Hi,
On 5/5/22 6:37 PM, frank picabia wrote:
Hi,
I've been running a Bind set up with DNSSEC for many years.
It was done following the guide at the digitalocean site.
What I don't find in a nice guide, is how to change your algorithm
to a more current one, and seamlessly make your domain
run
as Windows network
resolvers, I don't get any timeout since I get the blank response
immediately for the quad-A record (with no error as return code) and it
immediately try to resolve with single-A.
=> I know the root cause is the enablement of IPV6 on the clients and that
part of the pro
software dev to decide wether to raise an error or not in that case?)
Nicolas
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailma
zens of /64
IPv6 reverse zones, so I'm checking here in case I forgot something.
Regards,
Nicolas
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.or
ve this message in the logs.
zone /IN/internal: refresh: unexpected rcode (SERVFAIL) from
master IPv4-of-my-DNS#53 (source IPv4-of-my-DNS#0)
Regards,
Nicolas
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Le 08/11/2012 13:20, /dev/rob0 a écrit :
On Thu, Nov 08, 2012 at 09:23:05AM +1100, Mark Andrews wrote:
In message <509a8796.7060...@nryc.fr>, "Nicolas C." writes:
I have a dynamic zone on an external view, this zone is updated
with a TSIG key from outside of our network. Ther
o do it at a network-level (with iptables) but
I'm curious to know if it's possible to do it directly with bind.
Regards,
Nicolas
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind
On 03/01/2014 18:00, wbr...@e1b.org wrote:
From: Mark Andrews
After that specify a final date for them to fix their machines by
after which you will send NXDOMAIN responses. Sometimes sending a
poisoned reponse is the only way to get peoples attention.
zone "." {
type master;
file "em
On 05/01/2014 18:17, Sten Carlsen wrote:
You might also make a list of those who use the old server, send a
message (assuming the management system allows identification) that
the service goes down at a specific date in e.g. a month from that
date. And then remove it. Threats are not much worth i
in production in my campus.
If you can read french, I wrote an article about it :
https://conf-ng.jres.org/2013/document_revision_1437.html?download
Feel free to ask me (or the isc-dhcp-users list) if you need help.
Cheers,
Nicolas
___
Please visit ht
Hi,
When I configure my named to forward to our corporate DNS
servers (10.0.0.2 and 10.0.0.3), I end up getting error
messages such as
Dec 17 20:58:06 dns-server named[843946]: fetch: www.canonical.com/A
Dec 17 20:58:06 dns-server named[843946]: fetch: com/DS
Dec 17 20:58:06
kQWXaBcBo//NUX2asBLus8S7sJ9BDxpGUAsS9o+TdRlq YkIHBA==
>
> ;; Query time: 0 msec
> ;; SERVER: 127.0.0.1#53(127.0.0.1)
> ;; WHEN: Fri Dec 18 12:38:34 AEDT 2020
> ;; MSG SIZE rcvd: 395
>
> [beetle:~] marka%
>
>
>> On 18 Dec 2020, at 11:36, Nicolas Bock wrote:
>
On Fri, Dec 18 2020, John Thurston wrote:
> We have been using the ISC COPR packages for BIND on CentOS. With the
> demise of CentOS, we (along with a few other people on the planet) need
> to consider where we will move our applications.
>
> We have been completely happy with the packages provi
SES aware. It
> will need to be updated for you to validate through it.
>
> --
> Mark Andrews
>
> > On 19 Dec 2020, at 05:07, Nicolas Bock
> wrote:
> >
> > Hi Mark,
> >
> > Thanks so much for the reply. I ran this command and am
> > gett
On Sun, Dec 20 2020, Mark Andrews wrote:
>> On 21 Dec 2020, at 06:04, Matthew Pounsett wrote:
>>
>>
>>
>> On Fri, 18 Dec 2020 at 18:08, Nicolas Bock
>> wrote:
>> Thanks Mark. Am I correct then that I need to either convince the
>> administra
,
--
Nicolas
--- Makefile.in.orig 2009-06-26 02:06:42.0 +0900
+++ Makefile.in 2009-08-26 16:49:41.0 +0900
@@ -53,7 +53,7 @@
$(SHELL) ${top_srcdir}/mkinstalldirs ${DESTDIR}${mandir}/man1
install:: isc-config.sh installdirs
- ${INSTALL_SCRIPT} ${top_srcdir}/isc-config.sh ${DESTDIR
ildcard
I tried many combinations of this line, and the only allowed syntax so
far is :
deny "*" wildcard "*";
which I guess means "No one won't update anything".
1 : It is doable to achieve such a filter?
2 : If yes, may someone suggest the correct syntax?
Thank
Hello All,
I have been migrated from Bind 9.8 to 9.11
Some big changes on the new version.
I have a zone file common for two views (one internal & one with recursion ON)
I have removed the file option in the zone configuration and I can now share
the same zone on the two views.
I suspect the z
two views is only to allow recursion on our internal ip’s.
> Le 17 juin 2018 à 21:04, Evan Hunt a écrit :
>
>> On Sun, Jun 17, 2018 at 05:32:34PM +0000, Nicolas Breuer wrote:
>> I have removed the file option in the zone configuration and I can now share
>> the same zon
1000x thanks Evan for your advises.
I will try to modify the configuration with the allow-recursion options.
-Message d'origine-
De : Evan Hunt [mailto:e...@isc.org]
Envoyé : dimanche 17 juin 2018 22:59
À : Nicolas Breuer
Cc : bind-users@lists.isc.org
Objet : Re: TR: Slave
ailto:e...@isc.org]
Envoyé : dimanche 17 juin 2018 22:59
À : Nicolas Breuer
Cc : bind-users@lists.isc.org
Objet : Re: TR: Slave Zones for Bind 9.11
On Sun, Jun 17, 2018 at 07:10:11PM +, Nicolas Breuer wrote:
> I’m not using the in-view.
> So, per default this is copied into memory In c
21 matches
Mail list logo
