On Thursday, 2 December 2021 10:59:17 CST Fred Morris wrote:
> And I have one small favor to ask: if you know of a Linux distribution
> which ships BIND compiled with Dnstap support, please let me know!
>
The Linux packages that ISC provide[1] all have dnstap enabled. Also, the
FreeBSD BIND port
On Wednesday, 14 April 2021 15:00:38 CDT Bob Harold wrote:
> Does anyone have an automated KSK roll process, that checks for the DS
> record at the parent, that they can share?
>
> As far as I can tell, the automated signing in BIND will roll the KSK if I
> set the timing in the policy file, but
On Monday, 12 April 2021 01:18:11 CDT @lbutlr via bind-users wrote:
> Doe anyone know the syntax for using purge-keys in 9.16.13? I've search and
> all I can find is notes that it was added. I've tried a couple of things, but
> I am shooting in the dark. I cannot redefine the "default" policy as
On Monday, 7 September 2020 17:46:47 CDT L. A. Walsh wrote:
>
> I am having some queries that I wouldn't think I'd have:
>
> I have a split-view ipv4-only named 9.11.2 server that is run with the
> "-4" switch, yet I see attempted queries in my queries log. I have it
> set as authoritative for
On Friday, 17 April 2020 08:45:16 CDT Steinar Haug wrote:
> We have what appears to be a significant memory leak in BIND-9.16.1.
>
> Environment:
> FreeBSD 12.1-STABLE.
> BIND-9.16.1 installed from packages.
> Also uses libuv-1.35.0 installed from packages.
> Authoritative only.
> Around 800
On Friday, 8 May 2020 16:27:35 CDT Søren Andersen wrote:
> I'm glad what I'm not the only one having this issue. Currently i've not
> more information that are not already mention in this mail thread.
>
> But do you have a link to the ticket you have created?
>
On Monday, 27 April 2020 03:59:39 CDT Søren Andersen wrote:
> I'm running a few BIND servers, but lately one of my servers suddenly starts
> responding to clients with servfail for every request from the clients, and
> BIND doesn't respond to the rndc or statistics interface anymore.
>
> My logs
53>. I'm not aware of a
libuv fix for Linux yet.
Running both FreeBSD _and_ Linux is a good idea. Among other things, it's an
excellent way to provide maximum availability for DNS.
--
Greg Rivers
___
Please visit https://lists.isc.org/mailma
On Sunday, May 26, 2019 11:51:38 AM CDT Axel Rau wrote:
>
> > Am 26.05.2019 um 18:38 schrieb Rick Dicaire :
>
> > A quick google search of "bind also-notify key" returns:
> >
> > https://kb.isc.org/docs/aa-00851
> > https://kb.isc.org/docs/aa-00296
> >
> > Looks like keys provide a means to
gt; No chance to get an log entry per server and the TSIG key in use.
>
As Rick Dicaire said previously, "Notifications themselves don't use TSIG". You
will never see a TSIG key associated with a notify because notifies aren't
signed; the zone transfers tri
On Wednesday, May 8, 2019 1:49:38 PM CDT Matthew Richardson wrote:
> I have been using the isc-bind-esv repository on Centos 7 since it was
> created. On each upgrade, a "yum update" has done the correct thing by
> upgrading from the running version to the latest version.
>
> Today (happily on a
supports multi-master across multiple disparate primaries with their "xDNS"
plugin. But I wouldn't say that multi-master is a good idea in general, as it
suffers from all of the problems that come with having multiple versions of the
truth.
[1] <https://www.menandmice.com/prod
(0)TDK
98 +E(0)TDC
19 +E(0)D
18 +E(0)K
8 -E(0)TC
3 +E(0)T
54353539
FWIW, this indicates that most TCP queries come from clients that claim to
support EDNS0.
--
Greg Rivers
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users t
On Thursday, August 02, 2018 22:12:38 Reindl Harald wrote:
>
> Am 02.08.2018 um 22:07 schrieb Randy Bush:
> >>> ... are there that many folk doing tcp out there?
> >> All name servers fall back to TCP when they receive truncated replies.
> >
> > we know the protocol. [ and we know folk have
On Thursday, August 02, 2018 12:58:32 Randy Bush wrote:
> ... are there that many folk doing tcp out there?
>
All name servers fall back to TCP when they receive truncated replies.
--
Greg Rivers
___
Please visit https://lists.isc.org/mailman/li
be that we
misunderstood the wording of your question. If your actual question was "can I
publish a public IP in DNS and NAT it to a private IP behind my firewall", then
of course the answer is "yes". Otherwise, trust the given advi
via hostname, if I did a nat on
> the firewall?
>
No, by definition, private addresses are not routable on the Internet.
--
Greg Rivers
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users maili
xpiring, were other requests
> being rejected due to the two nameservers for that zone being
> unreachable?
>
No. You should find the zone expiration event in your logs.
--
Greg Rivers
___
Please visit https://lists.isc.org/mailman/listinfo/bi
many pieces of software, this list comes built into the
software.". As I recall, this is true for BIND.
--
Greg Rivers
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lis
;
masters { xxx.xxx.xxx.xxx; yyy.yyy.yyy.yyy; }; };
zone "31.172.in-addr.arpa" { type stub; file "/etc/namedb/slave/172.31.db";
masters { xxx.xxx.xxx.xxx; yyy.yyy.yyy.yyy; }; };
zone "168.192.in-addr.arpa" { type stub; file "/etc/namedb/slave/192.168.db&qu
20 matches
Mail list logo