Re: DNSSEC doubt

Perhaps this article is a better read for you: https://kb.isc.org/v1/docs/en/dnssec-key-and-signing-policy Best regards, Matthijs On 6/22/23 22:03, Daniel A. Rodriguez via bind-users wrote: Thanks, I was reading but wasn't able to decode that. Best regards El 22 de junio de 2023 4:27:21

Re: DNSSEC doubt

Thanks, I was reading but wasn't able to decode that. Best regards El 22 de junio de 2023 4:27:21 p. m. GMT-03:00, "Ondřej Surý" escribió: >It’s not. TL;DR use dnssec-policy. > >The more elaborate version of the TL;DR can be found in the DNSSEC Guide here: >https://bind9.readthedocs.io/en/v9

Re: DNSSEC doubt

It’s not. TL;DR use dnssec-policy. The more elaborate version of the TL;DR can be found in the DNSSEC Guide here: https://bind9.readthedocs.io/en/v9.18.16/dnssec-guide.html -- Ondřej Surý — ISC (He/Him) My working hours and your working hours may be different. Please do not feel obligated to r

Re: DNSSEC doubt

eta is registered with the Dutch Chamber of Commerce trade register with number 85744115. Van: bind-users namens Daniel A. Rodriguez via bind-users Verzonden: Thursday, June 22, 2023 7:47:55 PM Aan: bind-users@lists.isc.org Onderwerp: DNSSEC doubt I wonde

DNSSEC doubt

I wonder if it's mandatory make a manual deployment prior to an automated setup.-- Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for mor

Re: doubt about queries.log format

Thanks Tony for your answer, and is there any possibility using other category and/or debug level to obtain the record and the ip resolved in the same log entry? Regards Manuel 2016-07-18 12:50 GMT+02:00 Tony Finch : > Manuel Ramírez wrote: > > > > I would like to know if is possible to see in

Re: doubt about queries.log format

Manuel Ramírez wrote: > > I would like to know if is possible to see in the queries.log output the ip > address resolved No, it only logs the query not the answers. Have a look at passive DNS or dnstap if you want more detailed telemetry. Tony. -- f.anthony.n.finchhttp://dotat.at/ - I xn

doubt about queries.log format

Hi, first of all sorry for my poor English. I would like to know if is possible to see in the queries.log output the ip address resolved, for example, this is one line from the queries.log: *18-Jul-2016 10:54:15.226 queries: info: client 10.1.116.27#10760 (update.microsoft.com

Re: Doubt regarding acls and internal and external view.

w, it doesn’t “fail over” to another view in the config. It simply > > returns the negative response to the client. > > > > > > > > > > - Kevin > > > > > > > > *From:* bind-users-boun...@lists.isc.org [mailto: > > bind-users-boun...@list

Re: Doubt regarding acls and internal and external view.

returns the negative response to the client. > > > > > - Kevin > > > > *From:* bind-users-boun...@lists.isc.org [mailto: > bind-users-boun...@lists.isc.org] *On Behalf Of *Elias Pereira > *Sent:* Friday, May 22, 2015 10:48 AM > *To:* bind-users@lists.isc.org > *

RE: Doubt regarding acls and internal and external view.

Pereira Sent: Friday, May 22, 2015 10:48 AM To: bind-users@lists.isc.org Subject: Doubt regarding acls and internal and external view. Hello everyone, I have a doubt regarding acls and internal and external view. If I have some servers and among them, one only has access part of the "ext

Re: Doubt regarding acls and internal and external view.

ill not think to start a remote browser or use a reliable public service to check eternal DNS answers.) HTH,Len On Friday, May 22, 2015 7:47 AM, Elias Pereira wrote: Hello everyone, I have a doubt regarding acls and internal and external view. If I have some servers and among them,

Doubt regarding acls and internal and external view.

Hello everyone, I have a doubt regarding acls and internal and external view. If I have some servers and among them, one only has access part of the "external (world)" to "internal (my infrastructure)." That would be the site (www). The rest is only interna

Re: Doubt about RFC1918 response from Internet

Hello, Thanks for your response. Ok, now I understood what happend. I created the 10.in-addr.arpa arquive and now I'm authoritative for all the reverse address space 10/8. I believe I will not querying the Internet's name servers for these address anymore. Best regards, -

Re: Doubt about RFC1918 response from Internet

In message , Carlos Ribas writes: > Hello, > > I'm sending this message to see if I understood the meaning of " RFC > 1918 response from Internet" message logs. I read the FAQ of Bind [1], but > I have to be honest to say that I'm a litlle bit confused, since English is > not my first langua

Doubt about RFC1918 response from Internet

Hello, I'm sending this message to see if I understood the meaning of " RFC 1918 response from Internet" message logs. I read the FAQ of Bind [1], but I have to be honest to say that I'm a litlle bit confused, since English is not my first language. I'm using Bind 9.7.3 in a Debian server

Re: Doubt with towiresorted

On 7/6/2011 4:36 AM, Vignesh Gadiyar wrote: Got your point. I meant answer sections in the Response from the DNS server itself. It contains 4 sections namely Question, Answer, Authoritative and Additional sections right. I used the rrset-order in named.conf to set order to random which was norm

Re: Doubt with towiresorted

Got your point. I meant answer sections in the Response from the DNS server itself. It contains 4 sections namely Question, Answer, Authoritative and Additional sections right. I used the rrset-order in named.conf to set order to random which was normally Cyclic. The result was that only the answer

Re: Doubt with towiresorted

On 7/1/2011 2:40 AM, Vignesh Gadiyar wrote: I have created a static zone file for "www.abcd.com " with the Answer section entries Hold it right there. A zone file doesn't contain "answer sections", it contains zone data. That's an important, fundamental distinction. "Ans

Doubt with towiresorted

I have created a static zone file for "www.abcd.com" with the Answer section entries containing 2 IP addresses like 1.1.1.1 and 2.2.2.2. I tried to print these addresses in the towiresorted function for the random order like -> for(i=0;idata); inet_ntop(AF_INET,&(ip_host),adstr,ads

Re: Doubt

On 6/20/2011 7:04 AM, Vignesh Gadiyar wrote: What do the client.c and server.c programs in the /bin/named do? They're not programs, they're C source files in the BIND distribution: % ls bin/named/client.c bin/named/server.c bin/named/client.c bin/named/server.c % As part of the build process

Doubt

What do the client.c and server.c programs in the /bin/named do? Regards. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/li

Re: a doubt about dnssec

ignore the request, I already found out that this cannot be applied to an external untrusted view... On 10 October 2010 18:38, Bèrto ëd Sèra wrote: > Hi all, > > very n00by set of doubts following: > 1) what's the point in using dnssec, if the secondary nameserver at my ISP > doesn't use it? > 2

a doubt about dnssec

Hi all, very n00by set of doubts following: 1) what's the point in using dnssec, if the secondary nameserver at my ISP doesn't use it? 2) I see in some guides (for example, http://ru.gentoo-wiki.com/wiki/%D0%9D%D0%B0%D1%81%D1%82%D1%80%D0%BE%D0%B9%D0%BA%D0%B0_%D0%BF%D0%BE%D1%87%D1%82%D0%BE%D0%B2%D0

Re: IPV6 Bind doubt

At Thu, 23 Apr 2009 20:34:23 +0100, Nuno Ribeiro wrote: > I will try to clarify my doubt based in your comments: > Bind will be configured to listen IPv4 and IPv6 queries. When receiving a > query via IPv6 it can forward only via IPv4? > I was considering to forward the quer

Re: IPV6 Bind doubt

At Wed, 22 Apr 2009 12:12:51 +0100, Nuno Ribeiro wrote: > I have a doubt about bind and I would like you, if possible, to clarify it > to me: > It is possible to a bind server to receive a DNS query in IPV6, and forward > it using IPV4 to another server? If yes, how can I configu

IPV6 Bind doubt

Hi all, I have a doubt about bind and I would like you, if possible, to clarify it to me: It is possible to a bind server to receive a DNS query in IPV6, and forward it using IPV4 to another server? If yes, how can I configure it in the configuration file? Thanks in advance. Regards, -- Nuno

Re: query an external nameserver doubt

On 19.02.09 12:26, Nuno Ribeiro wrote: >> There is a CNAME Record "www.example.test.com CNAME ts.example.test2.com" >> in the "example.test.com" zone, which my nameserver is not authoritive. My >> name server is authoritive for "example.test2.com" zone. >> >> I receive a A query for "www.example.

Re: query an external nameserver doubt

On 19.02.09 12:26, Nuno Ribeiro wrote: > To: comp-protocols-dns-b...@isc.org, bind-users@lists.isc.org Don't do this. The mailing list and newsgroup are connected. > There is a CNAME Record "www.example.test.com CNAME ts.example.test2.com" > in the "example.test.com" zone, which my nameserver is

Re: referral doubt

> > > Trying to resolve www.testing.server.com > > > When contacting "server.com" nameserver I receive in the answer 3 NS and > > > 1 A > > > Additional record: > > > testing.server.com NS ns1.testing.server.com > > > testing.server.com NS ns2.testing.server.com > > > testing.server.com NS ns3.t

Re: query an external nameserver doubt

Here is an example: There is a CNAME Record "www.example.test.com CNAME ts.example.test2.com" in the "example.test.com" zone, which my nameserver is not authoritive. My name server is authoritive for "example.test2.com" zone. I receive a A query for "www.example.test.com". I send this query to ex

Re: referral doubt

Tks a lot for the answer. It really helped understanding this process. But just a simple question. What happens if the "ns1.testing.server.comA 192.123.123.23" doesn't responds? will it try to get the others? Regards, Luis On Thu, Jan 29, 2009 at 8:12 PM, JINMEI Ta

Re: query an external nameserver doubt

In article , Nuno Ribeiro wrote: > Is it possible to send a query to a external nameserver that can be a CNAME > for a record located in other nameserver zone where we are authoritive? It's hard to parse this. Could you give an example of what you're asking about? -- Barry Margolin, bar...@a

query an external nameserver doubt

Hi all, Is it possible to send a query to a external nameserver that can be a CNAME for a record located in other nameserver zone where we are authoritive? Thanks in advance. Best Regards, -- Nuno Ribeiro ___ bind-users mailing list bind-users@lists.is

Re: referral doubt

At Thu, 29 Jan 2009 15:39:01 +, Luis Silva wrote: > I have a question related with the contacting external servers. > If my server receives an referral answer from an external server with 3 NS > records but just 1 A additional record, what is the normal behaviour? is the > server supposed to

referral doubt

Hi all, I have a question related with the contacting external servers. If my server receives an referral answer from an external server with 3 NS records but just 1 A additional record, what is the normal behaviour? is the server supposed to resolve all 3 nameservers or continues with the iterativ

Re: Bind 9.5 configuration doubt

In article , Stacey Jonathan Marshall wrote: > Reinaldo Matukuma wrote: > > Hello. > >> I'm in doubt about defining a SOA record to a zone. > >> Is this correct and valid? > >> > >> $TTL86400 > >> $ORIGIN tes

Re: Bind 9.5 configuration doubt

Reinaldo Matukuma wrote: Hello. I'm in doubt about defining a SOA record to a zone. Is this correct and valid? $TTL86400 $ORIGIN teste.com. @ 1D IN SOA @ root ( 42 ; serial (d.

Bind 9.5 configuration doubt

Hello. I'm in doubt about defining a SOA record to a zone. Is this correct and valid? $TTL86400 $ORIGIN teste.com. @ 1D IN SOA @ root ( 42 ; serial (d. adams)