Muhammad Yousuf Khan wrote:
> Need your experience advice, We have a BIND9 DNS server that operates both
> privately and publicly for the domain example xyz.com. I use the private
> DNS for certain secure nodes on our local network. I want all VPN users to
> be able to resolve these
On 12/03/2024 12:48, Muhammad Yousuf Khan wrote:
Dear All,
Need your experience advice, We have a BIND9 DNS server that operates
both privately and publicly for the domain example xyz.com
<http://xyz.com/>. I use the private DNS for certain secure nodes on our
local network. I want a
Dear All,
Need your experience advice, We have a BIND9 DNS server that operates both
privately and publicly for the domain example xyz.com. I use the private
DNS for certain secure nodes on our local network. I want all VPN users to
be able to resolve these secure nodes using our local DNS
Le 1 juin 2023 Bonno Bloksma a écrit :
>> If you get an answer it's a dnssec problem with the error message in your
>> logs. If there is no answer it's another problem.
> Well, it seems I get an answer with the +cd option, and none without.
Yes. If I do :
# dig tio.nl A +dnssec +multiline
;
Hi,
@Tim,
If I use the dnssec-validation no; option then indeed it all works. Just tested
it again to make sure.
And as a final solution to this problem I might accept it, but I would rather
not.
@Michel,
> I reread all our mails and I miss to ask you this one (as answers via
> external dns
Le 1 juin 2023 Bonno Bloksma a écrit :
> I can do that, but ... that is only for inbound traffic TO my dns server on
> this network.
> That part is working without any problem. Changing that will not change
> anything for the clients on this network.
You are right. I simply used to fix
On Thu, 1 Jun 2023, Bonno Bloksma wrote:
My bind instance can reach the company dns server buy claims the response is
false/insecure
Does that maybe mean that my bind gets a "normal" response from the company dns
whereas the external dns at toplevel .nl. (being the parent zone) tells that
Hi,
>> linbobo:~# ss -nap | grep named
>> tcp LISTEN 0 10 [2a02:a45f:96c2:1:1e69:7aff:fe0c:65e3]:53 [::]:*
>> users:(("named",pid=554,fd=78))
>> tcp LISTEN 0 10 [fe80::1e69:7aff:fe0c:65e3]%eno1:53 [::]:*
>> users:(("named",pid=554,fd=71))
>> tcp LISTEN 0 10 [fe80::33bc:2b:d928:991d]%tun0:53
Le 1 juin 2023 Bonno Bloksma a écrit :
> linbobo:~# ss -nap | grep named
> tcp LISTEN 0 10 [2a02:a45f:96c2:1:1e69:7aff:fe0c:65e3]:53 [::]:*
> users:(("named",pid=554,fd=78))
> tcp LISTEN 0 10 [fe80::1e69:7aff:fe0c:65e3]%eno1:53 [::]:*
> users:(("named",pid=554,fd=71))
> tcp LISTEN 0 10
Hi,
> resolv.conf must have only one search entry. And you don't want to resolv
> with google directly. So you should have :
Ok, I have the google dns commented. Alhough Now I remember why I had the
google dns in there. ;-)
For my machine to create the VPN it needs to know the ip number of
Le 19 mai 2023 Bonno Bloksma a écrit :
> Been a few busy week, that is why I only respond now, sory.
Same for me :/
> beheerdertio@linbobo:~$ cat /etc/resolv.conf
> domain bobo.xs4all.nl
> search bobo.xs4all.nl
> search tio.nl
> search staf.tio.nl
> search student.tio.nl
> nameserver 127.0.0.1
Hi,
Been a few busy week, that is why I only respond now, sory.
Also as there is a lot of sensitive info in this mail, like a complete lost
to domain controllers to be hacked, ;-) I am sending it direct. I will send a
redacted version to the list
>> What does +cd do? I was unable to find
Le 8 mai 2023 Bonno Bloksma a écrit :
> I also do not understand this difference when querying the internal dns
> server directly.
> Why does the +trace +cd not show an answer but when I leave them out I get a
> correct answer. Is that because +trace forces it to start at the root which is
>
dnssec-enable no;
// dnssec-validation auto;
listen-on-v6 { any; };
};
linbobo:/etc/bind# cat named.conf
// This is the primary configuration file for the BIND DNS server named.
//
// Please read /usr/share/doc/bind9/README.Debian.gz for information on the
// structure
Le 5 mai 2023 Bonno Bloksma a écrit :
> linbobo:/etc/bind# cat named.conf.local
You have only zone blocks in this file, right ?
And you don't use views ?
> Why does it first go to the public dns and then run into the dnssec problem?
> There is a direct definition for the tio.nl zone in my
Hi,
> In fact you don't resolv at all. Can you provide:
> dig einsccmdp-01.tio.nl +trace +cd
-
linbobo:~# dig einsccmdp-01.tio.nl +trace +cd
; <<>> DiG 9.16.37-Debian <<>> einsccmdp-01.tio.nl +trace +cd
;; global options: +cmd
. 430791 IN
Le 2 mai 2023 Bonno Bloksma a écrit :
> linbobo:/etc/bind# cat named.conf.local
> ---
> []
> zone "tio.nl" IN {
> type forward;
> forward only;
> forwarders {172.16.128.40; 172.16.208.10;};
> };
>
> zone "staf.tio.nl" IN {
> type
Hi,
Lots of info and log quotes. I hope you can find the "normal" text.
>> We use a different dns server(s) and zonefile for the external dns
>> environment from what we use internally. Company dns is Windows server 2016
>> incase that is relevant.
>
> It'
Le 28 avril 2023 Bonno Bloksma a écrit :
> We use a different dns server(s) and zonefile for the external dns
> environment from what we use internally. Company dns is Windows server 2016
> incase that is relevant.
It's better to use dig (package bind9-dnsutils) to first eliminate
Hello,
I have a Debian machine at my home network performing several functions. Two of
those are dns server for my network at home and a VPN server to the company
network.
To facilitate my use of the VPN to the company network I am also forwarding all
dns requests tot the company domain to the
On 2023-01-18 13:39, Jeffrey Walton wrote:
On Wed, Jan 18, 2023 at 6:25 AM Jesper Dybdal wrote:
That leaves one file in the system with the name "bind9.service":
/var/lib/systemd/deb-systemd-helper-enabled/multi-user.target.wants/bind9.service
Can I safely delete that one (I
On 2023-01-18 13:55, Greg Wooledge wrote:
On Wed, Jan 18, 2023 at 12:25:03PM +0100, Jesper Dybdal wrote:
That leaves one file in the system with the name "bind9.service":
/var/lib/systemd/deb-systemd-helper-enabled/multi-user.target.wants/bind9.service
Can I safely delete that one (I
On Wed, Jan 18, 2023 at 12:25:03PM +0100, Jesper Dybdal wrote:
> I have now, in order:
> * Disabled bind9.service
> * Corrected /etc/default/named so the named service can start (it was
> missing the chroot)
> * Stopped bind9.service
> * Started named.service and checked tha
On Wed, Jan 18, 2023 at 6:25 AM Jesper Dybdal wrote:
>
>
> On 2023-01-16 13:36, Greg Wooledge wrote:
> > On Mon, Jan 16, 2023 at 10:42:35AM +0100, Jesper Dybdal wrote:
> >> 28969163 4 -rw-r--r-- 1 root root 255 Jun 2 2016
> >> /etc/systemd
On 2023-01-16 13:36, Greg Wooledge wrote:
On Mon, Jan 16, 2023 at 10:42:35AM +0100, Jesper Dybdal wrote:
28969163 4 -rw-r--r-- 1 root root 255 Jun 2 2016
/etc/systemd/system/bind9.service
I suspect that the bind9 service ought to be removed. Is that correct
On Mon, Jan 16, 2023 at 03:51:52PM +0100, Jesper Dybdal wrote:
> I'll do that. Should I then also remove the "Alias=bind9.service" line from
> named.service?
If Debian put it there, then no. Leave it alone. It's probably just
a backward compatibility shim, from when the s
On 2023-01-16 13:36, Greg Wooledge wrote:
On Mon, Jan 16, 2023 at 10:42:35AM +0100, Jesper Dybdal wrote:
28969163 4 -rw-r--r-- 1 root root 255 Jun 2 2016
/etc/systemd/system/bind9.service
I suspect that the bind9 service ought to be removed. Is that correct?
It looks
On Mon, Jan 16, 2023 at 10:42:35AM +0100, Jesper Dybdal wrote:
> 28969163 4 -rw-r--r-- 1 root root 255 Jun 2 2016
> /etc/systemd/system/bind9.service
>
> I suspect that the bind9 service ought to be removed. Is that correct?
It looks like you (or someone ac
I'm running Buster. I then had a problem with BIND and DNSSEC, so I
upgraded my bind9 package to the one in buster-backports.
But it seems that this has involved a partial rename of the systemd unit
from bind9 to named. So I now have two almost equal systemd units. And
named.service
Hoppas någon kan ge mej ett råd.
Har i många kört en lokal dns-server som forwarder och som root för min
egen högst privata och lokala domän. Vid en av de senaste
apt-uppgraderingarna slutade dns-server att fungera fullt ut.
I probklemlösandet stöter jag på denna fråga: Ska den serverns egen
On Thu, 24 Mar 2022, Jeremy Ardley wrote:
I'm using BIND 9.16.22-Debian (Extended Support Version)
The problem is when I restart I see "sending notifies" in the log.
I have checked the configuration named.conf.local and named.conf.options and
there is no 'allow-transfer' in the
I'm using BIND 9.16.22-Debian (Extended Support Version)
The problem is when I restart I see "sending notifies" in the log.
I have checked the configuration named.conf.local and named.conf.options
and there is no 'allow-transfer' in the configuration.
example named.conf.local entry:
zone
t; /usr/lib/x86_64-linux-gnu/samba/bind9/dlz_bind9_11.so"; };
but bind9 not started:
named[3866]: samba_dlz: Failed to connect to Failed to connect to
/var/lib/samba/private/dns/sam.ldb: Unable to open tdb
'/var/lib/samba/private/dns/sam.ldb': No such file or directory: Operations
error
Grâce à votre, j'ai réussi à faire focntionner Bind9 comme je le souhaitais.
Dès que j'en aurai la possibilité, je consignerai dans ce fil, les
paramètres retenus.
À suivre
Le jeu. 25 mars 2021 à 17:56, Philippe a écrit :
> Salut la liste !
>
> Les forwarders, ce sont les IP des se
tc/bind/db.bar.lan";
>> };
Dans le sens où il manque le lien avec le fichier de zone correspondant
http://wiki.goldzoneweb.info/creation_d_une_zone
https://www.digitalocean.com/community/tutorials/how-to-configure-bind-as-a-private-network-dns-server-on-ubuntu-14-04#configure-local-file
Bind9 fonctionne aussi comme cache.
Bonne continuation,
Ph. Gras
Olivier a écrit :
> Bonjour,
>
> Je souhaite mettre en place un serveur Bind9 avec les points suivants:
>
> La machine qui héberge Bind9 est sous Buster.
> Elle possède deux interfaces Ethernet, chacune connectée à un réseau
> local (foo.lan et bar.lan).
> Elle est c
@Christophe:
Merci pour ta réponse.
J'ai essayé en déplaçant la déclaration des forwarders dans le fichier
named.conf.options mais sans plus de succès, malheureusement.
J'ai l'impression que Bind fonctionne soit comme cache, soit comme Autorité
mais pas les deux en même temps.
La doc ne disant
Le mercredi 24 mars 2021 à 14:41 +0100, Olivier a écrit :
Bonjour,
> J'ai aussi essayé, sans plus de succès, avec:
>
> zone "foo.lan" {
> type master;
> forwarders { 192.168.1.1; }; # Adresse du serveur DNS sur foo.lan
> };
>
> zone "bar.lan" {
> type master;
> file
requêtes DNS, resolv.conf vaut:
nameserver 192.168.2.1
search bar.lan
Le mer. 24 mars 2021 à 13:56, Olivier a écrit :
> Bonjour,
>
> Je souhaite mettre en place un serveur Bind9 avec les points suivants:
>
> La machine qui héberge Bind9 est sous Buster.
> Elle possède deux interfac
Bonjour,
Je souhaite mettre en place un serveur Bind9 avec les points suivants:
La machine qui héberge Bind9 est sous Buster.
Elle possède deux interfaces Ethernet, chacune connectée à un réseau local
(foo.lan et bar.lan).
Elle est client DHCP sur un réseau local (foo.lan), et fait office de
habituels dans ce répertoire
Le lun. 21 sept. 2020 à 16:41, Olivier a écrit :
> Bonjour,
>
> Je teste la possibilité de mises à jour entre un serveur ISC-DHCP et une
> instance Bind9, les deux services étant hébergés par la même machine sous
> Debian Buster.
>
> J'ai suiv
Bonjour,
J'ai un réseau local avec un EdgeRouter/X qui fait office de serveur DNS
pour le domain mydomain.lan.
J'ai un autre réseau local avec une instance Bind9 autoritaire sur ce 2ème
réseau local.
Je souhaite cascader les deux serveurs DNS ie que ça fonctionne comme suit:
- un client du 2ème
Bonjour,
Je teste la possibilité de mises à jour entre un serveur ISC-DHCP et une
instance Bind9, les deux services étant hébergés par la même machine sous
Debian Buster.
J'ai suivi les instructions de [1] mais je rencontre l'erreur :
Sep 21 16:17:54 foo kernel: [ 8867.630002] audit: type=1400
Le 26/05/2020 à 09:17, BERTRAND Joël a écrit :
RR at 'surf.homeg.lan' A 192.168.0.34
May 26 08:54:21 canoe kernel: [ 164.300678] audit: type=1400
audit(1590476061.014:21): apparmor="DENIED" operation="mknod"
profile="/usr/sbin/named" name="/etc/bind/db.homeg.lan.jnl" pid=923
Migrec a écrit :
> Bonjour,
Bonjour,
> Depuis le dernier redémarrage de mon serveur, j'ai un problème
> d'écriture des fichiers journaux de bind :
> May 26 08:54:20 canoe dhcpd[1303]: DHCPREQUEST for 192.168.0.34 from
> ac:fd:ce:c6:11:32 via enp2s0
> May 26 08:54:20 canoe dhcpd[1303]:
Bonjour,
Depuis le dernier redémarrage de mon serveur, j'ai un problème
d'écriture des fichiers journaux de bind :
May 26 08:54:20 canoe dhcpd[1303]: DHCPREQUEST for 192.168.0.34 from
ac:fd:ce:c6:11:32 via enp2s0
May 26 08:54:20 canoe dhcpd[1303]: DHCPACK on 192.168.0.34 to
ac:fd:ce:c6:11:32
ie.nerim.net systella.fr | grep systella
> ; <<>> DiG 9.10.5-P1 <<>> @noemie.nerim.net systella.fr
> ;systella.fr. IN A
> systella.fr.86400 IN SOA rayleigh.systella.fr.
> bertrand.systella.fr. 2020021201 28800 7200 60
86400 IN SOA rayleigh.systella.fr.
bertrand.systella.fr. 2020021201 28800 7200 604800 86400
Je ne sais pas sous quel OS tourne noemie.nerim.net, mais les
probabilités pour que ce serveur tourne sous un NetBSD me semblent assez
faibles.
Autre chose : noemie.neri
Le 12/02/2020 à 23:06, BERTRAND Joël a écrit :
NoSpam a écrit :
Maintenant, ce que je ne saisis pas.
legendre# dig @8.8.8.8 systella.fr | grep systella
; <<>> DiG 9.10.5-P1 <<>> @8.8.8.8 systella.fr
;systella.fr. IN A
systella.fr. 1741 IN SOA
NoSpam a écrit :
>> Maintenant, ce que je ne saisis pas.
>>
>> legendre# dig @8.8.8.8 systella.fr | grep systella
>> ; <<>> DiG 9.10.5-P1 <<>> @8.8.8.8 systella.fr
>> ;systella.fr. IN A
>> systella.fr. 1741 IN SOA rayleigh.systella.fr.
>>
Le 12/02/2020 à 19:28, BERTRAND Joël a écrit :
NoSpam a écrit :
Le 12/02/2020 à 18:33, BERTRAND Joël a écrit :
[...]
Dernière chose : il me semble qu'il existe une commande pour
obtenir le
TTL courant sur un enregistrement mais ma mémoire me fait défaut. Une
idée ?
dig et la
NoSpam a écrit :
>
> Le 12/02/2020 à 18:33, BERTRAND Joël a écrit :
>> [...]
>>> Dernière chose : il me semble qu'il existe une commande pour
obtenir le
TTL courant sur un enregistrement mais ma mémoire me fait défaut. Une
idée ?
>>> dig et la seconde entrée, avant le A ou
Le 12/02/2020 à 18:33, BERTRAND Joël a écrit :
[...]
Dernière chose : il me semble qu'il existe une commande pour
obtenir le
TTL courant sur un enregistrement mais ma mémoire me fait défaut. Une
idée ?
dig et la seconde entrée, avant le A ou est le TTL
Je me suis mal
NoSpam a écrit :
>
> Le 12/02/2020 à 16:06, BERTRAND Joël a écrit :
>> Bonjour à tous,
> Bonjour
>>
>> Petit problème avec bind9. J'ai une configuration master/slave
>> avec le
>> master sous Debian/testing et le slave sous NetBSD 8.1. J'ai rajouté
Le 12/02/2020 à 16:06, BERTRAND Joël a écrit :
Bonjour à tous,
Bonjour
Petit problème avec bind9. J'ai une configuration master/slave avec le
master sous Debian/testing et le slave sous NetBSD 8.1. J'ai rajouté un
champ sur le master en modifiant le serial pour 2020021201
Bonjour à tous,
Petit problème avec bind9. J'ai une configuration master/slave avec le
master sous Debian/testing et le slave sous NetBSD 8.1. J'ai rajouté un
champ sur le master en modifiant le serial pour 2020021201 (auparavant
2019xx). J'ai eu beau relancer les deux bind
On Fri 28/Jun/2019 22:02:52 +0200 Joe wrote:
> On Fri, 28 Jun 2019 11:44:54 -0500 Dennis Wicks wrote:
>
>> I was thinking that I could setup a nameserver on my machine
>> with enries in it for the virtual hosts and have my local
>> network address in the list of nameservers in my
>>
local
> network address in the list of nameservers in my
> modem/router, and that is where I need the help.
>
> I have installed bind9, running on buster. So how do I set
> up the name server and populate it with the info for my
> virtual hosts? Pointers to foru
the help.
I have installed bind9, running on buster. So how do I set up the name server
and populate it with the info for my virtual hosts? Pointers to forums,
cookbooks, etc. would be appreciated as well as hints and tips!
TIA!
Dennnis
First you will need to read about Apache virtual hosts here
in the
> list of nameservers in my modem/router, and that is where I need the help.
>
> I have installed bind9, running on buster. So how do I set up the name
> server and populate it with the info for my virtual hosts? Pointers to
> forums, cookbooks, etc. would be appreciated as well as hints
like this happens with the virtual hosts!
I was thinking that I could setup a nameserver on my machine
with enries in it for the virtual hosts and have my local
network address in the list of nameservers in my
modem/router, and that is where I need the help.
I have installed bind9, running
Re,
C'est mon dernier poste car il semble que ça marche.
voila les export.diff (originale, modifier)
La différence c'est le '-ljson-c':
-LIBS = -ldl -ljson-c -L../../lib/isc -L../../lib/dns
-L../../lib/isccfg -lcrypto -lisc -ldns -lisccfg
+LIBS = -ldl -ljson-c -L../../lib/isc
Bonjour,
L'un des problèmes rencontré vient de la:
-LIBS = -ldl -L../../lib/isc -L../../lib/dns -L../../lib/isccfg
-lcrypto -lisc -ldns -lisccfg
+LIBS = -ldl -L../../lib/isc -L../../lib/dns -L../../lib/isccfg
-lcrypto -lisc-export -ldns-export -lisccfg-export
Dans le fichier
Bonjour,
Mon patch n'est pas parfait: il y a des truc qui disparaissent... désolé
pour mon mail précédent.
--
Cordialement Thomas Marsaleix
signature.asc
Description: OpenPGP digital signature
I tested my suspicion that bind9-resolvconf was somehow implicated in
the bind9 start problems by returning bind9-resolvconf to its
original, disabled, state and restarting the system. Unfortunately,
it didn't help:
May 25 19:05:34 barley named[804]: /etc/bind/named.conf.options:2:
change
Bonjour/Bonsoir/Salut,
Lors de la compilation de bind9 il y a un problème au niveau du patch
'export.diff'
Voila comment j'ai résolu ce problème: https://paste.debian.net/1083449/
(j'ai juste oublié à la fin avant de relancer 'dpkg-buildpackage' de
supprimer 'build' et 'build-udeb'
Ce n'est
On Wed, May 22, 2019 at 2:47 PM Richard Hector wrote:
>
> RequiresMountsFor=/absolute/path/of/mount
>
> .. to go in the unit file - or IIRC running:
>
> sudo systemctl edit bind9.service
>
> ... and putting in:
>
> ---8<
> [Unit]
s while some of the mounts (and the
> required decryption) are still to be done?
>
> Is there some systemd way to ensure the file system is mounted before
> launching bind? But I'd think if /var weren't available, bind
> wouldn't be the only one with a problem.
Well, I don't se
/var is a separate file system, and like / it's encrypted, so it might
take a bit of time to activate it. Whether it's available when
needed, I don't know, though the error suggests it might not be.
Could systemd be launching services while some of the mounts (and the
required decryption) are
On 23/05/19 8:00 AM, Ross Boylan wrote:
> At system start, bind9 fails to start on a recently created buster
> system. Some of the local bind is based on configuration from an
> earlier bind. The logs show
> /etc/bind/named.conf.options:2: change directory to '/var/cache/bind'
&g
At system start, bind9 fails to start on a recently created buster
system. Some of the local bind is based on configuration from an
earlier bind. The logs show
/etc/bind/named.conf.options:2: change directory to '/var/cache/bind'
failed: file not found
But if I then start it manually via
aqui te va la solucion que di yo en el año 2008
saludos
whilo
- Mensaje original -
De: Ing. Eduardo R. Barrera Pérez
Para: Lista de Debian Spanish
Enviado: Mon, 18 Mar 2019 18:02:07 -0400 (EDT)
Asunto: Configurando Subdominios en Bind9
Tenemos una VPN a Nivel Nacional, donde hay muchas
Hola Eduardo,
Yo revisaria el log correspondiente en /var/log/bind el cual es bastante
especifico en el query. Borra el contenido del log, baja y sube el bind, y
observa si la zona se esta cargando sin errores. Si no hay errores, haz la
consulta y ve el resultado en caliente ...
Tenemos una VPN a Nivel Nacional, donde hay muchas empresas de todo el
ministerio y el Nodo Nacional, de momento no hace delegación de zona
internamiente hacia dentro de la VPN para nadie, por lo que actualmente
hoy ellos tienen tienen declarados en los DNS Nacionales, las zonas de
todos los
On 2/12/19, Andy Smith wrote:
> Hi,
>
> On Tue, Feb 12, 2019 at 06:40:01PM -0500, Lee wrote:
>> What are people using these days to
>> 1. have dnssec enabled lookups
>> 2. filter external dns answers
>
> I use Unbound for resolvers.
>
> I understand that Unbound can do some RPZ-like things with
Hi,
On Tue, Feb 12, 2019 at 06:40:01PM -0500, Lee wrote:
> What are people using these days to
> 1. have dnssec enabled lookups
> 2. filter external dns answers
I use Unbound for resolvers.
I understand that Unbound can do some RPZ-like things with its
local-data and local-zone directives, but
bind9 version 9.10.3-P4-Debian doesn't like my rpz configuration (that
works on 9.11.5-P1)
Before I get into figuring out how to install a backport, it looks
like bind9 isn't the preferred answer anymore - see
https://qa.debian.org/popcon-graph.php?packages=bind9_installed=on_legend=on_ticks
On Wed, Jul 18, 2018 at 11:10:44AM +0200, Paul van der Vlis wrote:
> Op 17-07-18 om 12:19 schreef Wouter Verhelst:
> > On Sun, Jul 15, 2018 at 01:38:50PM +0200, Paul van der Vlis wrote:
>
>
>
> >> O, leuk. Hier in NL heb je wat vaker een vast IP-adres dan in België
> >> denk ik. Maar hier rukt
Op 17-07-18 om 12:19 schreef Wouter Verhelst:
> On Sun, Jul 15, 2018 at 01:38:50PM +0200, Paul van der Vlis wrote:
>> O, leuk. Hier in NL heb je wat vaker een vast IP-adres dan in België
>> denk ik. Maar hier rukt het dynamische gebeuren ook op, ahum.
>
> Not sure. Op Belgacom ADSL loopt
On Sun, Jul 15, 2018 at 01:38:50PM +0200, Paul van der Vlis wrote:
> Hoi Wouter en anderen,
>
> Op 15-07-18 om 12:29 schreef Wouter Verhelst:
> > Ik had me in bovenstaande paragraaf inderdaad vergist. De glue is voor
> > de KSK, niet voor de ZSK. De ZSK kan je automatisch laten vervangen, de
> >
Hoi Wouter en anderen,
Op 15-07-18 om 12:29 schreef Wouter Verhelst:
> Ik had me in bovenstaande paragraaf inderdaad vergist. De glue is voor
> de KSK, niet voor de ZSK. De ZSK kan je automatisch laten vervangen, de
> KSK niet (daarvoor moet je de glue idd updaten).
Ook dat kan tegenwoordig
On Fri, Jul 13, 2018 at 09:24:44PM +0200, Paul van der Vlis wrote:
> Op 13-07-18 om 15:17 schreef Wouter Verhelst:
> > On Wed, Jun 27, 2018 at 02:04:37PM +0200, Paul van der Vlis wrote:
> > De échte manual van bind is de "Administrator's Reference Manual":
> >
> >
Hallo Wouter en anderen,
Bedankt voor je opmerkingen.
Ik zal na de tekst van Wouter reageren:
Op 13-07-18 om 15:17 schreef Wouter Verhelst:
> On Wed, Jun 27, 2018 at 02:04:37PM +0200, Paul van der Vlis wrote:
>> Hoi,
>>
>> Ik ben bezig met het implementeren van DNSsec en r
On Wed, Jun 27, 2018 at 02:04:37PM +0200, Paul van der Vlis wrote:
> Hoi,
>
> Ik ben bezig met het implementeren van DNSsec en rndc op bind9 voor een
> authoritatieve nameserver.
Jeuj.
> Rndc is een tool van bind om domeinen toe te voegen (eerder gebruikte ik
> hiervoor eigen
Op 27-06-18 om 14:04 schreef Paul van der Vlis:
> De manuals die ik vind op internet over Bind zijn vaak oud of van
> slechte kwaliteit. Degene die ik nog het beste vond is van Digital Ocean
> en is van 2014.
Ik kan iedereen dit aanraden:
Hoi,
Ik ben bezig met het implementeren van DNSsec en rndc op bind9 voor een
authoritatieve nameserver.
Rndc is een tool van bind om domeinen toe te voegen (eerder gebruikte ik
hiervoor eigen scriptjes).
Ik zie dat bind dingen opslaat in /var/cache/bind/ , bij een "cache"
denk
nstallation a long time and I see lots of changes on dns resource
>> records. Also, I don't like to rush into debian version updates, so I
>> fear the package bind9 might slip behind current standards.
>
> It is trivially easy to backport the bind9-package from Stretch to
&g
Tom Browder <tom.brow...@gmail.com> wrote:
> On Mon, Jul 24, 2017 at 8:23 AM, Greg Wooledge <wool...@eeg.ccf.org> wrote:
>> On Sun, Jul 23, 2017 at 06:55:09AM -0500, Tom Browder wrote:
>>> I would like to remove all bind9 packages from servers running bind9
>>
On Mon, Jul 24, 2017 at 8:23 AM, Greg Wooledge <wool...@eeg.ccf.org> wrote:
> On Sun, Jul 23, 2017 at 06:55:09AM -0500, Tom Browder wrote:
>> I would like to remove all bind9 packages from servers running bind9
>> and install the latest bind9 from source.
>
> Because y
On Sun, Jul 23, 2017 at 06:55:09AM -0500, Tom Browder wrote:
> I would like to remove all bind9 packages from servers running bind9
> and install the latest bind9 from source.
Because you want to satisfy internal audits that don't understand how
Debian security patching works, right?
On Sun, Jul 23, 2017 at 07:13 Lck Ras <likco...@riseup.net> wrote:
> On 07/23/2017 08:55 PM, Tom Browder wrote:
> > I would like to remove all bind9 packages from servers running bind9
> > and install the latest bind9 from source.
> >
> > Two questions, plea
I would like to remove all bind9 packages from servers running bind9
and install the latest bind9 from source.
Two questions, please:
1. Will there be any adverse consequences from the substitution if I
install with --prefix=/usr/local?
2. Same question as 1 but for installation into --prefix
--host=x86_64-linux-gnu --target=x86_64-linux-gnu Thread model: posix
gcc version 4.8.4 (Ubuntu 4.8.4-2ubuntu1~14.04.3)
configure:3376: $? = 0 configure:3365: gcc -V >&5 gcc-4.8.real: error:
unrecognized command line option '-V'
gcc-4.8.real: fatal error: no input files compilation terminated.
El Wed, 25 May 2016 17:30:52 -0400, Lic. Manuel Salgado escribió:
> Muchas gracias a los que ayudaron a resolver este problema. Era
> problemas en los permisos con Apparmor.
(...)
Pues que los dioses nuevos y antiguos te ayuden a poner en marcha apparmor
con samba4 en Debian. En openSUSE que
get the status I run:
"rndc -c/etc/rndc.conf status"
(I don't know if the files used in these commands are those in the jail or the
symlinks in /etc, but
it works). To stop the daemon, I run:
« rndc -c/etc/rndc.conf stop -p » which sends back the pid.
My question:
I tried to put all those
El Tue, 12 Apr 2016 16:45:31 -0400, cosme escribió:
> Despues de haber compilado samba-4.4.0 e instalado bind9 y
> isc-dhcp-server desde los repos en Debian 8 todo funciona bien excepto
> la zona inversa que no actualiza desde el DHCP al DNS.
>
>
> Probé el ejemplo qu
El Tue, 05 Apr 2016 17:04:08 -0400, cosme escribió:
> Después de haber compilado Samba-4.4.0 con con Bind9 todo funciona ok
>
> Aunque para el caso de la zona inversa el modulo de bind_dlz no lo
> agrega automaticamente, se puede hacer de el entrono de las herramientas
> para wind
I having compiled Samba-4.4.0 with with Bind9 everything works ok
Although the case of the reverse zone bind_dlz the module does not add
automatically, you can make the tools for entrono
windows or samba-tool.
I added my reverse zone
dns samba-tool zonecreate
0.99.10.in-addr.arpa
According
Después de haber compilado Samba-4.4.0 con con Bind9 todo funciona ok
Aunque para el caso de la zona inversa el modulo de bind_dlz no lo agrega
automaticamente, se puede hacer de el entrono de las herramientas para
windows o con samba-tool.
Agregué mi zona inversa con
samba-tool dns zonecreate
Hello,
I try to use an other file for bind9 logs to keep syslog small.
Based on this
https://wiki.debian.org/Bind9#File_.2Fetc.2Fbind.2Fnamed.conf.log and
http://www.zytrax.com/books/dns/ch7/logging.html I add the following to
the config:
/etc/bind/named.conf
...
include "/etc
1 - 100 of 1447 matches
Mail list logo