Dear Users,
I have a low end server with 1 GB of RAM running GNU/Linux version 3.4.104. I
noticed that after a certain time the swap space is extensively used. This is
normally not an issue but sometimes the system has long response times. I
noticed that "named" is using a lot of memory. So I
/01/16 13:54, MAYER Hans wrote:
> As you can see "named" is using 842 MB physical and 982 MB virtual
> memory. Much more than configured.
Well, bind will use memory for things other than cache.
Try accessing the statistics XML channel over HTTP with a browser; it'll render
to H
Hi Steven,
Many thanks for your answer.
Isn’t there a flag or option to say handle all sub-zones like normal A or CNAME
records too ?
// Hans
> On 6 Jul 2017, at 15:05, Steven Carr <sjc...@gmail.com> wrote:
>
> On 6 July 2017 at 12:29, MAYER Hans <hans.ma...@
Dear All,
In my environment we have internal DNS servers and 6 external server all
running BIND.
4 of these 6 are located in our network. These are slaves for our domain and
fetching the data from one internal server.
And the remaining 2 are maintained by our ISP and doing a zone transfer
Dear All,
We are using response-policy zones as a service from spamhaus.org
This is used for web access as well as for SMTP ( incoming and outgoing )
Actually this worked fine over years.
Now we have the situation if I dig www.airindia.in I get as result
;; ADDITIONAL SECTION:
Hi Tony,
Many thanks for the hint.
My mistake: no dot at the end in the domain name for the passthru statement.
Kind regards
Hans
--
-Original Message-
From: Tony Finch [mailto:d...@dotat.at]
Sent: Monday, October 9, 2017 12:09 PM
To: MAYER Hans <hans.ma...@iiasa.ac.at&
Dear All,
My environment: We are using the latest version of BIND and DHCP from ISC. Our
workstations ( mostly Windows and some Mac ) are in certain networks. Only
these networks are allowed to do dynamic DNS updates. So when a PC is switched
on its IPv4, IPv4 reverse, IPv6 and reverse is
Dear Mukund,
Many thanks for coming back.
> You'll have to explain what you mean better for a more specific answer,
> but see the manual for the "allow-update" ACL config option
In my zone configuration I have an “allow-update” statement.
Here I define all networks which are allowed to
c'
> dns entries are not overwritten by dynamic (dhcp) client.
>
> http://www.zytrax.com/books/dns/ch9/dhcp.html
>
>
> Philippe
>
>
>> -Original Message-
>> From: bind-users [mailto:bind-users-boun...@lists.isc.org] On Behalf Of
>> MAYER H
Hi Grant,
Many thanks for the detailed information.
"update-policy” is new for me and maybe the solution.
I have to dig deeper into the documentation.
> update-policy { grant *.fx.movie.edu. self fx.movie.edu. A; };
What does it say ?
So far I have seen the client is only
17, at 22:35, Dirk Gottschalk via bind-users
> <bind-users@lists.isc.org> wrote:
>
> Hello Hans,
>
> Am Mittwoch, den 20.12.2017, 12:39 + schrieb MAYER Hans:
>>
>> Dear All,
>>
>> My environment: We are using the latest version of BIND and D
Dear All,
My environment:
Solaris 11.4 on Sparc
gcc version 5.5.0 (GCC)
bind 9.14.2
./configure '--enable-shared' '--enable-static' '--enable-ipv6'
'--without-libjson' '--with-gssapi=/usr/bin/krb5-config'
I tried to use bind 9.14.2
So far everything is working fine except I try to query
ent: Wednesday, June 19, 2019 1:28 PM
To: Mayer Hans
Cc: bind-users@lists.isc.org
Subject: Re: version 9.14.2 core dump
Hi Mayer (and other Solaris users),
could you please try following patch:
https://gitlab.isc.org/isc-projects/bind9/merge_requests/2053.patch
on your Solaris boxes with both
Dear Tony,
Many thanks for your really very detailed answer.
I will take a look into details and let you know within the next days.
Kind regards
Hans
-Original Message-
From: Tony Finch On Behalf Of Tony Finch
Sent: Sunday, June 6, 2021 10:54 PM
To: MAYER Hans
Cc: bind-users
Dear All,
I have a strange behaviour which I can’t explain. So I am asking for help.
In my named.conf I have two views. One view is called „intern“ ( German
internally ) and the other is called „fueralle“ ( German "for everyone" )
In the internal view I have a response-policy with two zones, a
Dear All,
now BIND 9.18 is supporting DoT directly I tried to go away from a solution
with stunnel4 and therefore I compiled 9.18.1 and modified named.conf
So far everything is working fine. All the tests with dig , openssl and lsof is
showing it’s working.
The problem: when I run a „rndc
mailto:bor...@sarenet.es>> wrote:
On 21 Mar 2022, at 14:51, MAYER Hans
mailto:hans.ma...@iiasa.ac.at>> wrote:
Looking at the log I see:
network: error: creating TLS socket: permission denied
Why doesn’t named have the permissions after a „rndc reload“ but it has the
permissions a
> ond...@isc.org
>
> My working hours and your working hours may be different. Please do not feel
> obligated to reply outside your normal working hours.
>
>> On 21. 3. 2022, at 17:12, MAYER Hans wrote:
>>
>>
>> Hi Borja,
>>
>> Many thanks for th
e rest.
No, I didn’t. I gave an absolute path with a leading /
But -V didn’t show it.
As I said, „auto“ is the right option.
Mark
On 17 May 2022, at 06:09, MAYER Hans
mailto:hans.ma...@iiasa.ac.at>> wrote:
Dear All,
I posted my question originally at GitLab issue area because I
Dear All,
I posted my question originally at GitLab issue area because I thought it’s
maybe a bug. But it isn’t.
I compiled commit c77fcc61 (HEAD -> v9_18, origin/v9_18) with configure options
--enable-geoip --with-maxminddb=/usr/share/GeoIP
when i run named -V there is:
default paths:
Dear All,
dnstab is a great feature to analyse the details what’s going on. But I think
there is room for improvement.
I write the data to a file and once a day I do a log rotate.
With "dnstab-read FILE | grep IP“ I get basic information about an IP which I
am looking for.
Now getting full
Hi Peter,
many thanks for your swift feedback.
Are there some open source tools available to feed the data into a database ?
I couldn’t find anything.
Kind regards
Hans
—
> On 15.03.2023, at 23:37, Peter wrote:
>
> On Wed, Mar 15, 2023 at 09:34:40PM +0000, MAYER H
Dear All,
looking at https://github.com/isc-projects/bind9 I see there are several
branches. For example there is v9_18 and there is also bind-9.18
I am asking what is the difference ? When I checkout 'origin/v9_18‘ I get
9.18.14-dev and for'origin/bind-9.18’ I get 9.18.16-dev
So in both
23 matches
Mail list logo
