Difference between delegation and forward zone

Hello, I would like to check if my understanding is correct regarding delegation and forward Delegation: I want to delegate the administrative tasks to someone else for one subdomainsubdomain1.mydomain.orgI'll specify the NS of that subdomain1.mydomain.org in my mydomain.org zone fileThe other

Re: Difference between delegation and forward zone

In article , "McDonald, Daniel (Dan)" wrote: > Yes, you can forward to a subdomain. Just define it as a separate zone and > include the forwarders and forward-only lines. I believe you need >

Re: Difference between delegation and forward zone

Yes, you can forward to a subdomain. Just define it as a separate zone and include the forwarders and forward-only lines. I believe you need allow-query-cache for this to work. Delegated zones don’t necessarily need to respond with SOA and NS records. Many load balancers use delegated zones

Re: Difference between delegation and forward zone

Barry: "Also, if there are no delegation records for the subdomain, the parent server believes it's authoritative for them, despite having forwarders configured." I don't understand what you just wrote above. Are you saying I need to do both delegation and forwarding on my authoritative server

Adding/removing name servers under DNSSEC

Hi BIND, Hoping someone in the community will have experience with this. We are looking to migrate off a set of nameservers to another set of nameservers. For all practical considerations, both sets of servers are slave to the same hidden master, which yields interesting considerations that

Re: Adding/removing name servers under DNSSEC

To clarify this step *You update the NS records (parent and child)* - you add NS records for new nameservers to parent and child (at approximately the same time), but do not remove NS records for old nameservers (until after all cached records expire). Is this correct? As to serving the same

status openssl v1.1 support?

In Bind 9.11.0-P3's "CHANGES" grep -i openssl CHANGES | grep "1\.1" 4129. [port] Address API changes in OpenSSL 1.1.0. [RT #39532] seems the bug DB is private/closed, so can't see the status of that^. Trying to build against openssl v11x fails @ configure

Re: Adding/removing name servers under DNSSEC

In message , Mathew Ian Eis writes: > To clarify this step *You update the NS records (parent and child)* - you > add NS records for new nameservers to parent and child (at approximately > the same time), but do not remove NS records for old

Re: Adding/removing name servers under DNSSEC

In message <924327f5-6d1d-49f4-80c1-b1a2c539f...@nau.edu>, Mathew Ian Eis writes: > Hi BIND, > > Hoping someone in the community will have experience with this. > > We are looking to migrate off a set of nameservers to another set of > nameservers. For all practical considerations, both sets of

Re: status openssl v1.1 support?

OpenSSL 1.1 support is in the upcoming maintenance releases which are available on the ISC web site Mark -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org

Re: Difference between delegation and forward zone

In message <1993722142.5470245.1488838862...@mail.yahoo.com>, Mik J via bind-users writes: > > > Barry: "Also, if there are no delegation records for the subdomain, the > parent server believes it's authoritative for them, despite having > forwarders configured." > I don't understand what you