lf
Cc: "bind-users@lists.isc.org"
Sent: Wednesday, August 28, 2013 1:34 PM
Subject: Re: bind configuration/setup question
On Aug 28, 2013, at 1:29 PM, Alan Clegg wrote:
>
> I believe that what you are seeing is the result of BIND 9.9 doing more
> things "automatic
On Aug 28, 2013, at 1:29 PM, Alan Clegg wrote:
>
> I believe that what you are seeing is the result of BIND 9.9 doing more
> things "automatically", including bringing in a set of DNSSEC trust anchors
> (root and DLV) and not being able to create the file.
>
> You should be able to use the op
: 30: Read-only file system
>
> Is this error something to be worried about, or is it more of an info
> message? Also, is much even gained security wise by disallowing the OS to
> write to the dns data area?This particular error can be fixed by
> separating the dns data dire
options area),
the bind installation, and bind configuration file, named.conf. The dns zone
is on the internet routable public network, and has the dns data, bind
installation, and bind configuration file available to it in a read only file
system. Figured that since we have successfully run
In message <5201cce6.2040...@pacbell.net>, Eduardo Bonsi writes:
> Dear Noel and Mark,
>
> Thanks for your input!
>
> After thinking about the ipv6 network configuration pros and cons, I
> decided to go for the ULA for my internal network and use the /64
> creating static ips for my WAN. To ge
Dear Noel and Mark,
Thanks for your input!
After thinking about the ipv6 network configuration pros and cons, I
decided to go for the ULA for my internal network and use the /64
creating static ips for my WAN. To get a set of ULA addresses I logged to:
http://www.simpledns.com/private-ipv6.a
Mark,
I really did not mean things that way when I used the word "happy". Let
say that I am concerned with it and that means if anyone can express
their views towards being more secure with ipv6, I am sure to
considerate it. We probably diverge on opinions about exposing MAC
addresses as a pu
On Sun, 2013-08-04 at 13:28 -0700, Eduardo Bonsi wrote:
> Hello Everyone,
>
> I have some questions about ipV6 transition and DNS configuration!
>
> I am preparing to make my transition to a dual stack ipv4, ipv6 and I
> have some concerns in regards to the security of the network since ipv6
>
In message <51feb96d.3070...@pacbell.net>, Eduardo Bonsi writes:
> Hello Everyone,
>
> I have some questions about ipV6 transition and DNS configuration!
>
> I am preparing to make my transition to a dual stack ipv4, ipv6 and I
> have some concerns in regards to the security of the network sinc
Hello Everyone,
I have some questions about ipV6 transition and DNS configuration!
I am preparing to make my transition to a dual stack ipv4, ipv6 and I
have some concerns in regards to the security of the network since ipv6
do not have NAT. My ISP gave me a Global
2602:000:000:000:000:000:00
On May 9, 2013, at 8:44 AM, Carlos Martinez wrote:
> DNS is not the place to solve that problem, it's the routing layer.
Yes, but *sometimes* DNS is the right layer for this… For example, if you have
2 sites (so you can remain up when a meteor / flood / avalanche hits one), if
you need better
DNS is not the place to solve that problem, it's the routing layer.
"Use Bgp Luke " :-)
Sent from my iPad
On 08/05/2013, at 15:24, Sten Carlsen wrote:
> I believe your major point is the routing tables because they determine how
> the response is trying to get out.
>
>
> On 08/05/13 22:22,
bind-users-bounces+mward=ssfcu@lists.isc.org] On Behalf Of
wbr...@e1b.org
Sent: Thursday, May 09, 2013 7:17 AM
To: bind-users@lists.isc.org
Subject: Re: BIND Configuration
I don't know how it's done, I'm not a networking guru, but here we have 2
upstream providers and somehow
I don't know how it's done, I'm not a networking guru, but here we have 2
upstream providers and somehow we route out through both, and both can
route in to our /16 network. No messing with DNS changes depending on
which ISP is having problems,
As Clarke's third law states, "Any sufficiently
That's kind of how we do our DR...
I have things scripted so that every update to our zone, results two versions
of the zone file...the master server signs the first one and does its usual
notifies, then the master signs the second and its scp'd to secondaries in
another network.
In the event
I believe your major point is the routing tables because they determine
how the response is trying to get out.
On 08/05/13 22:22, Steven Carr wrote:
> You will need to have some form of automation in place to update the
> DNS zone to change the IP address which should now be accessed when
> one o
You will need to have some form of automation in place to update the
DNS zone to change the IP address which should now be accessed when
one of the links goes down. You will also need to ensure you have a
low TTL value on the records you want to update on link change so that
the records are refresh
Hello all, I was wondering if someone could me out.
I am using Bind 9.2 on a Redhat Linux server. We have two ISPS on separate
networks Lets call them A and B. My Linux Server can listen on A's Network as
well as B's network.
I'm using fictitious IPs and names
A 111.111.111.1
-Original Message-
From: Amira Othman
Date: Wednesday, May 23, 2012 3:56 AM
To:
Subject: Bind configuration and log error
>Hi all
>
>I have in my messages log file many lines as follows but with different
>domains unreachable what does this mean:
>
>named[15490]: n
-Original Message-
From: Matus UHLAR - fantomas
Date: Wednesday, May 23, 2012 4:04 AM
To:
Subject: Re: Bind configuration and log error
>On 23.05.12 12:56, Amira Othman wrote:
>>I have in my messages log file many lines as follows but with different
>>domains unreachable
On 23.05.12 12:56, Amira Othman wrote:
I have in my messages log file many lines as follows but with different
domains unreachable what does this mean:
named[15490]: network unreachable resolving 'platinum.cs.umanitoba.ca/A/IN'
also I can't dig or nslookup or ping my DNS server remotely what sh
Hi all
I have in my messages log file many lines as follows but with different
domains unreachable what does this mean:
named[15490]: network unreachable resolving 'platinum.cs.umanitoba.ca/A/IN'
also I can't dig or nslookup or ping my DNS server remotely what should I do
to enable that?
Regard
Use the full zone name in the zone definition.
zone "cairosource"
Regards
Eivind Olsen
Den 21. mai 2012 kl. 16:33 skrev "Amira Othman" :
> Hi all
>
> I have configured bind9 on centos 5.8 but I still can't nslookup my domain.
> Below are my configuration:
>
>
> Named.conf
>
> key "rndckey
Hi all
I have configured bind9 on centos 5.8 but I still can't nslookup my domain.
Below are my configuration:
Named.conf
key "rndckey" {
algorithm hmac-md5;
secret
"jQdcyY1HIkooWVB24Dr4uX5jrVcuZFNEJaGa9Q5e3otOjSrcMVGOwhACivlX";
};
options {
directory "/var/named";
pid-fi
Named really isn't designed to be a catch all server. It's designed
to serve the configured zones and only the configured zones. That
being said the later versions of named allow zones to be added via
rndc so the configuration effort required to add a new zone is much
lower.
e.g.
rndc a
Hello there,
I'm trying to configure BIND (BIND 9.7.3) as a "catchall" DNS server for a parking domain service. This is a way to let
users/clients park their domains automatically by pointing primary and secondary DNS servers there. It should work with ANY TLD
(both generic and countrycodes).
On 12/11/2009 00:32, Błażej Ślusarek wrote:
Hi,
first of all thanks to everyone for the interest and for pointing me
out my mistakes :) I've already changed recursion and transfer to
trusted acls. But unfortunately, I've been administering this server
for a short time and as I'm reading more and
formation anyway with enough digging but why make it easy for him?
>
> -Original Message-
> From: bind-users-boun...@lists.isc.org
> [mailto:bind-users-boun...@lists.isc.org] On Behalf Of Kevin Darcy
> Sent: Wednesday, November 11, 2009 12:53 PM
> To: bind-users@lists.
ous state of affairs.
-Original Message-
From: bind-users-boun...@lists.isc.org
[mailto:bind-users-boun...@lists.isc.org] On Behalf Of Kevin Darcy
Sent: Wednesday, November 11, 2009 12:53 PM
To: bind-users@lists.isc.org
Subject: Re: bind configuration help
Holger Honert wrote:
Security
nough digging but why make it easy for him?
-Original Message-
From: bind-users-boun...@lists.isc.org
[mailto:bind-users-boun...@lists.isc.org] On Behalf Of Kevin Darcy
Sent: Wednesday, November 11, 2009 12:53 PM
To: bind-users@lists.isc.org
Subject: Re: bind configuration help
Holger Honert
"bad" ? This is
my first bind configuration, so probably I've made some mistakes, but
I'd like to do it the right way in the end.:)
On Tue, Nov 10, 2009 at 11:19 PM, Laurent CARON wrote:
allow-recursion { any; };
bad
allow-transfer { any; };
Sorry about that,
but I only pressed the button "answer all" and thunderbird did the rest
automagically ;-) .
Regards
SIGNAL Krankenversicherung a. G., Sitz: Dortmund, HR B 2405, AG Dortmund
IDUNA Vereinigte Lebensversicherung aG für Handwerk, Handel und Gewerbe,
Sitz: Hamburg, HR B 2740, AG Ha
From: Holger Honert [mailto:holger.hon...@signal-iduna.org]
..
*Please be carefull when quoting, this was not me:
Jukka Pakkanen schrieb:
Sorry, but could You specify more accurately what is "bad" ? This is
my first bind configuration, so probably I've made some mi
hrieb:
> Sorry, but could You specify more accurately what is "bad" ? This is
> my first bind configuration, so probably I've made some mistakes, but
> I'd like to do it the right way in the end.:)
>
> On Tue, Nov 10, 2009 at 11:19 PM, Laurent CARON w
Sorry, but could You specify more accurately what is "bad" ? This is
my first bind configuration, so probably I've made some mistakes, but
I'd like to do it the right way in the end.:)
On Tue, Nov 10, 2009 at 11:19 PM, Laurent CARON wrote:
>> allow-recursion { any;
Sorry, but could You specify more accurately what is "bad" ? This is
my first bind configuration, so probably I've made some mistakes, but
I'd like to do it the right way in the end.:)
On Tue, Nov 10, 2009 at 11:19 PM, Laurent CARON wrote:
> On 10/11/2009 23:07
Laurent CARON wrote:
On 10/11/2009 23:07, Błażej Ślusarek wrote:
Hello,
Hi
I'd like to ask for help in setting up my DNS server. When I start the
server, everything is fine, but only for some time. After the "some
time" passes, my external domain name cannot be resolved from anywhere
on the
On 10/11/2009 23:07, Błażej Ślusarek wrote:
Hello,
Hi
I'd like to ask for help in setting up my DNS server. When I start the
server, everything is fine, but only for some time. After the "some
time" passes, my external domain name cannot be resolved from anywhere
on the Internet. When I resta
Hello,
I'd like to ask for help in setting up my DNS server. When I start the
server, everything is fine, but only for some time. After the "some
time" passes, my external domain name cannot be resolved from anywhere
on the Internet. When I restart the Named, everything is back to
normal after few
39 matches
Mail list logo