I have a Master BIND9 server with 2 active (up) interfaces eth0 and eth1.
I need my zone update notifications and zone transfer to use eth1 instead of
eth0 which is currently using.
How can I change this behavior while still having the server listen on eth0?
Michael DiMartino | Director of IT
I have a Master BIND9 server with 2 active (up) interfaces eth0 and eth1.
I need my zone update notifications and zone transfer to use eth1
instead of eth0 which is currently using.
How can I change this behavior while still having the server listen on
eth0?
Have a look at the listen-on,
Since .org was recently DNSSEC-signed
(http://www.afilias.info/afilias+signs+org+zone), my guess would be that
you have a firewall, an intrusion-prevention device, or somesuch, that
is dropping the packets because it doesn't understand the DNSSEC records
contained in them.
Never mind, reading that press release more deeply, it looks like
they're in a _limited_ testing phase right now. Shouldn't affect you
directly.
Possibly they're having problems with their testing that might have
indirect effect on resolvability.
On Wed, 3 Jun 2009, Kevin Darcy wrote:
Kevin Darcy wrote:
Since .org was recently DNSSEC-signed
(http://www.afilias.info/afilias+signs+org+zone), my guess would be that you
have a firewall, an intrusion-prevention device, or somesuch, that is
dropping the packets because it doesn't
Thank both of you.
Kevin, you're right. We have a Checkpoint firewall which is configured to do
some kind of DNS
protections using SmartDefense; it is called protocol enforcement and can be
UDP or TCP. We have
UDP protection enabled; its description is the following one (Copypaste from
Hoping I can get a walk through in simple terms, but also a pointer to
some docs where I can dive into the details. I think I am finding
what I want in the docs, but those docs come up 404 since the isc site
changed things a bit, from there, I generally can not locate the old
doc file.
On Wed, 3 Jun 2009, Scott Haneda wrote:
Hoping I can get a walk through in simple terms, but also a pointer to
some docs where I can dive into the details. I think I am finding what
I want in the docs, but those docs come up 404 since the isc site
changed things a bit, from there, I
On Jun 3, 2009, at 11:53 AM, Scott Haneda wrote:
Hoping I can get a walk through in simple terms, but also a pointer
to some docs where I can dive into the details. I think I am
finding what I want in the docs, but those docs come up 404 since
the isc site changed things a bit, from
ScottH Given an ip of 64.84.37.2
ScottH $dig -x 64.84.37.2
ScottH 2.37.84.64.in-addr.arpa. 3589 IN PTR
capone.hostwizard.com.
ScottH $dig 37.84.64.in-addr.arpa NS
ScottH 37.84.64.in-addr.arpa. 3538IN NS ns1.nacio.com.
ScottH
Thank you for your other answers, I will read those and test them
after this reply..
On Jun 3, 2009, at 12:02 PM, Jeremy C. Reed wrote:
Hoping I can get a walk through in simple terms, but also a pointer
to
some docs where I can dive into the details. I think I am finding
what
I want in
ORG uses NSEC3 rather than NSEC. It would be interesting
to see if you can get responses from .SE or not with the
setting enabled. SE uses NSEC which has been around years
longer than NSEC3.
Mark
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW
In message 20090603165304.ga28...@csy.ca, Shane Wegner writes:
Hello,
I am looking at setting up tkey between master and slave
nameservers but have been unable to find documentation on
how to get this going properly. In the bind9 manual, there
is a whole section on TSIG and setting up
In article h061r8$q8...@sf1.isc.org,
Michael Di Martino m...@openaccessinc.com wrote:
I have a Master BIND9 server with 2 active (up) interfaces eth0 and eth1.
I need my zone update notifications and zone transfer to use eth1 instead o=
f eth0 which is currently using.
How can I change this
Michael Di Martino wrote:
I have a Master BIND9 server with 2 active (up) interfaces eth0 and eth1.
I need my zone update notifications and zone transfer to use eth1
instead of eth0 which is currently using.
How can I change this behavior while still having the server listen on
eth0?
15 matches
Mail list logo
