t all the bits are significant.
server 0.0.0.0/0 { edns no; };
server ::/0 { edns no; };
But why do you need to turn off EDNS? Its almost always not what is needed.
Mark
> But does not seem to work
>
> Any other options?
>
> Thanks
>
> Harshith
--
Mark Andrews, ISC
1 Se
. Or add a counter to the rdataset and once so many queries
for the rdataset have been made just prefetch it. This will cause
the ttl to be renewed and desyncronise down stream caches. Or both.
> - Kevin
>
>
>
>
> -Original Message-
llion clients each with a local
cache they all expire the record simultaniously and if it is a
popular address then you get a million DNS queries in the second
after the ttl has expired as all those local caches refresh.
This is a attempt to distribute the query load from those caches
uniformly rather
://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742
liberty to obtain a little temporary
> safety deserve neither liberty nor safety. -- Benjamin Franklin, 1759
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users mailing list
> bin
r this domain
> key-directory "keys";
> auto-dnssec maintain;
> };
>
>
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users mailing list
In message
, rams
writes:
>
> Greetings...!
> Is any one explain how to break trusted chain in dnssec with example how to
> create zone or data with trusted chain break.
>
> Thanks & Regards,
> ramesh
You have a delegation without a DS record.
--
Mark Andrews,
om the
server and strips out the most of the DNSSEC records prior to
editing. Really large changes need to be done in smaller chucks
but for day to day changes it should be not significantly different
from what is currently being done and you don't have to remember
to update the serial.
Mark
sdns-06.net.
;; Received 209 bytes from 205.251.196.138#53(ns-1162.awsdns-17.org) in 100 ms
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org
___
Please visit https://l
h3VLL
> =WiA/
> -END PGP SIGNATURE-
>
>
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.is
& Regards,
> Ramesh
named :-)
By hand: 'nec3hash' and a little knowledge of the zone's structure.
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org
_
In message , Jay
Ford writes:
> On Sat, 25 Jun 2016, Mark Andrews wrote:
> > The servers for webfarm.dr.hrsa.gov are not EDNS and DNSSEC compliant.
> > They are returning FORMERR to queries with EDNS options. Unknown
> > EDNS options are supposed to be ignored (RFC 6
ut it doesn't say it's bogus.
>
> If anybody can spot something broken for www.hrsa.gov, I'd be very glad to
> hear about it.
>
>
> Jay Ford, Network Engineering Group, Information Technology Service
> 2001:dcd:1::7.53: 33940% [1au] A?
> example.com. (48)
> 21:04:34.146521 IP 1.1.1.1.58822 > 2.2.2.2: 55501% [1au] A? example.com.
> (48)
>
>
> My question is how to config named to only using v4 address to query other
> nameserver, but still keep an listening v6 addres
nes once the cache TTL of the queried record expires. We can
> reproduce it with the latest patch levels of both 9.10 and 9.9.
> >
> > Regards,
> > Thomas
> >
> >
> > [1]
> http://intodns.com/geo.office365.com__
-
> Ron Wingfield,
> CEO WaterMark Marine Industries, Inc.
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users ma
site that a NS rrset exists at the name. It the
prerequiste fails you will get a error.
> Best regards,
>
> --
>
> *CS Catalin LEANCA*
> ICI ROTLD - Serviciul Tehnic
> Bd. Maresal Averescu 8-10,
> Sector 1, Bucuresti
> Mobil: +40 744 81
--
Mark Andrews, ISC
1 S
>
> https://source.isc.org/cgi-bin/gitweb.cgi?p=bind9.git;a=blobdiff;f=bin/named
> /control.c;h=b1b744f2ceabf4bdeb706e3c5f145adc0d6a0843;hp=aacb0884fde0a85b386
> 0f37c70714bde1e49ac22;hb=3bbb17429d53ba42ef9356c9b5dfcbf5d9647fcc;hpb=6cd768
> 47a19cbafadad349fd90a216e8807bc461
&g
me: 0 msec
> ;; SERVER: 127.0.0.1#53(127.0.0.1)
> ;; WHEN: Wed Jun 8 15:24:09 2016
> ;; MSG SIZE rcvd: 85
>
> ------
> --
Which is correct for that zone.
Try &quo
out 10 Gig. Didn't expect that.
Some mallocs use mmap to work past datasize limits.
> Appreciate anyone aware of a config setting that would
> limit usage.
> Many thanks!
> John
>
>
> John Murtari - jm5...@att.com<mailto
assertion failure)
>
>
> Would love to assist in troubleshooting in any way we might be able to.
>
> Benjamin
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users
In message , Alan Clegg writes:
> On 5/16/16, 6:30 PM, "Mark Andrews" wrote:
>
> >Ideally every machine should be registering its own PTR record in
> >the DNS and addresses without machines shouldn't have PTR records.
> >The only reason ISP did this is t
bnet.
> >
> > This is silly. Don't do this.
>
> Why?
>
> Most ISPs set up reverse & forward domain names for pool addresses.
> OK, I'm not an ISP, but it really seems to be a widely accepted and
> endorsed policy, to the point that addresses not ha
t I
> can get more detail of what specifically the DNS slave server is trying to
> update the master with (maybe via more verbose output on the slave itself)?
>
> Master BIND version: BIND 9.8.2rc1-RedHat-9.8.2-0.23.rc1.el6_5.1
> Slave BIND version: BIND 9.8.2rc1-RedHat-9.8.2-0.17.rc
w up outbound connections.
Mark
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from th
If you want to delegate space to another server DELEGATE it. Add
NS records for the other server. Forward "zones" are NOT designed
to do this. Doing actual delegations is *not* hard and works with
every server in the world.
Mark
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley
ries is a bad idea as most machines actually
have a addresses (loopback and linklocal) so just about every
application makes queries. If you drop queries you slow
up every address lookup in your network.
Mark
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NS
on the slaves named.conf.
>
> Thank you.
>
> On May 6, 2016, at 8:26 PM, Mark Andrews
> mailto:ma...@isc.org>> wrote:
>
>
> Stop with this "myzone.com<http://myzone.com>" garbage. IT DOES NOT
> HELP. You almost
> certainly have a typo which we
/myzone.com.db";
> notify yes;
> allow-transfer { intnameservers; };
> allow-update { key "DHCP_UPDATER"; };
> };
>
> Slaves Configuration:
> zone "wfme2106.com.br<http://wfme2106.com.br>" {
> type slave;
> file "/usr/local/etc/namedb/slav
tcpdump -n \( host a.root-servers.net or host b.root-servers.net \) and dst
port 53
fill in with the rest of the root servers names.
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org
for the zone
but doesn't have a current copy.
You could use whois to try to contact the administrators of these
zones to correct the servers or remove the delegations.
Mark
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET:
one files
>
> grep Y \
>/var/chroot/named/namedb/master/example.com.zone \
>/etc/named/namedb/master/example.com.zone
> (empty)
>
> It's official. This is driving me nuts.
>
> Jason
> _
gt; Mark Boolootian
> UC Santa Cruz
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listin
*dlzname, unsigned int argc, char
*argv[],
dlz_destroy(cd);
/* return error */
- return (ISC_R_NOMEMORY);
+ return (result);
}
void
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: ma
c-validation auto;" so
you are not depending upon dlv for all your validation. The root
was signed years ago.
Secondly have you changed firewall setting lately?
Thirdly check you logs. Look at packet traces of port 53 traffic.
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, A
that.
>
> Why was the journal not written to the zone file on exit? That's
> something named DOES do.
It depends on how named is stopped. "rndc stop" will write out the
zone file as will "kill -TERM". "rndc halt" doesn't. In either
case the journ
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
--
Mark Andrews, ISC
1 Seymour St.,
e
> from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this
; resolving dlb.g5.letvlb.com/ for client 127.0.0.1#53325:
> non-improving referral
>
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users
In message <56fbbe83.6080...@imperial.ac.uk>, Phil Mayers writes:
> On 30/03/2016 12:25, Mark Andrews wrote:
>
> > The recent change was to record and return the learnt case of
> > ownernames (to the RRset level) rather than use whatever was used
> > to build the r
In message <56fbb385.5070...@imperial.ac.uk>, Phil Mayers writes:
> On 30/03/16 01:19, Mark Andrews wrote:
> >
> > Your monitoring probe is broken.
> >
> > STD 13 says that that the DNS is case preserving. The problem is
> > that lots of servers aren&#
lease visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW
; ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
--
Mark Andrews, ISC
1 Sey
ny.
> --
> f.anthony.n.finchhttp://dotat.at/ - I xn--zr8h punycode
> Fair Isle, Faeroes: South or southwest 5 or 6, occasionally 7 later. Moderate
> or rough, occasionally very rough. Rain or showers. Moderate or good,
> occasionally poor.
> ___
> Please vi
YKvzz/4KXf8ABO3VpPFupfEbwHps2rWerObjXdHtYvMuIJ2+
> /cwoBmRJDy6AF1clwGVm8vyf4D/8FUPid8FvDUGiyyaT4u0uyHlQDVkka7tlXgRidGBZR/00DsOA
> CAAK+jzXLf7chDH4GS5rWlFvbr9+vXRrVHm4PFfUJPD4hO17pn6yMwRSzHCjkk9q+M2/4LCabrfx
> gXwr4c8D3Wvx3msLpGnX6askceoF5hEkyr5RwjEhhk/dIJx0Hyz+0H/wUp+Jn7R+hyeH
--no-create is for when you want to tinker with the final results built
into config.status prior to building the Makefiles.
I've committed changes to no run "make clean" if --no-create is set.
Mark
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE:
uot;us-ascii"
> MIME-Version: 1.0
> Content-Transfer-Encoding: 7bit
> Content-Disposition: inline
>
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users ma
In message
, =?UTF-8?B?56We5piO6YGU5ZOJ?= writes:
> At Sat, 05 Mar 2016 07:23:46 +1100,
> Mark Andrews wrote:
>
> > There is nothing strange here beyond a missing delegation.
>
> I'm not opposed to this conclusion itself, but:
>
> > > If so, I agr
> JINMEI, Tatuya
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
he zone to be fully re-signed now irrespectived
of when the records are due for re-signing.
> Mathew Eis
> Northern Arizona University
> Information Technology Services
>
> -----Original Message-
> From: Mark Andrews
> Date: Thursday, February 25, 2016 at 5:14 PM
> T
uld be a better way was that the "best" approach?
> ( Even better, it seems like named could automagically correct for this
> particular problem if we can put it on the wishlist ;-) )
>
> Thoughts?
>
> Thanks in advance,
>
> Mathew Eis
> Northern Arizona Un
In message , Mathew Ian Eis write
s:
Illegal character '-' in input file.
> Hi BIND,
>
> Ive encountered (quite by accident) an interesting behavior in BIND with
> wildcard domains:
>
> The relevant configuration is a zone; e.g. bar.com, with what Ill call a
> second level wildcard host, e.g. *.fo
any downside if I
> don't have PTR records in my zone files?
>
> David
>
>
>
>
>
> On Mon, Feb 22, 2016 at 4:04 PM, Mark Andrews wrote:
> >
> > This is named trying to talk to nameservers over IPv6 and being
> > told by the OS that they are
;>
> >> Any idea why it's denied?
> >
> > VM1 has the option:
> >
> > allow-query {
> >10.4.1/24;
> > 127.0.0.1;
> > };
> >
> > 10.4.3.101 isn't in 10.4.1/24. The slave has to be allowed to query t
n (NXDOMAIN) - Garbage Out (NXDOMAIN).
> Alternatively, I can have a local query for this and flush cache if error cod
> e is NXDOMAIN, but is hacky.. I would like a config option
>
> ___
> Please visit https://lists.isc.org/mailman/list
__
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
--
M
t; Another question: Is it just the master and slave zone types that
> bypass the recursive-clients limit?
They don't bypass. The query gets answered without needing to recurse.
> Presumably forward and stub types
> still come up against the limit b/c BIND still has to track a back
In message
, John
Miller writes:
> On Thu, Feb 18, 2016 at 5:06 PM, Mark Andrews wrote:
> > For some reason people are afraid to slave internal zones. Back
> > when I was working for CSIRO I used to slave all the internal zones
> > for all of the sites the div
rndc.
> Tom Schulz
> Applied Dynamics Intl.
> sch...@adi.com
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https:
volume and wide variety of lookup
> s they generate. And the typical OS-level caching mechanisms (nscd, etc.) don
> 't usually help much, I don't believe, since many of the lookups are for MX r
> ecords which, AFAICT, nscd and friends don't cache.
>
>
es
where as humans tend to stop doing external lookups when they know
the external links are down.
Mark
> John
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users maili
onds
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
--
Mark Andrews, ISC
e
manufacture is not on the list, contact the manufacture and ask
them to provide a status update.
The list may have a lot of "affected if run on a vulnerable OS"
responses. For most of these the solution will be "fix the OS,
relink if statically linked, and reboot the machine&
In message , Barry
Margolin writes:
> In article ,
> Klaus Darilion wrote:
>
> > On 08.02.2016 20:49, Mark Andrews wrote:
> > > With a modern nameserver that supports the expire edns option you can
> > > also do "dig +expire soa zone @server" which
t didn't need to transfer any changes.
>
> Thanks for the info
> Klaus
>
>
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users mailing l
In message <56b7cdfb.5070...@tnetconsulting.net>, Grant Taylor writes:
> I know that this is an older thread, but I've been holding onto it for a
> while with the intent of asking a related question.
>
> On 08/10/2015 12:12 PM, Mark Andrews wrote:
> > Authoritative
%
And a example of a shared master file being processed cleanly.
% cat shared.conf
zone "a" IN {
type master;
file "x";
};
zone "b" {
type master;
file "x&
> resolving forwarded local zones (non-existing TLD), however, above
> example should make the question more obvious.
>
> Thanks for any input.
>
> Cheers,
> Thomas
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
Services
> mathew@nau.edu
> (928) 523-2960
>
>
>
>
>
>
>
>
> -Original Message-
> From: on behalf of Mark Andrews
>
> Date: Monday, August 10, 2015 at 11:12 AM
> To: Gary Carr
> Cc: "bind-us...@isc.org"
> Subject: Re: sepa
from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
Presumably you have a zone which which has pri/null.zone as a slave
or you have a global/view level dynamic updating of all master zones
turned on as just shar
chor-file: root.anchors.txt" to unbound.conf
> (Confirm the authenticity of the root dnskey/KSK from
> https://dnssec.co.za and other sources)
>
> DNSSEC Signing your Zones is easy enough but I've never tried to sign an
> Internal and External version of the same Zone. Why c
de auto;
> listen-on-v6 { ::1; 2001:19f0:6c00:8141:5400:ff:fe05:5309;};
> listen-on { 127.0.0.1; 108.61.190.64;};
> max-cache-ttl 1600;
> version none;
> auth-nxdomain no;# conform to RFC1035
> al
kconfig: 345 55 45
> # description: named (BIND) is a Domain Name Server (DNS) \<=
> /p>
> # that is used to resolve host names to IP addresses.
> # probe: true
>
> # Source function library.
> . /etc/rc.d/init.d/functions
>
> # Source networking configuration.
> . /etc/sysconfig/n
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NS
em in place.
>
> Thank you
> Best regards
> Stefano
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to
> unsubscribe from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.is
Mark Andrews writes:
>
> Mark Andrews writes:
> >
> > And whomever added underscorechar() to that should be shot. There
> > are good reasons to be able to distingish hostnames from other sorts
> > of text. Adding '_' doesn't help one d
Mark Andrews writes:
>
> And whomever added underscorechar() to that should be shot. There
> are good reasons to be able to distingish hostnames from other sorts
> of text. Adding '_' doesn't help one do that as it is impossible to
> distinguish und
return (0);
> }
> pch = ch, ch = nch;
> }
> return (1);
> }
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to
>
the data returned.
> If you're of a sensitive disposition I'd avoid digging (pardon the pun)
> into the minutiae of the zone surrounding those records e.g. enclosing
> SOA - they're very seriously odd.
>
> Cheers,
> Phil
> __________
my need to fix their nameservers. The NS records need to be
made consistent. There needs to be address records for the nameservers.
Mark
> -Original Message-
> From: Mark Andrews [mailto:ma...@isc.org]
> Sent: Wednesday, November 18, 2015 6:26 PM
> To: Elias Ahmed Kamal
> Cc
ORITY: 1, ADDITIONAL: 0
> ;; WARNING: recursion requested but not available
>
> ;; QUESTION SECTION:
> ;ns1.wip.fis.com.my.IN A
>
> ;; AUTHORITY SECTION:
> wip.fis.com.my. 3600IN SOA ns1.wip.fis.com.my. webmaster
> . 2015111825 16384 2048 104
In message <564be747.40...@tnetconsulting.net>, Grant Taylor writes:
> On 11/17/2015 03:22 PM, Mark Andrews wrote:
> > Given the root zone is signed and most of the TLD's are also signed
> > there is little a rogue operator can do besides causing a DoS if
> > y
In message <564ba6e9.2050...@hireahit.com>, Dave Warren writes:
> On 2015-11-17 14:13, Mark Andrews wrote:
> > In message <564ba3e3.9060...@hireahit.com>, Dave Warren writes:
> >> On 2015-11-16 18:09, Grant Taylor wrote:
> >>> It's my understan
nd-users to unsubscribe
> from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: ma...@isc.o
mine the query stream and the
answer stream because named both consolidates multiple queries and
caches negative answers.
Mark
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org
_
r.
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
Did you remember to restart named?
B.T.W. that is a very old version of named.
Mark
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org
___
Please visit https
local. For the public side you can filter out
the ULA and RFC 1918 addresses.
>
> [1] http://fmepnet.org/osx_dyndns.html
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from th
In message <563c3477.6070...@tnetconsulting.net>, Grant Taylor writes:
> On 11/05/2015 03:44 PM, Mark Andrews wrote:
> > You may want to add a "_dns-update._udp.example.net SRV" record
> > pointing to the nameservers as someone convinced the router vendor(s)
> &
In message <563c015c.1020...@gmail.com>, Kenneth Lakin writes:
>
> On 11/05/2015 04:32 PM, Mark Andrews wrote:
> > RPZ zones are hooked deeper into the view than just a single
> > attachment point. There is lots of auxillary data that needs to
> > be built and mai
n v1 and v2,
> but remove the response-policy block from v1 and v2 and move it into
> zone-defs, named-checkconf and BIND both accept the config file, but
> -naturally- RPZ does not work for the v1 and v2 views.
>
> Unrelated to all that, remember how we can have RPZ master zones in
't want to buy a router you can use a Linux or BSD box
and configure the DHCP client to update the nameserver on renumbering.
I did that for many years with FreeBSD with two ethernet card,
running named and ISC's dhcp client using the dhcp client hooks.
Mark
> On Wednesday 04 Novemb
his functionality.
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-use
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117,
ding: 7bit
> Content-Disposition: inline
>
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users mailing list
> bind-users@list
ind of messages are required by the client to be sent towards
> server to determine if the DNS IP is reachable or not?
Ask your application vendor. They dreamt up this scheme. No one
here can help you beyond they will be DNS messages.
> Thanks
> Harshith
--
Mark Andrews, ISC
1 Seymou
S IP is reachable or not?
>
> what is your problem?
My bet this a question from some course that Harshith has been
requested to answer.
Mark
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org
ely notify the
> sender by reply e-mail and destroy all copies of the communication and
> any attachments.
>
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org
___
limpse, it's peripheral; mere fragments
> of mad-doctor chrome, confining themselves to the corner of the eye.
All protocols that use SRV do. It's the operators that decide the
port to put in the SRV record, not the protocol.
Mark
--
Mark Andrews, ISC
1 Seymour St., Dundas Vall
701 - 800 of 2419 matches
Mail list logo
