changing ttl of mx record
Hi All: If I need to set a short TTL prior to an MX IP change, do I need to modify the TTL of the MX record, or just the A record the MX points to? (There's just a single A record for the MX). ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: changing ttl of mx record
On 10/10/2011 15:42, enigmedia wrote: Hi All: If I need to set a short TTL prior to an MX IP change, do I need to modify the TTL of the MX record, or just the A record the MX points to? (There's just a single A record for the MX). You want to drop the TTL on the RR where the data -- the RHS of the zonefile -- changes. So if you have: example.com.IN MX 10 smtp.example.com. smtp.example.com. IN A192.0.2.1 and you want to change that to example.com.IN MX 10 smtp.example.com. smtp.example.com. IN A192.0.2.25 then you only need to shorten the TTL on the A record, not the MX record. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate JID: matt...@infracaninophile.co.uk Kent, CT11 9PW signature.asc Description: OpenPGP digital signature ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: changing ttl of mx record
If you are going to update the IP and TTL, why not adjust both? This will take care of some broken DNS packages. Hth Sent from my iPhone On Oct 10, 2011, at 10:42 AM, enigmedia online-...@enigmedia.com wrote: Hi All: If I need to set a short TTL prior to an MX IP change, do I need to modify the TTL of the MX record, or just the A record the MX points to? (There's just a single A record for the MX). ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: changing ttl of mx record
On 10/10/2011 9:26 AM, Albert E. Whale, CHS CISA CISSP wrote: If you are going to update the IP and TTL, why not adjust both? This will take care of some broken DNS packages. Hth Thanks, I had googled around a bit and saw some conflicting opinions about whether TTL'ing the MX was necessary or even a good idea...but I don't know if that concern is still true or not? Sent from my iPhone On Oct 10, 2011, at 10:42 AM, enigmedia online-...@enigmedia.com wrote: Hi All: If I need to set a short TTL prior to an MX IP change, do I need to modify the TTL of the MX record, or just the A record the MX points to? (There's just a single A record for the MX). ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: nsupdate on a Windows ec2 instance to update dynamic DNS isn't working
On Sat, 08 Oct 2011, Mark Andrews wrote: Make sure that the send line has a end of line. Many windows editors don't add a end of line unlike unix editors that do. that was it. thank you! In message 20111007221843.gq28...@dradis.groknaut.net, kal...@groknaut.net wr ites: hello, i'm trying to update dynamic DNS for my windows ec2 instance by running BIND's nsupdate from the instance. it's not working. i'll show details below. anyone have any idea what's going on? what else i should look at or try? * nsupdate command reports no error * my BIND nameserver never sees the packets * running wireshark on the windows instance itself shows me it's not sending any packets to the nameserver * the Windows Firewall Service is not running * the windows instance runs Windows Server 2003, Datacenter Edition, R2 i do know the nameserver is set up correctly in that my linux instances are able to update dynamic dns using nsupdate against this nameserver. contents of update.txt: server 10.x.x.x zone dev.sushimysavior.com update delete SOUS-CHEF-WIN.dev.sushimysavior.com. A update add SOUS-CHEF-WIN.dev.sushimysavior.com. 86400 IN A 10.y.y.y show debug send in case it is necessary, i have a resolv.conf in place at C:\WINDOWS\system32\drivers\etc\resolv.conf that contains: nameserver 10.x.x.x and here's the nsupdate command run: C:\work\binC:\WINDOWS\system32\dns\bin\nsupdate.exe -k C:\WINDOWS\system32\d ns\etc\Kuser-ddns-ec2.sushimysavior.com.+157+14445.key -v -d -D -L 2 C:\WINDO WS\system32\dns\etc\update.txt setup_system() Creating key... reset_system() user_interaction() get_next_command() get_next_command() get_next_command() evaluate_update() update_addordelete() get_next_command() evaluate_update() update_addordelete() get_next_command() show_message() Outgoing update query: ;; -HEADER- opcode: UPDATE, status: NOERROR, id: 0 ;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0 ;; ZONE SECTION: ;dev.sushimysavior.com. IN SOA ;; UPDATE SECTION: SOUS-CHEF-WIN.dev.sushimysavior.com. 0 ANY A SOUS-CHEF-WIN.dev.sushimysavior.com. 86400 IN A 10.y.y.y get_next_command() get_next_command() cleanup() Shutting down task manager shutdown_program() Shutting down request manager Freeing TSIG key Destroy DST lib Destroying request manager Freeing the dispatchers Shutting down dispatch manager Destroying event Shutting down socket manager Shutting down timer manager Destroying hash context Destroying name state Removing log context Destroying memory context C:\work\bin ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: changing ttl of mx record
On 10/10/2011 11:13 AM, enigmedia wrote: On 10/10/2011 9:26 AM, Albert E. Whale, CHS CISA CISSP wrote: If you are going to update the IP and TTL, why not adjust both? This will take care of some broken DNS packages. Hth Thanks, I had googled around a bit and saw some conflicting opinions about whether TTL'ing the MX was necessary or even a good idea...but I don't know if that concern is still true or not? Sent from my iPhone On Oct 10, 2011, at 10:42 AM, enigmediaonline-...@enigmedia.com wrote: Hi All: If I need to set a short TTL prior to an MX IP change, do I need to modify the TTL of the MX record, or just the A record the MX points to? (There's just a single A record for the MX). ___ There's no point ever changing the TTL of records that are not going to change. All that does is increase traffic unnecessarily. So, if the MX record stays the same, but the A record(s) to which the MX target(s) resolve are going to be changing, modify the TTL of the A record(s) only. You should only change both if both sets of records are going to change. I'm not sure what brokenness is being referred to. Is some implementation of a DNS resolver going to *stop* resolving an MX record just because the TTL of the A record(s) of the MX target(s) expired and were re-fetched? I've been doing DNS and SMTP for a _long_ time, and I've never seen such brokenness... - Kevin ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
bind error
Dear Concern, I have running bind 9.7.3 on debian. I also running dump.db. While I am running dump.db for bind log it give error like that critical: masterdump.c:419: REQUIRE(result == 0) failed, back trace 11-Oct-2011 04:32:15.258 general: critical: #0 0x4259af in ?? 11-Oct-2011 04:32:15.258 general: critical: #1 0x7fdca44cbafa in ?? 11-Oct-2011 04:32:15.258 general: critical: #2 0x7fdca537d9d4 in ?? 11-Oct-2011 04:32:15.258 general: critical: #3 0x7fdca537dcdd in ?? 11-Oct-2011 04:32:15.258 general: critical: #4 0x7fdca537edb7 in ?? 11-Oct-2011 04:32:15.258 general: critical: #5 0x7fdca537fb68 in ?? 11-Oct-2011 04:32:15.258 general: critical: #6 0x7fdca44e99e9 in ?? 11-Oct-2011 04:32:15.258 general: critical: #7 0x7fdca3e9e8ba in ?? 11-Oct-2011 04:32:15.258 general: critical: #8 0x7fdca38b602d in ?? 11-Oct-2011 04:32:15.258 general: critical: exiting (due to assertion failure) So why this problem occurs and how to solve this problem. BR Mosharaf Network Engineer(Core) ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: bind error
It's a known issue and the fix is part of the next maintence release. 3154. [bug] Attempting to print an empty rdataset could trigger an assert. [RT #25452] -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
SRV record (out of zone) is a CNAME (illegal)
Hi All: I'm trying to set up a SRV record for a zone, and when I run checkzone I see the following error: [root@default root]# named-checkzone -w /var/named mydomain.com db.mydomain.com db.mydomain.com:13: TTL set to prior TTL (3600) zone mydomain.com/IN: _sipfederationtls._tcp.mydomain.com/SRV 'sipfed.online.lync.com' (out of zone) is a CNAME (illegal) My SRV record is: _sip._tls SRV 100 1 443 sipdir.online.lync.com. Is there something wrong with my SRV record, or is this just a warning about pointing to a different domain? ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: SRV record (out of zone) is a CNAME (illegal)
In message 322681e404789f1307553936e4e18...@webmail.enigmedia.com, enigmedia writes: Hi All: I'm trying to set up a SRV record for a zone, and when I run checkzon e I see the following error: [root@default root]# named-checkzone -w /var/named mydomain.com db.mydomain.c om db.mydomain.com:13: TTL set to prior TTL (3600) zone mydomain.com/IN: _sipfederationtls._tcp.mydomain.com/SRV 'sipfed.online.lync.com' (out of zone) is a CNAME (illegal) My SRV record is: _sip._tls SRV 100 1 443 sipdir.online.lync.com. Is there something wrong with my SRV record, or is this just a warning about pointing to a different domain? It is warning that it is pointing to a alias (CNAME) as getaddrinfo() returned a different canonical name when sipdir.online.lync.com was looked up. Current versions of named-checkzone display the canonical name getaddrinfo() returns in the error message. Mark ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users