Ok got the issue and fixed it was long zone which was causing issue.
On Wed, Apr 25, 2018 at 10:28 AM, Blason R <blaso...@gmail.com> wrote:
> Whoo..what is this all about guys? Is there any limit for zones?
>
>Active: active (running) since Wed 2018-04-25 10:25:27 IST; 2s
Hey,
I tried that couple of times on CentOS and it fails :(.
I would really appreciate if someone has already compiled RPM and can share
it?
On Wed, Apr 25, 2018 at 11:52 AM, G.W. Haywood via bind-users <
bind-users@lists.isc.org> wrote:
> Hi there,
>
> On Wed, 25 Apr 2018,
Resending since it seems it has few malicious domains
-- Forwarded message --
From: Blason R <blaso...@gmail.com>
Date: Tue, Apr 24, 2018 at 6:02 PM
Subject: Facing weird issue with DNS-RPZ
To: bind-users <bind-users@lists.isc.org>
Hello All,
I am building DNS RPZ o
Hi All,
I am building DNS RPZ and I am complete no-vice. I will be having around
10-20k zones which my DNS will be wallgardening.
Just wondering how this can be done with DNZ RPZ? Since the zones has to be
included in named.conf.
Plus I am practising DNZ RPZ on my test server and its failing.
> chmod 755 /etc/systemd/system/named.service.d/
> > touch /etc/systemd/system/named.service.d/overrides.conf
> > chmod 644 /etc/systemd/system/named.service.d/overrides.conf
> >
> > /etc/systemd/system/named.service.d/overrides.conf
> > [Service]
> > Timeou
Interesting I didn't know that. Let me dig in..can I have few examples
please?
On Wed, Mar 28, 2018, 9:36 AM Grant Taylor via bind-users <
bind-users@lists.isc.org> wrote:
> On 03/27/2018 08:54 PM, Blason R wrote:
> > Is there any DNS sizing guide available? I have created a sink
Hi,
Is there any DNS sizing guide available? I have created a sinkhole server
which is catering around 25 - 30 zones loaded with 4 CPU and 8 GB
RAM. I am daily adding around 1-5k of zones.
I need to know how do I calculate the resources consumed by BIND server? I
mean if this DNS server
3/28/2018 12:51 AM, Blason R wrote:
>
>> Interesting I didn't know that. Let me dig in..can I have few examples
>> please?
>>
>
> RPZ zones are effectively standard zones. The only difference is that the
> CNAME record is used to convey information to the RPZ engi
domain even if I enable this
protection on BIND not sure if that would take effect?
Thanks and Regards,
Blason R
On Mon, Jan 28, 2019 at 4:05 PM Tony Finch wrote:
> Blason R wrote:
> >
> > Can someone guide me on prevention and possible configuration in BIND
> from
> > DNS
Hi Team,
Can someone guide me on prevention and possible configuration in BIND from
DNS Re-bind attack?
Thanks and Regards,
Blason R
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing
and remove it. It
start perfectly
Though 150 is I considered and even tried with 200 and it worked. So
wondering what is the limit?
Thanks and Regards,
Blason R
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
I guess you need to DNS Sub-domain delegation.
On Wed, Jun 5, 2019 at 8:51 PM Kevin Darcy wrote:
> Publish all 3 NSes.
>
> Publish MX records with primary/failover preferencing.
>
> Use a load-balancer (free or commercial, software/hardware/cloud-based) to
> direct the web traffic.
>
>
Yep thats what I wanted so I was right and couple of records are above 254
hence my zone is failing.
On Wed, Jun 5, 2019 at 4:37 PM Tony Finch wrote:
> Blason R wrote:
>
> > As soon as I find the longs URLs with more than 150 words and remove it.
> It
> > start perfect
Well there are other cheaper Solutions are available like from Array
network or peplink they can offer DNS sub domain delegation of GSLB.
But I really doubt if any such OSS can do the similar job.
On Thu, 12 Sep 2019, 21:10 Roberto Carna, wrote:
> Hi people, is it possible to setup BIND in
Hi Folks,
Wondering if anyone has any clue or defining policies for blocking DoH [DND
Over HTTPS] traffic using bind RPZ feature?
Does anyone have any use case about it?
Thanks and Regards,
Blason R
___
Please visit https://lists.isc.org/mailman
the
> web browser is configured to use "normal" DNS to lookup the DoH
> endpoint. See also:
>
> https://github.com/bambenek/block-doh
>
> Daniel
>
> On 02.10.19 13:23, Blason R wrote:
> > Hi Folks,
> >
> > Wondering if anyone has any clue or de
Block 443? Not even possible since most of the portals/web servers now a
days works on TCP/443
On Wed, Oct 2, 2019 at 6:57 PM Alan Clegg wrote:
> On 10/2/19 8:00 AM, Blason R wrote:
> > Hmm that is a good idea to block the DOH queries but what I understood
> > is blocking on
servers can be created even behind legit (but
> compromised) websites.
>
> Vadim
>
> On Oct 2, 2019, at 10:04, Blason R wrote:
>
> Block 443? Not even possible since most of the portals/web servers now a
> days works on TCP/443
>
> On Wed, Oct 2, 2019 at 6:57 PM
Thats a nice starting point -
https://www.nginx.com/blog/using-nginx-as-dot-doh-gateway/
But still looking for any client utility so that users can not shutdown or
can not suspend the service
On Mon, May 11, 2020 at 12:18 PM Blason R wrote:
> Hmm- Any docs on configuring DOH Proxy?
>
&g
counts on Win - create
> policies.
>
> BR,
> Vadim
>
> On May 10, 2020, at 23:52, Blason R wrote:
>
> Thats a nice starting point -
>
> https://www.nginx.com/blog/using-nginx-as-dot-doh-gateway/
>
> But still looking for any client utility so that users can not
?
Thanks & Regards
Blason R
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
um 06:14 schrieb Blason R:
> > I am seeking solution for our below problem and wanted to know if any
> > open source option can help us here?
> > We have our internal DNS RPZ firewall built on BIND9. Due to the current
> > situation since all users are working f
Hmm- Any docs on configuring DOH Proxy?
On Mon, May 11, 2020 at 11:56 AM Daniel Stirnimann <
daniel.stirnim...@switch.ch> wrote:
>
>
> On 11.05.20 08:18, Vadim Pavlov via bind-users wrote:
> > The main issue that bind does’t provide an authentication method. So in
> > any case you somehow should
ordinary user does not want to configure BIND. Some smart
> installer might be enough.
>
> Regards,
> Petr
>
> On 5/11/20 6:14 AM, Blason R wrote:
> > Hi Folks,
> >
> > I am seeking solution for our below problem and wanted to know if any
> open
> &
Hi,
Keen to know if rndc addzone functionality can be used to add zones in bind
serving response-policy? If so then what would be my view? Do I need to
define my view to make it work?
I tried this and its failing hence wondering if rndc can be used to add
zone or delete zone on the fly?
Here is
Hi all,
I have bind BIND 9.18.17-1+ubuntu22.04.1+isc+1-Ubuntu (Extended Support
Version)
And I am facing this weird issue. Somehow eportal.incometax.gov.in site is
not getting resolved through DNS.
I tried a lot but unfortunately the issue still persists.
Here are packet capture logs.
does, then you know the issue is with how DNSSEC is configured on
> your server.
>
>
>
> John
>
>
>
> *From:* bind-users [mailto:bind-users-boun...@lists.isc.org
> ] *On Behalf Of *Blason R
> *Sent:* Wednesday, August 30, 2023 8:20 AM
> *To:* bind-users
> *Subject:* Fac
zone "gov.in" and
> there were some recent problems with "gov" as well.
> Please search this mailing list archive for those domains and you may find
> some useful hints, tips and information that explain and help you with your
> own problem.
>
> Cheers, Greg
>
>
Hi Guys,
I require assistance in troubleshooting the resolution issue for specific
domains that are not being resolved properly. The version of BIND I am
currently using is BIND 9.18.20-1.
TIA
Blason R
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
do I debug any queries.
On Tue, Dec 12, 2023, 00:28 Marco Moock wrote:
> Am 11.12.2023 um 23:37:36 Uhr schrieb Blason R:
>
> > I require assistance in troubleshooting the resolution issue for
> > specific domains that are not being resolved properly. The version of
> > B
101 - 130 of 130 matches
Mail list logo