--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Honk if you love peace and quiet.
--
Visit https://lists.isc.org/mailman/listinfo/
missed?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
The early bird may get the worm, but the second mouse gets the cheese.
--
Visit
.example.com.
Simply, wildcarding is not for case like this.
-Message d'origine-
De : bind-users De la part de Matus UHLAR -
fantomas
Envoyé : mardi 14 mai 2024 15:58
À : bind-users@lists.isc.org
Objet : Re: SRV on multiple subdomains
On 14.05.24 13:08, DEMBLANS Mathieu wrote:
I have
in a doc that the < * > can only be the leftmost label in the name.
correct.
Is there an other way to simplify or does I have to add each entry individually?
no, but the question is if you really need this.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning:
6.157;};
also-notify {192.168.56.157;};
notify explicit;"
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
"One World. One Web. One Pro
e
authorized domain server?
I have looked onto it manually, so far found nothing.
rndc dumpdb could generate named output where you should be able to find out
the culprit.
the difference between current version of zone between ns1.gov.sk and
ns2.gov.sk could affectg this problem.
--
Matus
ervice are we
using - if there are multiple IP's for _anything_, return topologically
closer first.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu pos
m clueless what is going wrong. Any help is greatly appreciated
your nameserver does not update secondary(slave) zones, therefore
allow-update does not make sense.
you should remove it or replace with allow-update-forwarding so all received
updates are forwarded to primary(master) server.
--
M
think this is question for webmin/virtualmin, but from what I know about
webmin it tends to edit local configuration, so I guess it will edit primary
zone file.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising
ne I described above a long time ago.
Perhaps after BIND 9.8
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Support bacteria - they're t
, you can't
use multiple servers as the zones are often not in sync.
I would either create hidden primary that would process dynamic updates.
For DNSSEC and inline signing, hidden primary looks as best option to me.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning
the wildcard
entry is there. But Google and other major DNS providers return the
non-wildcard value as expected.
Please provide concrete example, I can't query fun.test.test.me. nor
test.test.me.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive
wise, you can set up multiple views with different versions of the same
zone, configured to provide different verision according to source IP.
This is much harder to set up.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail adverti
On 27.06.23 16:22, sami.ra...@sofrecom.com wrote:
Hello In DNS benchmarking which is more important latency or response
time? for a DNS server what is the difference between the two values?
I don't see any difference between those two.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http
nterface (unless you also configure SNAT for those
packets), so they are not exactly the same.
In some cases you may need both.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDO
the internet
sources fall into your internal view, not into this one.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Silvester Stallone: Father of the RI
The host resolves fine on my bind-9.16.38 system using the exact same
configuration, as well as most or all public resolvers.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem
they can have separate cache.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Your mouse has moved. Windows NT will now restart for changes
On 3/28/23 11:28 AM, Matus UHLAR - fantomas wrote:
Yes, this is one of the problem "authoritative zones for local use".
On 28.03.23 12:18, Grant Taylor via bind-users wrote:
Authorizing the /zone/ for local use wasn't the problem. The problem
was that the world could get some of t
On 3/28/23 10:48 AM, Matus UHLAR - fantomas wrote:
If your server has authroritative zones for internal use, yes, in
such case allow-query is good idea.
On 28.03.23 11:02, Grant Taylor via bind-users wrote:
The server that I first set this on had a secondary copy of the root
zone for my
On 3/28/23 6:30 AM, Matus UHLAR - fantomas wrote:
Great, this means that only clients with those IP addresses can
query your server for non-local information.
On 28.03.23 10:16, Grant Taylor via bind-users wrote:
I used to think the same thing.
Then I learned that I needed to also add
your server for non-local information.
So, your server should NOT be part of Amplification attack.
(unless you run VERY OLD version of BIND)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto
On 28.03.23 16:04, Nyamkhand Buluukhuu wrote:
No, I have an access list that allows only our ISP zones.
zones? access lists are meant to limit clients.
how do your access limits look like?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e
in BIND 9.18.
On 23. 3. 2023, at 17:57, Matus UHLAR - fantomas wrote:
what's the reason? Code cleanliness?
Or is it problematic to maintain?
On 23.03.23 19:11, Ondřej Surý wrote:
Those are wrong questions to ask - the right question to ask is whether this
bring any
value - and the answer
the use
case
here or in the issue mention below.
well, if "just for sure no other AH tries that again" is not a reason for
you...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na t
re that only the DSCP flags are deprecated, not all *source and
*forwardes etc options themselves?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu post
*******
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this software with paid support subscriptions.
Contact us at https://www.isc.org/contact/ for more information.
bind-users
) and dns2.di.ubi.pt
(193.136.66.2) aren't reachable from internet.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Linux IS user friendly,
On 7. 11. 2022, at 16:19, Matus UHLAR - fantomas wrote:
while it's doable, and with using BIND plugin at generating server it
won't need much of memory, any server that will be repeatedly asked to
resolve IPs from that range will fill its cache with generated records.
On 07.11.22 16:28
On 7. 11. 2022, at 15:50, Matus UHLAR - fantomas wrote:
sooner or later, but filling up cache with garbage could result in other
non-garbage records being flushed out.
Are there any mechanisms that would wipe this garbage before other records,
used more often even if not very recently
On 28. 10. 22 9:29, Matus UHLAR - fantomas wrote:
this request for ipv4 too.
I really don't think making generic named for ipv6 addresses
within range
bigger then e.g. /112 (64Ki addresses) makes any sense.
prehaps it may for small subsets of IP addresses
/64 is 18446744073709551616
On 28. 10. 22 9:29, Matus UHLAR - fantomas wrote:
this request for ipv4 too.
I really don't think making generic named for ipv6 addresses within
range bigger then e.g. /112 (64Ki addresses) makes any sense.
prehaps it may for small subsets of IP addresses
/64 is 18446744073709551616
they put in the
sub-zone, so it's not the ISP leaking client identifying information.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu
On 11/6/22 6:39 AM, Matus UHLAR - fantomas wrote:
3. allow your servers to to fetch 66.136.193.in-addr.arpa.
On 06.11.22 20:05, Grant Taylor via bind-users wrote:
Is this 3rd step documented somewhere?
I searched for it in RFC 2317 but didn't find it. Maybe I over looked it.
This step
transfer of the child zone. But I don't see any mention
of the child doing a secondary zone transfer of the parent zone.
I think that would be a good idea.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
connection is
available?
if they are properly configured, yes.
What could I be missing?
can you provide an example of an IP and configured reverse zone, and the
zone file?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail a
why this behaviour is seen on BIND 9.16.* version.
perhaps there's an error in your zone 22.10.13.in-addr.arpa.
and named did not load it.
try executing "rndc reload" and see what named logs tell you
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish
line in the end
$GENERATE 1-255 $ IN PTR 10-11-11-$.example.com.
Dont forget to Reload bind config & you are done.
On 27.10.22 07:58, Marco wrote:
How is the syntax for IPv6?
Is it possible to do it for an entire /64?
On 27. 10. 2022, at 10:12, Matus UHLAR - fantomas wrote:
this woul
for IPv6?
the syntax for $GENERATE is the same, just the records are different.
Is it possible to do it for an entire /64?
this would create HUGE amount of records, they wouldn't fit into memory.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receiv
oesn't prevent
returning cached record.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Nothing is fool-proof to a talented fool.
--
Visit
will contain internal zones.
you can achieve the same effect with views, no other DNS servers are
necessary
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT
d my faith in geekdom.
If anyone is still confused, I'd be glad to discuss this offline until
we have a final solution. Then we can publish if necessary.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovani
.
#truth
On 10/15/22 10:34 AM, Matus UHLAR - fantomas wrote:
forward zones - named sends recursive query to the primary servers
stub zones- named fetches NS records from primary servers
and uses them for resolution
static-stub zones - named forwards iterative (non-recursive)
requests
ain from
that wisdom and we can provide a kind environment where those less educated
feel mentored.
that's why we are here.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu ch
of features such as RPZ, etc.
do you need RPZ for internal zones?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
LSD will make your ECS
, I set my opendmarc.conf:
DomainWhitelist lists.isc.org
so we'll see next time mail comes.
On 25.08.22 18:10, Alessandro Vesely wrote:
Please tell us.
On Fri 02/Sep/2022 14:27:55 +0200 Matus UHLAR - fantomas wrote:
so far, not ex
- opendmarc only uses header that's inserted by openarc
On 25.08.22 18:10, Alessandro Vesely wrote:
The lack of interest by others proves that From: munging is not so
much of a nuisance as they say...
On Mon 29/Aug/2022 12:09:10 +0200 Matus UHLAR - fantomas wrote:
This will come sooner or later, however:
earlier this year I've done small dmarc
by isc.org?
I guess most of recipients use predefined configurations, e.g. no
whitelisting.
out of curiousity, I set my opendmarc.conf:
DomainWhitelist lists.isc.org
so we'll see next time mail comes.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish
ce.html#namedconf-statement-minimal-responses
yes: the server only adds records to the authority and additional sections
when such records are required by the DNS protocol (for example, when
returning delegations or negative responses). This provides the best server
performance but may result in mor
relay.company.com has no A record
% host -t relay.company.com
relay.company.com has no record
you must add a host that does exist.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto ad
I believe this is what Borja mentioned:
https://lists.isc.org/pipermail/bind-users/2022-June/106338.html
https://lists.isc.org/pipermail/bind-users/2022-June/106339.html
(thanks).
so there are some delegations that SOMETIMES cause long delays in
resolution.
--
Matus UHLAR - fantomas, uh
#53(ns3lux.europa.eu) in 15 ms
www.ecb.europa.eu. 300 IN CNAME www-ecb-europa-eu.ax4z.com.
;; Received 86 bytes from 156.154.65.109#53(pdns109.ultradns.net) in 11 ms
real0m5.117s
user0m0.011s
sys 0m0.035s
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning
signature
found
May 12 19:24:06 OpenWrt named[11061]: no valid RRSIG resolving 'com/DS/IN':
66.232.64.10#53
doesn't your ISP block or intercept DNS queries?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
700MB of DNS traffic for 2GB
of Internet browsing within one month.
On 09.05.22 10:47, Petr Špaček wrote:
Sounds like either:
- Broken caching or,
- Random subdomain attack
to me.
maybe someone uses VPN over DNS...
in such case, rate limiting of client comes to mind...
--
Matus UHLAR - fantomas
st and also got customer
ticket with the same problem.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
"Where do you want to go to die?&q
ranges)
However, when i reload rdnc and tail the syslogs all i get is "(.xx.com):
query (cache) '.xx.com/A/IN' denied"
does your server provide domain xx.com?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail a
data (authoritative and / or cache),
then it's recursion setting comes into play.
If I'm mistaken, please correct me.
you are right, forwarding queries requires recursion.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail
yet do EDE itself, I am hoping for an option
in BIND to just blindly copy whatever EDNS options it receives to it's
client.
no, bind uses edns as it needs, not as client asks it to. communication with
clients is independent from communication with servers
--
Matus UHLAR - fantomas, uh
CNAME wildcard.example.com.
cc.aa.example.com. CNAME wildcard.example.com.
etc.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
LSD will make you
in may and june
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Saving Private Ryan...
Private Ryan exists. Overwrite? (Y/N)
--
Visit https
On 26 Jan 2022, at 17.14, Matus UHLAR - fantomas wrote:
Altering the body or headers at all (whch lists do) will often break the
hashing. For this reason, most recent versions of mailman have an option
to rewrite your mail from:
On 26.01.22 17:30, Sten Carlsen wrote:
When the dkim is set
one was signed by mailman because of his domains' restrictive
policy.
I missed this part before.
I've argued that it should be possible to do so for *any* dmarc policy,
even p=none, but that option is not present in mailman 3, at least.
I agree.
spam filter is something that can use
or 5.6.7.8
So my question is: Is it possible to configure what I am trying to do?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu post
/IN':
192.33.4.12#53
13-Jan-2022 14:28:09.938 resolver: info: resolver priming query complete
So ... could this be Comcast munging about in the DNS traffic?
looks like exactly it.
Other suggestions
of where to look appreciated as well ...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http
g servers.
then, you should understand the need for separation of roles well.
just the "recursive only" and "authoritative only" have a bit different
meaning I tried to explain above.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to r
.
what's the reason for specifying source port for zone transfers?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
There's a long-standing bug
Druba wrote:
What can be wrong here? How I can more localize the problem?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
42.7 percent
nameservers for root domain information.
Note I haven't done anything yet; I'm asking if there _is_ a way to do it
presently implemented in Bind.
none I know so far.
I'd be glad if someone told me there's better way and what it is.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas
On 13.12.21 08:18, John Thurston wrote:
If you update your resolver to 9.16, I think you can do exactly what
you want with the "validate-execpt" option.
{rolls eyes} been there. done that. for exactly the same reason :/
On 14.12.21 16:58, Matus UHLAR - fantomas wrote:
thanks, this
into validate-except {}.
This should not be a problem since .local is reserved.
I guess .local should have negative trust anchor in root zone.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie:
quot;?
I have tried to create empty "local" domain but then I only received empty
responses for any requests.
(I know .local is for mdns, but I can't do anything with that).
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail adverti
this to happen, and just opting to use the SOA
>TTL value (and not the SOA.minimum value if they disagree)?
On Fri, Oct 22, 2021 at 10:29 AM Matus UHLAR - fantomas
wrote:
are you authoritative server for azure.mongodb.net?
if not, BIND will use cache time that came from authoritative serv
(and not the SOA.minimum value if they disagree)?
are you authoritative server for azure.mongodb.net?
if not, BIND will use cache time that came from authoritative server adn
won't parse the SOA itself.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e
always, sometime it forward it in
round robin way.
bind keeps track of servers that responds fastest and periodically rechecks
the rest.
it's called SRTT algorithm, web search should give some explanations.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish
is not of any relevance.
what exactly is your goal?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
REALITY.SYS corrupted. Press any key to reboot
oritative server.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I intend to live forever - so fa
t help, and wouldn't need protocol
change at all, but the problem above is crucial (what would you do in case
of failure? refuse whole zone?)
and hence would work for
every client/resolver as client/resolver never sees the ANAME but only the
A/ record.
--
Matus UHLAR - fantomas, uh...@fanto
xxx.xxx.52; dhbex1
mail2m IN A xxx.xxx.xxx.54; dhbex2
would be incorrect and server will choose one of those to implement for all
RRs (see rfc 2182 section 5.2)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail a
, no reverse
lookup.
if your ISP provides reverse lookup, you don't need reverse zone file at
all.
Any thoughts are much appreciated.
what is your question?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
and fails.
Most probably it's the "ns1" and "ns2" in zone end with "." which means that
current $ORIGIN (apparently keiththewebguy.com) is not appended to them.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-ma
p!!
it's apparently down again.
some registrars provide you with their own nameservers that don't go down,
why don't you use those?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem
by default.
Is there anything in logs?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
42.7 percent of all statistics are made up o
eleIJQhn3E/1CGApoSTxJTaw==
couldn't get address for 'NS1.KEITHTHEWEBGUY.COM': failure
couldn't get address for 'ns2.KEITHTHEWEBGUY.COM': failure
dig: couldn't get address for 'NS1.KEITHTHEWEBGUY.COM': no more
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to rece
for 'm.root-servers.net': not found
None of the root servers can't be found. My root hint file is up to date.
Sorry, typed too quickly. Problem stands.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie
On 06.05.21 18:41, Axel Rau wrote:
This NS has some other clients in the DMZ LAN, so I need Views.
you need multiple views if you are going to provide multiple versions of the
same zones, different forwardings for different domains or alike.
Not just if you have other clients.
--
Matus UHLAR
30(490) (ttl 63, id 11754, len 518)
... exactly because of this reason.
Which named version do you run?
do you use views?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDO
from working correctly?
It's most probably the reason. Ask your ISP.
Or maybe I have
incorrectly configured something?
Can anyone help me figure out what exactly is the problem?
your ISP probably
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish
t to
another forwarder.
It's not possible.
the NXDOMAIN response means that the rquested domain definitely does not
exist, so there's no logical need to verify this from another source.
maybe if you explained us what you're trying to do, we could give you better
advice.
--
Matus UHLAR - fant
ame server ?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Eagles may soar, but weasels don't get sucked into j
to make this via rndc.
You'll have to generate named config per-client.
Updating config file frequently may affect other zones in this dns server.
I don't understand how/why it should affect other zones.
At 2021-04-15 15:08:26, "Matus UHLAR - fantomas" wrote:
On 15.04.21 15:35,
iew".
I don't think so, looks a bit too complicated.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Save the whales. C
am using is 9.11.2.x.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
It's now safe to throw off your computer.
__
forwarding from BIND to public nameservers.
El mié, 31 mar 2021 a las 13:48, Matus UHLAR - fantomas
() escribió:
On 31.03.21 13:07, Roberto Carna wrote:
>Dear Matus, maybe I have not understood very well...
>
>I can setup a master zone as you said:
>
>zone "www.google
l "if foo.google.com is not present in the google.com
private zone, you have to forward the query to another server (public
forwarder) in order to be publicly resolved" ???
that above will cover www.google.com and *.www.google.com
El mié, 31 mar 2021 a las 12:56, Matus UHLAR - fantomas
()
es, simply define zone
zone "www.google.com" {
type master;
file "...";
};
note that for this kind setup, using dnsmasq with two forwarders and
www.google.com
overriden through /etc/hosts would be easier solution.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://ww
explained the reason for the 9000ms so that Oracle and its many processes
all come together to resolve the DNS name and they *keep hitting* the first
resolver - and "timeout" can't kick in due to parallel requests from different
processes, hence the high overall response time.
--
Matus UHLAR
ost2.foo.lan if entry not present in /etc/bind/db.foo.lan
"file" is used in master and slave zones.
"forwarders" is used in "type forward" zones.
those are mutually-exclusice, so forwarders aren't used for master and
slave zones, while "file" is not used for &q
.
(there are measures if it's to be wrapped around zero).
what is your real problem?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Enter
useless here, since you posted this to public mailing list.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Remember half the peo
ote sites.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Linux IS user friendly, it's just selective who its frie
1 - 100 of 919 matches
Mail list logo