Re: ISC DHCP does not work with BIND 9.10
On 02/19/2015 07:30 PM, Evan Hunt wrote: dhcp is only expected to work with the generic library (and also disabling epoll), but this comment now seems to be obsolete as there's no generic (formerly called export) version of the library. Assuming the issue with epoll is somehow resolved, I suspect we'd need some run-time mechanism to enable the multiple task managers mode (while still enabling threads). As far as I know the current implementation doesn't allow it. Pretty much exactly correct. Our intention was to allow both named and dhcpd to use the same set of libisc and libdns libraries, no longer requiring separate libraries to be built for each; a global variable set at runtime (isc_bind9) takes the place of #ifdef BIND9, where the internal and export versions of the libraries had different behavior. We ran out of time on this project when we were working on BIND 9.10 and DHCP 4.3, and haven't had time to get back to it, so the work is largely but complete but not entirely. DHCP still needs some adaptations to deal with the new-style task manager, and libisc needs a runtime mechanism for choosing to use select vs epoll/kqueue/devpoll. I think there were a few other items on the to do list as well, but those were the big ones. Thank you for the explanation. Is there any estimate or plan when this could be finished? This situation complicates things significantly on Fedora. If we want to ship BIND 9.10 we have to either build DHCP using bundled BIND (which is against Fedora guidelines and requires special approval) or build another version of libisc and libdns with special options which will require us hacking BIND's build process. Since both workarounds are just temporary from our point of view, we would like you to really consider finishing the work so DHCP can be built against BIND 9.10. Thank you! Regards, -- Tomas Hozza Software Engineer - EMEA ENG Developer Experience PGP: 1D9F3C2D Red Hat Inc. http://cz.redhat.com ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: caching-only name server
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 2/19/15 9:52 PM, Vijay Viswanathan wrote: looks like the default /etc/named.conf is designed to run much more than caching server There no named.conf distributed with BIND from ISC. What you are seeing is from your operating system distribution or a third-party. If you are looking to just run a cache, what you had in your first configuration snippet is just fine, and actually has some extra (the zone for localhost). AlanC -BEGIN PGP SIGNATURE- Comment: GPGTools - https://gpgtools.org iQEcBAEBCgAGBQJU5zqTAAoJEOW2o5eiJADbUyoIAJAe3vZEZYkdtzm5rIj7wYvG bAgiH84GPhZMNxmQIK1sU3xBaQiSb5DWKg+hpauoplku+6fpNJ4hpMGZK56nhPkr 2+PJpOhVdpTfmSxGKd6VGp2/MyHVFGnR6uwdvL24fxqcL6b1WA/ps/r7Ovorh0aa uJkIPd/bZQYcyGxHIs1hXjc8xIc8pS64Ac9C2A1NwzFHDIKDEfuiMtzJ/IGfHv86 EiT7FKBLO2eG1u5O0aH9HGTOiTqBM7Z+7E6dzcLnB3LOcwsYSEh2eJlmOhwNVVcw s18SIWdO7z9aYVqpcDQgbmJxCn+83veg8rTuy92QR5sTwLHBYfhVq+qA82RAqfc= =veTd -END PGP SIGNATURE- ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Share RPZ Zones between views
Hi guys, Any idea on this ? Thanks! Jose Alonso On Thu, Feb 19, 2015 at 6:50 PM, José Alonso j...@transtelco.net wrote: Hi all ! I'm having a problem guys, I want to know if there's a way to share RPZ zones between views in a single server. Let's say that I have a view common and I have in there a zone called porn with all the domains that I want to block, then I have 2 views that matches for 2 different IP sources and I want to also block the zone porn in those 2 views, is there a way to share the already loaded zone in the common view in order to save memory on the server ? I would really appreciate any help with this, Thanks! Jose Alonso -- [image: image.png] http://www.transtelco.net/ | Jose A. Hernandez | RD Manager | MX: +52 (656) 257-1189 | US: +1 (915) 534-8116 CONFIDENTIALITY NOTICE: This communication is intended only for the use of the individual or entity to which it is addressed and may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If you are not the intended recipient of this information, you are notified that any use, dissemination, distribution, or copying of the communication is strictly prohibited. AVISO DE CONFIDENCIALIDAD: Esta comunicación es sólo para el uso de la persona o entidad a la que se dirige y puede contener información privilegiada, confidencial y exenta de divulgación bajo la legislación aplicable. Si no es el destinatario de esta información, se le notifica que cualquier uso, difusión, distribución o copia de la comunicación está estrictamente prohibido. -- [image: image.png] http://www.transtelco.net/ | Jose A. Hernandez | RD Manager | MX: +52 (656) 257-1189 | US: +1 (915) 534-8116 CONFIDENTIALITY NOTICE: This communication is intended only for the use of the individual or entity to which it is addressed and may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If you are not the intended recipient of this information, you are notified that any use, dissemination, distribution, or copying of the communication is strictly prohibited. AVISO DE CONFIDENCIALIDAD: Esta comunicación es sólo para el uso de la persona o entidad a la que se dirige y puede contener información privilegiada, confidencial y exenta de divulgación bajo la legislación aplicable. Si no es el destinatario de esta información, se le notifica que cualquier uso, difusión, distribución o copia de la comunicación está estrictamente prohibido. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Share RPZ Zones between views
There are three ways that I know of to do it. The first would be to load the same RPZ data in each view from the same source files. The second would be to zone transfer the RPZ data from one view to the others. The third would be to have completely separate RPZ files for each view that you manually update each so you can block different domains per view. I do not believe it is possible to have the other views reference records that are only loaded in another view. If you reference the RPZ data at all in the other views it's going to load another copy. But I could be wrong. :) -Christopher From: José Alonso j...@transtelco.netmailto:j...@transtelco.net Date: Friday, February 20, 2015 at 9:46 AM To: bind-users@lists.isc.orgmailto:bind-users@lists.isc.org bind-users@lists.isc.orgmailto:bind-users@lists.isc.org Subject: Re: Share RPZ Zones between views Hi guys, Any idea on this ? Thanks! Jose Alonso On Thu, Feb 19, 2015 at 6:50 PM, José Alonso j...@transtelco.netmailto:j...@transtelco.net wrote: Hi all ! I'm having a problem guys, I want to know if there's a way to share RPZ zones between views in a single server. Let's say that I have a view common and I have in there a zone called porn with all the domains that I want to block, then I have 2 views that matches for 2 different IP sources and I want to also block the zone porn in those 2 views, is there a way to share the already loaded zone in the common view in order to save memory on the server ? I would really appreciate any help with this, Thanks! Jose Alonso -- [image.png]http://www.transtelco.net/ | Jose A. Hernandez | RD Manager | MX: +52 (656) 257-1189 | US: +1 (915) 534-8116 CONFIDENTIALITY NOTICE: This communication is intended only for the use of the individual or entity to which it is addressed and may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If you are not the intended recipient of this information, you are notified that any use, dissemination, distribution, or copying of the communication is strictly prohibited. AVISO DE CONFIDENCIALIDAD: Esta comunicación es sólo para el uso de la persona o entidad a la que se dirige y puede contener información privilegiada, confidencial y exenta de divulgación bajo la legislación aplicable. Si no es el destinatario de esta información, se le notifica que cualquier uso, difusión, distribución o copia de la comunicación está estrictamente prohibido. -- [image.png]http://www.transtelco.net/ | Jose A. Hernandez | RD Manager | MX: +52 (656) 257-1189 | US: +1 (915) 534-8116 CONFIDENTIALITY NOTICE: This communication is intended only for the use of the individual or entity to which it is addressed and may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If you are not the intended recipient of this information, you are notified that any use, dissemination, distribution, or copying of the communication is strictly prohibited. AVISO DE CONFIDENCIALIDAD: Esta comunicación es sólo para el uso de la persona o entidad a la que se dirige y puede contener información privilegiada, confidencial y exenta de divulgación bajo la legislación aplicable. Si no es el destinatario de esta información, se le notifica que cualquier uso, difusión, distribución o copia de la comunicación está estrictamente prohibido. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Share RPZ Zones between views
On Fri, Feb 20, 2015 at 02:58:00PM +, Howard, Christopher wrote: I do not believe it is possible to have the other views reference records that are only loaded in another view. BIND 9.10 has this feature, the in-view zone option. -- http://rob0.nodns4.us/ Offlist GMX mail is seen only if /dev/rob0 is in the Subject: ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
RE: caching-only name server
Thanks I thought I needed the 'port 53' line. -- Sent from my mobile. Plz excuse my brevity and spelling.From: Alan Clegg Sent: 2/20/2015 5:46 AM To: bind-users@lists.isc.org Subject: Re: caching-only name server -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 2/19/15 9:52 PM, Vijay Viswanathan wrote: looks like the default /etc/named.conf is designed to run much more than caching server There no named.conf distributed with BIND from ISC. What you are seeing is from your operating system distribution or a third-party. If you are looking to just run a cache, what you had in your first configuration snippet is just fine, and actually has some extra (the zone for localhost). AlanC -BEGIN PGP SIGNATURE- Comment: GPGTools - https://gpgtools.org iQEcBAEBCgAGBQJU5zqTAAoJEOW2o5eiJADbUyoIAJAe3vZEZYkdtzm5rIj7wYvG bAgiH84GPhZMNxmQIK1sU3xBaQiSb5DWKg+hpauoplku+6fpNJ4hpMGZK56nhPkr 2+PJpOhVdpTfmSxGKd6VGp2/MyHVFGnR6uwdvL24fxqcL6b1WA/ps/r7Ovorh0aa uJkIPd/bZQYcyGxHIs1hXjc8xIc8pS64Ac9C2A1NwzFHDIKDEfuiMtzJ/IGfHv86 EiT7FKBLO2eG1u5O0aH9HGTOiTqBM7Z+7E6dzcLnB3LOcwsYSEh2eJlmOhwNVVcw s18SIWdO7z9aYVqpcDQgbmJxCn+83veg8rTuy92QR5sTwLHBYfhVq+qA82RAqfc= =veTd -END PGP SIGNATURE- ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Share RPZ Zones between views
On Fri, Feb 20, 2015 at 09:48:57AM -0600, /dev/rob0 wrote: On Fri, Feb 20, 2015 at 02:58:00PM +, Howard, Christopher wrote: I do not believe it is possible to have the other views reference records that are only loaded in another view. BIND 9.10 has this feature, the in-view zone option. Unfortunately, it doesn't work with RPZ. -- Evan Hunt -- e...@isc.org Internet Systems Consortium, Inc. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Share RPZ Zones between views
Yeah sadly the in-view feature doesn't work with RPZ zones. I already tried that and also played a little bit with the attach-cache option but at the end it's not the desired behavior. And I have this problem, because I have 2 zones with 2 million of records that I want to block, if I load each zone in every view that I create it's gonna be a memory problem, that can't scale up very well. On Friday, February 20, 2015, Evan Hunt e...@isc.org wrote: On Fri, Feb 20, 2015 at 09:48:57AM -0600, /dev/rob0 wrote: On Fri, Feb 20, 2015 at 02:58:00PM +, Howard, Christopher wrote: I do not believe it is possible to have the other views reference records that are only loaded in another view. BIND 9.10 has this feature, the in-view zone option. Unfortunately, it doesn't work with RPZ. -- Evan Hunt -- e...@isc.org javascript:; Internet Systems Consortium, Inc. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org javascript:; https://lists.isc.org/mailman/listinfo/bind-users -- [image: image.png] http://www.transtelco.net/ | Jose A. Hernandez | RD Manager | MX: +52 (656) 257-1189 | US: +1 (915) 534-8116 CONFIDENTIALITY NOTICE: This communication is intended only for the use of the individual or entity to which it is addressed and may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If you are not the intended recipient of this information, you are notified that any use, dissemination, distribution, or copying of the communication is strictly prohibited. AVISO DE CONFIDENCIALIDAD: Esta comunicación es sólo para el uso de la persona o entidad a la que se dirige y puede contener información privilegiada, confidencial y exenta de divulgación bajo la legislación aplicable. Si no es el destinatario de esta información, se le notifica que cualquier uso, difusión, distribución o copia de la comunicación está estrictamente prohibido. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: ISC DHCP does not work with BIND 9.10
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Fri, 2015-02-20 at 13:27 +0100, Tomas Hozza wrote: Since both workarounds are just temporary from our point of view, we would like you to really consider finishing the work so DHCP can be built against BIND 9.10. Perhaps redhat.com could fund such work by ISC. -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.14 (GNU/Linux) iEYEARECAAYFAlTnUzMACgkQL6j7milTFsFltACeMBDvG1lEx1oHEEHW23PTBOO/ H58Amwex+7tZwVRcXCaEPv/Kf9ZFS46I =FV9U -END PGP SIGNATURE- ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: caching-only name server
Hi Vijay I guess that's the default value for the listen directive. With the configuration you have you should do well with the recursion only server. Regards On Friday, February 20, 2015, Vijay Viswanathan vijay.vi...@gmail.com wrote: Thanks I thought I needed the 'port 53' line. -- Sent from my mobile. Plz excuse my brevity and spelling.From: Alan Clegg Sent: 2/20/2015 5:46 AM To: bind-users@lists.isc.org javascript:; Subject: Re: caching-only name server -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 2/19/15 9:52 PM, Vijay Viswanathan wrote: looks like the default /etc/named.conf is designed to run much more than caching server There no named.conf distributed with BIND from ISC. What you are seeing is from your operating system distribution or a third-party. If you are looking to just run a cache, what you had in your first configuration snippet is just fine, and actually has some extra (the zone for localhost). AlanC -BEGIN PGP SIGNATURE- Comment: GPGTools - https://gpgtools.org iQEcBAEBCgAGBQJU5zqTAAoJEOW2o5eiJADbUyoIAJAe3vZEZYkdtzm5rIj7wYvG bAgiH84GPhZMNxmQIK1sU3xBaQiSb5DWKg+hpauoplku+6fpNJ4hpMGZK56nhPkr 2+PJpOhVdpTfmSxGKd6VGp2/MyHVFGnR6uwdvL24fxqcL6b1WA/ps/r7Ovorh0aa uJkIPd/bZQYcyGxHIs1hXjc8xIc8pS64Ac9C2A1NwzFHDIKDEfuiMtzJ/IGfHv86 EiT7FKBLO2eG1u5O0aH9HGTOiTqBM7Z+7E6dzcLnB3LOcwsYSEh2eJlmOhwNVVcw s18SIWdO7z9aYVqpcDQgbmJxCn+83veg8rTuy92QR5sTwLHBYfhVq+qA82RAqfc= =veTd -END PGP SIGNATURE- ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org javascript:; https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org javascript:; https://lists.isc.org/mailman/listinfo/bind-users -- [image: image.png] http://www.transtelco.net/ | Jose A. Hernandez | RD Manager | MX: +52 (656) 257-1189 | US: +1 (915) 534-8116 CONFIDENTIALITY NOTICE: This communication is intended only for the use of the individual or entity to which it is addressed and may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If you are not the intended recipient of this information, you are notified that any use, dissemination, distribution, or copying of the communication is strictly prohibited. AVISO DE CONFIDENCIALIDAD: Esta comunicación es sólo para el uso de la persona o entidad a la que se dirige y puede contener información privilegiada, confidencial y exenta de divulgación bajo la legislación aplicable. Si no es el destinatario de esta información, se le notifica que cualquier uso, difusión, distribución o copia de la comunicación está estrictamente prohibido. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: caching-only name server
Hi jose, sorry I didn't understand, with the snip i have without the listen directive, i should be able to run BIND (named) as recursion only server installed in all client machines to speed up their browsing/DNS lookup? Thanks. On Fri, Feb 20, 2015 at 8:29 AM, José Alonso j...@transtelco.net wrote: Hi Vijay I guess that's the default value for the listen directive. With the configuration you have you should do well with the recursion only server. Regards On Friday, February 20, 2015, Vijay Viswanathan vijay.vi...@gmail.com wrote: Thanks I thought I needed the 'port 53' line. -- Sent from my mobile. Plz excuse my brevity and spelling.From: Alan Clegg Sent: 2/20/2015 5:46 AM To: bind-users@lists.isc.org Subject: Re: caching-only name server -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 2/19/15 9:52 PM, Vijay Viswanathan wrote: looks like the default /etc/named.conf is designed to run much more than caching server There no named.conf distributed with BIND from ISC. What you are seeing is from your operating system distribution or a third-party. If you are looking to just run a cache, what you had in your first configuration snippet is just fine, and actually has some extra (the zone for localhost). AlanC -BEGIN PGP SIGNATURE- Comment: GPGTools - https://gpgtools.org iQEcBAEBCgAGBQJU5zqTAAoJEOW2o5eiJADbUyoIAJAe3vZEZYkdtzm5rIj7wYvG bAgiH84GPhZMNxmQIK1sU3xBaQiSb5DWKg+hpauoplku+6fpNJ4hpMGZK56nhPkr 2+PJpOhVdpTfmSxGKd6VGp2/MyHVFGnR6uwdvL24fxqcL6b1WA/ps/r7Ovorh0aa uJkIPd/bZQYcyGxHIs1hXjc8xIc8pS64Ac9C2A1NwzFHDIKDEfuiMtzJ/IGfHv86 EiT7FKBLO2eG1u5O0aH9HGTOiTqBM7Z+7E6dzcLnB3LOcwsYSEh2eJlmOhwNVVcw s18SIWdO7z9aYVqpcDQgbmJxCn+83veg8rTuy92QR5sTwLHBYfhVq+qA82RAqfc= =veTd -END PGP SIGNATURE- ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users -- [image: image.png] http://www.transtelco.net/ | Jose A. Hernandez | RD Manager | MX: +52 (656) 257-1189 | US: +1 (915) 534-8116 CONFIDENTIALITY NOTICE: This communication is intended only for the use of the individual or entity to which it is addressed and may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If you are not the intended recipient of this information, you are notified that any use, dissemination, distribution, or copying of the communication is strictly prohibited. AVISO DE CONFIDENCIALIDAD: Esta comunicación es sólo para el uso de la persona o entidad a la que se dirige y puede contener información privilegiada, confidencial y exenta de divulgación bajo la legislación aplicable. Si no es el destinatario de esta información, se le notifica que cualquier uso, difusión, distribución o copia de la comunicación está estrictamente prohibido. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: caching-only name server
Hi Vijay, I'm not an expert on BIND, but I have few questions to understand more. What I meant was that if you don't write the listen directive the named service is by default going to listen on port 53, also if you run the named service in every client machine you will lose the function of caching among all your clients. But that definitely can work. Also, are your clients all linux-based or windows-based? Regards, Jose On Fri, Feb 20, 2015 at 10:59 AM, Vijay Viswanathan vijay.vi...@gmail.com wrote: Hi jose, sorry I didn't understand, with the snip i have without the listen directive, i should be able to run BIND (named) as recursion only server installed in all client machines to speed up their browsing/DNS lookup? Thanks. On Fri, Feb 20, 2015 at 8:29 AM, José Alonso j...@transtelco.net wrote: Hi Vijay I guess that's the default value for the listen directive. With the configuration you have you should do well with the recursion only server. Regards On Friday, February 20, 2015, Vijay Viswanathan vijay.vi...@gmail.com wrote: Thanks I thought I needed the 'port 53' line. -- Sent from my mobile. Plz excuse my brevity and spelling.From: Alan Clegg Sent: 2/20/2015 5:46 AM To: bind-users@lists.isc.org Subject: Re: caching-only name server -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 2/19/15 9:52 PM, Vijay Viswanathan wrote: looks like the default /etc/named.conf is designed to run much more than caching server There no named.conf distributed with BIND from ISC. What you are seeing is from your operating system distribution or a third-party. If you are looking to just run a cache, what you had in your first configuration snippet is just fine, and actually has some extra (the zone for localhost). AlanC -BEGIN PGP SIGNATURE- Comment: GPGTools - https://gpgtools.org iQEcBAEBCgAGBQJU5zqTAAoJEOW2o5eiJADbUyoIAJAe3vZEZYkdtzm5rIj7wYvG bAgiH84GPhZMNxmQIK1sU3xBaQiSb5DWKg+hpauoplku+6fpNJ4hpMGZK56nhPkr 2+PJpOhVdpTfmSxGKd6VGp2/MyHVFGnR6uwdvL24fxqcL6b1WA/ps/r7Ovorh0aa uJkIPd/bZQYcyGxHIs1hXjc8xIc8pS64Ac9C2A1NwzFHDIKDEfuiMtzJ/IGfHv86 EiT7FKBLO2eG1u5O0aH9HGTOiTqBM7Z+7E6dzcLnB3LOcwsYSEh2eJlmOhwNVVcw s18SIWdO7z9aYVqpcDQgbmJxCn+83veg8rTuy92QR5sTwLHBYfhVq+qA82RAqfc= =veTd -END PGP SIGNATURE- ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users -- [image: image.png] http://www.transtelco.net/ | Jose A. Hernandez | RD Manager | MX: +52 (656) 257-1189 | US: +1 (915) 534-8116 CONFIDENTIALITY NOTICE: This communication is intended only for the use of the individual or entity to which it is addressed and may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If you are not the intended recipient of this information, you are notified that any use, dissemination, distribution, or copying of the communication is strictly prohibited. AVISO DE CONFIDENCIALIDAD: Esta comunicación es sólo para el uso de la persona o entidad a la que se dirige y puede contener información privilegiada, confidencial y exenta de divulgación bajo la legislación aplicable. Si no es el destinatario de esta información, se le notifica que cualquier uso, difusión, distribución o copia de la comunicación está estrictamente prohibido. -- [image: image.png] http://www.transtelco.net/ | Jose A. Hernandez | RD Manager | MX: +52 (656) 257-1189 | US: +1 (915) 534-8116 CONFIDENTIALITY NOTICE: This communication is intended only for the use of the individual or entity to which it is addressed and may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If you are not the intended recipient of this information, you are notified that any use, dissemination, distribution, or copying of the communication is strictly prohibited. AVISO DE CONFIDENCIALIDAD: Esta comunicación es sólo para el uso de la persona o entidad a la que se dirige y puede contener información privilegiada, confidencial y exenta de divulgación bajo la legislación aplicable. Si no es el destinatario de esta información, se le notifica que cualquier uso, difusión, distribución o copia de la comunicación está estrictamente prohibido. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: caching-only name server
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 2/20/15 12:59 PM, Vijay Viswanathan wrote: sorry I didn't understand, with the snip i have without the listen directive, i should be able to run BIND (named) as recursion only server installed in all client machines to speed up their browsing/DNS lookup? You _could_ run this on every client machine, but if you do, you lose the function of caching between clients. Consider the case that your clients all have a need to go to xyz.com If you have each client running its own copy of BIND, you have every client doing that lookup and waiting for the response, etc. If you have a couple of centralized servers running BIND, only the first client to lookup xyz.com (against each server) has to wait for the response, at which time the response is cached for the other clients. Honestly, there are too many variables for us to be able to tell you which mechanism works best in your specific case. AlanC -BEGIN PGP SIGNATURE- Comment: GPGTools - https://gpgtools.org iQEcBAEBCgAGBQJU53vMAAoJEOW2o5eiJADbNTUIAK0v981BQOTQj+vTGyD6a/Lv B4ORAt5xgROa9g7VIlL6pmoURiujjF9kZvDG/3kOeaaC1nXIvt2HlOfL+hmEAO6v bIF3o6KghIe5bUGU6EOQuXt4L3ahT8OQx9wi/3tOGkx5Uezxy91kjyfy21mRIYWF DE9+K/Lux52KmIIX0CIb4W61FWtFgyA2QL0XbiH45R06nrHM4LMcYgeQ3H3V1TLx BfFx/rjL1kltgAScqLXx1QKvnKwd6Fxn78zHDCsbdIxtuX5egyT/mNQHzKETj5Gj 740eIcWJ2MaKo7KWyxcpjIj7dcfkNYQoYdqyE7q2OwNp7b3wXrfGTiVPla2cyTg= =xrCy -END PGP SIGNATURE- ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
