On 9/21/2018 6:33 PM, Reindl Harald wrote:
>
>
> Am 21.09.18 um 22:19 schrieb Danny Mayer:
>> On 9/21/2018 3:57 PM, Mauricio Tavares wrote:
> The discussion was about automated _discovery_ of the DNS name of your
> NTP server using an additional level of indirection so that it can be
Yes, I seem to be learning that the hard way:) My shop is still on Bind
9.8.2 (Red Hat) on our authoritative servers. These new features in 9.11
are nice!
On Fri, Sep 21, 2018 at 4:29 PM Reindl Harald
wrote:
>
> Am 21.09.18 um 20:01 schrieb project722:
> > Are you saying do a zone xfer then
On 9/21/2018 3:57 PM, Mauricio Tavares wrote:
> On Fri, Sep 21, 2018 at 3:14 PM, Danny Mayer wrote:
>> On 9/21/2018 7:56 AM, Ray Bellis wrote:
>>> On 21/09/2018 12:47, Danny Mayer wrote:
>>>
Putting on both my BIND9 and NTP hats for a moment:
This answer makes no sense. NTP uses
On Fri, Sep 21, 2018 at 7:57 AM Danny Mayer wrote:
> On 9/19/2018 10:12 AM, Andrew Latham wrote:
> > You can add SRV records for NTP to your domain if that is what you are
> > asking.
> >
>
> NTP doesn't use SRV records and I don't see a use case to do so.
>
Well, apparently at one point you
On Fri, Sep 21, 2018 at 3:14 PM, Danny Mayer wrote:
> On 9/21/2018 7:56 AM, Ray Bellis wrote:
>> On 21/09/2018 12:47, Danny Mayer wrote:
>>
>>> Putting on both my BIND9 and NTP hats for a moment:
>>>
>>> This answer makes no sense. NTP uses standard DNS FQDN's for all of its
>>> references to NTP
On 9/21/2018 7:56 AM, Ray Bellis wrote:
> On 21/09/2018 12:47, Danny Mayer wrote:
>
>> Putting on both my BIND9 and NTP hats for a moment:
>>
>> This answer makes no sense. NTP uses standard DNS FQDN's for all of its
>> references to NTP servers whether it's using pool, server or peer. I
>> have
Ok, is this something new to the later BIND versions? I'm looking on our
authoritative servers running the red hat bind 9.8.2 and do not see any
.jnl files.
Also, I made a zone transfer and ran a dig axfr rpz-local @ipaddress and it
returned the updated data, while the file remained unchanged.
hi everyone
I have a quick questionon possibly trivial issue.
I do:
> update delete ddd.dom.local. 86400 in a 10.3.1.100
> send
and that works, but when I try:
> update add dom.local. 86400 in a 10.3.1.100
> send
update failed: REFUSED
..and in logs:
client @0x7fd7a40f2e40 127.0.0.1#9489/key
project722 wrote:
> Sounds like to me you are saying that the server would return the updated
> data, because its in the journal file, regardless of whether its made it
> into the regular zone file yet.
Yes, that's how it works.
Tony.
--
f.anthony.n.finchhttp://dotat.at/
South Fitzroy:
Are you saying do a zone xfer then check the slave with the commands above
to see what it actaully returns? Instead of checking the file itself?
Sounds like to me you are saying that the server would return the updated
data, because its in the journal file, regardless of whether its made it
into
project722 wrote:
> But the slave still takes @15 minutes for the new data to get populated
> in the file.
Use `dig axfr` or `named-compilezone -j` to get the server's view of the
zone. Zone updates are written to a journal and are not incorporated into
the zone file immediately.
Tony.
--
I've added those 2 lines to the master in the zone info section. It seemed
to have helped with the delay with the server announcing the change and
initiating the xfer-out. But the slave still takes @15 minutes for the new
data to get populated in the file.
On Fri, Sep 21, 2018 at 9:09 AM Reindl
I've got two recursive dns servers running ISC 9.11 and 9.12. We are using
RPZ and I have a whitelist/blacklist exception zone file on both servers. I
need the ability to change it only on one server and have it propogate to
the other servers. My config is working, but I'm getting some delays that
Hi Danny
On Fri, Sep 21, 2018 at 07:47:46AM -0400, Danny Mayer wrote:
> You can create a DNS A or or even a CNAME in your local DNS that
> the NTP server can use and it all works.
The original poster asked "can I publish/query the NTP server through
DNS the same way I can ask who is doing
On 9/19/2018 10:12 AM, Andrew Latham wrote:
> You can add SRV records for NTP to your domain if that is what you are
> asking.
>
NTP doesn't use SRV records and I don't see a use case to do so.
Therefore I have no idea why this would be any benefit. You can add NTP
specific FQDN's as A or
On 21/09/2018 12:47, Danny Mayer wrote:
> Putting on both my BIND9 and NTP hats for a moment:
>
> This answer makes no sense. NTP uses standard DNS FQDN's for all of its
> references to NTP servers whether it's using pool, server or peer. I
> have no idea where the reverse zone comes in though I
On 9/19/2018 11:19 AM, Ray Bellis wrote:
> On 19/09/2018 15:59, Mauricio Tavares wrote:
>
>>> An NTP serice doesn't belong to a domain, so maybe not (I don't know of
>>> one off my mind).
>>>
>> Not necessarily; I can name a few universities and business who
>> offer their own NTP servers
17 matches
Mail list logo
