zones, you don't need
published slaves. NS records are only used by recursive servers.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them
-checkzone report
the non-glue A record as an error. Is this expected?
(This is just curiosity - obviously it's a bad idea to populate zones
like this!)
Are you sure you have the trailing dot on that record?
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies
whay Im doing
wrong?
Thanks,
Jason
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
--
Sent from my mobile device
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
to resolv their DNS info.
That's why there are slaves.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman
records don't distinguish between masters and slaves.
But it would be a good idea to remove a server from delegation if it's
not going to respond.
On 06/05/10 11:19 PM, Barry Margolin wrote:
In articlemailman.1415.1273200624.21153.bind-us...@lists.isc.org,
Bruce Raybruce@zionsbancorp.com
ready to do violence on their behalf -- George Orwell
The price of freedom is eternal vigilance. -- Thomas Jefferson
The best we can hope for concerning the people at large is that they
be properly armed. --Alexander Hamilton
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE
. I am trying to
find that magic number in which the failures start to occur, but the
daemon takes about 15-20 minutes for a restart. I will post that once
obtained.
might be a memory problem.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll
or
whoami.akamai.net. The nameservers for these names return the
resolver's IP as the IP of the hostname.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing
In article mailman.1259.1272073959.21153.bind-us...@lists.isc.org,
Mark Hedges hed...@scriptdolphin.com wrote:
On Wed, 21 Apr 2010, Barry Margolin wrote:
The scenario is a farm of sendmail + RBL servers that
have independent management and databases, but a single
bind server
.
Those were better outcomes, it seemed, than response timed
out when rfc1912.zones was lumped into views of the
internal network and vpn domains, which have recursion for
looking up external names.
Mark
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll
of A-records for static1.domain.com and static2.domain.com since they will
be used in the same web-page.
I suspect most caching servers will ignore these unnecessary additional
records, so it won't have the benefit you hope for.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE
lookup of the server IP, so that it can
report the name of the server it's using.
But if there's only one server, it will apparently use it regardless of
the error.
If you're trying to troubleshoot DNS, you really should use dig rather
than nslookup.
--
Barry Margolin, bar...@alum.mit.edu
that the aggregated queries from an ISP would trigger it. They've
presumably looked at their actual hit rates, and 300K lookups/day
probably allows plenty of breathing room.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group
their servers configured as authoritative for all the
zones they host, so that they can use them as hot spares for each other.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind
In article mailman.1074.1270505464.21153.bind-us...@lists.isc.org,
Kevin Darcy k...@chrysler.com wrote:
On 4/4/2010 3:33 PM, Barry Margolin wrote:
In articlemailman.1058.1270395730.21153.bind-us...@lists.isc.org,
Kevin Darcyk...@chrysler.com wrote:
On 4/1/2010 9:19 PM, Barry
.
It's really not the job of a load balancer or server to force clients to
use good security practices.
I suspect this is actually a bug, but the vendor is using the security
value of it as an excuse to lower its priority.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me
a
chicken-and-egg problem.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
that contain sequential numbers in them.
What does it being a legacy system have to do with it? It's running a
recent version of BIND, that's all that matters for this.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group
ALL master servers for new data?
It checks them all. If any has a higher serial number than the one
that's loaded, it performs a zone transfer from it.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group
) is
the apex.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
of continuation option.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
like the most obvious place to start...
If you create a type forward zone with an empty forwarders list, that
will override the global forwarders, and it will follow the NS records
that it got from the delegation records.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy
, but
it appears to be current (well last major update seems to have been
Dec 08).
Even if you did, one of the first things BIND does when it starts up is
query a root server to get the current root server list, and this is
used instead of the hints.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
In article mailman.669.1267394240.21153.bind-us...@lists.isc.org,
Tory M Blue tmb...@gmail.com wrote:
On Sun, Feb 28, 2010 at 8:36 AM, Barry Margolin bar...@alum.mit.edu wrote:
In article mailman.666.1267335206.21153.bind-us...@lists.isc.org,
ÝTory M Blue tmb...@gmail.com wrote:
I've
In article mailman.671.1267407068.21153.bind-us...@lists.isc.org,
Tory M Blue tmb...@gmail.com wrote:
On Sun, Feb 28, 2010 at 4:16 PM, Barry Margolin bar...@alum.mit.edu wrote:
There are probably at least a half dozen queries that occur in
performing that command. Which of these resulted
allow-query {any;}; within all the zone stanzas. That will just
allow public queries for those zones, not for recursive or cached data.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group
is going
on here - can anyone offer me some advice?
Did it get a response to the first query? If not, the second one is
simply retrying because it timed out waiting for a response.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group
a caching server.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
In article mailman.494.1266688491.21153.bind-us...@lists.isc.org,
Daniel Morgan daniel.mor...@riotm.co.uk wrote:
On Sat, 2010-02-20 at 11:38 -0500, Barry Margolin wrote:
In article mailman.486.1266649694.21153.bind-us...@lists.isc.org,
Daniel Morgan daniel.mor...@riotm.co.uk wrote:
I
ideas? Thanks!!
Is that log on the recursive nameserver or the authoritative nameserver?
If it's on the recursive server, is the client in the allow-recursion
ACL on the server?
If it's on the authoritative server, is the recursive server in the
allow-query ACL?
--
Barry Margolin, bar
then if recursion != no
then allow-query-cache = allow-query
else allow-query-cache = none
else allow-query-cache = (localnets; localhost;)
I hope I translated it right -- the clause about allow-query and
recursion is confusing.
--
Barry Margolin, bar...@alum.mit.edu
of their reverse zone to
0/24.188.134.63.in-addr.arpa.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org
think it's for backwards compatibility with the old BIND 4.x blackhole
option. I don't think 4.x had anything analogous to the bogus server
option, all you could do was blackhole individual IPs in both directions.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me
-- they mustn't point to aliases. CNAME chains
are the exception to this rule.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users
In article mailman.1159.1259764844.14796.bind-us...@lists.isc.org,
Dmitry Rybin kirg...@corbina.net wrote:
Hello!
I can't find in docs how disable answer (Refused), if recursion for IP
is not allowed?
What do you expect it to do instead? Not respond at all?
--
Barry Margolin, bar
that he's the MX for
everything.
The other suggestion, to program the router to redirect port 25 to his
SMTP proxy, seems to be the better way to go. BIND doesn't have any
type-specific wildcards, so doing this in DNS would require a customized
server.
--
Barry Margolin, bar...@alum.mit.edu
().
But it doesn't seem like this would be much help in troubleshooting,
because when it gets an error you won't be able to tell why. There's no
way for it to indicate that the error is because it was stuck on the
third server.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't
In article mailman.966.1257988033.14796.bind-us...@lists.isc.org,
Stephane Bortzmeyer bortzme...@nic.fr wrote:
On Wed, Nov 11, 2009 at 07:44:05PM -0500,
Barry Margolin bar...@alum.mit.edu wrote
a message of 27 lines which said:
I'm not sure if there is one, but it should be pretty easy
.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
. So you need to have the /24 view before the /16 view.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org
, and the A records for the nameservers.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind
for every registry change. It's quite a
racket.
You don't have to change all the domain registrations. You just have to
change the A records of the nameserver names. Hopefully you haven't
done something silly like use different nameserver names for each domain.
--
Barry Margolin, bar
.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
In article mailman.696.1255498841.14796.bind-us...@lists.isc.org,
Robert Moskowitz r...@htt-consult.com wrote:
Barry Margolin wrote:
In article mailman.693.1255466849.14796.bind-us...@lists.isc.org,
Robert Moskowitz r...@htt-consult.com wrote:
I have been running BIND here on my
for the name. So if you have a
delegation record, that's what you'll see -- it won't go and fetch the
other records.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind
will have to submit a bug.
I don't get it. I thought things worked correctly when you queried the
DNS server for home.htt, and the problem was only when you queried the
htt server.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them
nameservers.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
with BIND, but I am not all
that skilled...
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman
asks this server
with RD flag set, the answer will be venemous.
Nameservers should only set the RD flag in the queries they send if
they're configured to use forwarders. It should never be sent when
they're following the delegation chain themselves.
--
Barry Margolin, bar...@alum.mit.edu
errors on
PA not IA system?
Use ldd on the named binary to see what libraries it depends on, and
make sure all of them are in chroot/usr/lib.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group
.
Since you haven't mentioned how many zones and records you're hosting,
how do you expect anyone to guess how much hardware you need?
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group
me he has 59 forward and reverse records in
the internal view, and 22 of each in the external view.
This is nothing. A 10-year-old Pentium should be able to handle this
without breaking a sweat.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read
identified from some form of logging software?
BIND logs hit statistics periodically to syslog, and you can use rndc
stats to append statistics immediately to a file. See the BIND manual
for details.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies
Don't feel stupid. Older versions of BIND queried for the root servers
even with this option set.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
In article mailman.369.1251129971.14796.bind-us...@lists.isc.org,
Sam Wilson sam.wil...@ed.ac.uk wrote:
In article mailman.366.1250954533.14796.bind-us...@lists.isc.org,
Barry Margolin bar...@alum.mit.edu wrote:
It looks like there are two mail-to-news gateways running for
bind-users
force traffic to go through
that NIC. The choice of interface is almost always based on the
destination address, not the source address. And even if the OS
provides a way to force traffic through a particular interface, I don't
think BIND will use it.
--
Barry Margolin, bar...@alum.mit.edu
server is
authoritative for.
Allow-recursion allows them to request recursion, which is needed to
look up names in remote zones.
Allow-query-cache allows them to query the data that's in the cache due
to some client previously requesting recursion.
--
Barry Margolin, bar...@alum.mit.edu
does exactly what he wants, what would be the point
of dig +trace?
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https
.
;; ADDITIONAL SECTION:
dns1.gdpu.cn. 21600 IN A 219.136.229.41
dns2.gdpu.cn. 21600 IN A 219.136.229.42
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group
was sent too late, and the client had
already closed the port. One of the subtypes of host unreachable is
used for UDP port unreachable.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group
).
If the registry is testing for compliant servers then a failed TCP query
should flag the server as non-working, as would a failed UDP query.
DNS servers MUST support UDP, and only SHOULD support TCP. So a failed
TCP query should not flag the server as non-working.
--
Barry Margolin, bar...@alum.mit.edu
to querie the forward domain name server. The problem is that the
queries do not timeout and named hangs there:
I recall a thread about a similar problem a year or two ago, I suggest
you search the comp.protocols.dns.bind archives in Google Groups.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
In article gtb6g9$bm...@sf1.isc.org,
Scott Haneda talkli...@newgeo.com wrote:
On Apr 29, 2009, at 5:03 PM, Barry Margolin wrote:
In article gtamqt$1k...@sf1.isc.org,
Scott Haneda talkli...@newgeo.com wrote:
like my machine, .14 is refusing their refresh request. Do I need
some other lookup services, however (like samspade.org), the old
IP address shows up for much longer...like it's caching it and ignoring the
TTL for the record. Should I expect that behavior?
No. Maybe the web site itself is caching. Try querying your ISP's DNS.
--
Barry Margolin, bar
with the notify, it shouldn't take much longer
than the refresh time in the SOA record. I recommend setting this to
something in the neighborhood of an hour, so that there isn't too much
of a lag if the notify is lost.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me
; };
};
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
recursion. The parent zone will include
this A record.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org
In article grq70j$24c...@sf1.isc.org,
Jeff Pang hostmas...@duxieweb.com wrote:
what's the correct way to set up a slave for a named master which has
multi-views?
If the slave also needs to support multiple views, TSIG keys is probably
the best way to have it transfer all of them.
--
Barry
fine.
Since we couldn't pinpoint the cause, the problem went on for about 5
hours and then magically fixed itself... we were all left scratching our
heads.
Both those domains use CNAME chains that go through akadns.net. Was
this common to all the domains you had problems with?
--
Barry
the global options.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
when checking whether they need to perform a zone transfer from
the master.
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
MUST be tried first for everything other than zone
transfers, and TCP is only used as a fallback if the response is
truncated. And the reasons for truncation have been obviated by EDNS0,
so the general expectation is that there should be LESS use of TCP these
days.
--
Barry Margolin, bar
In article gq155c$1n3...@sf1.isc.org,
Ronan Flood use...@umbral.org.uk wrote:
Barry Margolin bar...@alum.mit.edu wrote:
This suggests one of the following problems:
1. 95.102.17.107 is pointing to your nameserver in its resolver
configuration, but your server doesn't allow them
301 - 400 of 431 matches
Mail list logo
