Le Sun, 23 Dec 2012 14:17:47 +0200,
Eugen Konkov kes-...@yandex.ru a écrit :
Hello,
Or s there any other method to prevent such ilegal DHCP servers on
LAN?
At work we use dhcp_probe
http://www.net.princeton.edu/software/dhcp_probe/
It works quite fine, when someone plug a dhcp server it is
Eugen Konkov kes-kes at yandex.ru writes:
...
So in my vlan I have two DHCP servers. One is mine and
second is on that router. Some users get wrong IPs from that router.
...
Or s there any other method to prevent such ilegal DHCP servers on LAN?
On Thu, 25 Oct 2012, Damien Fleuriot wrote:
Anyone else experienced this problem today ?
We slave the root zone and have received signature expired errors.
Found this:
https://lists.dns-oarc.net/pipermail/dns-operations/2011-March/007116.html
which leads to this:
On 25 October 2012 18:33, Warren Block wbl...@wonkity.com wrote:
On Thu, 25 Oct 2012, Damien Fleuriot wrote:
Anyone else experienced this problem today ?
We slave the root zone and have received signature expired errors.
Found this:
On 25 October 2012 18:55, Damien Fleuriot m...@my.gd wrote:
On 25 October 2012 18:33, Warren Block wbl...@wonkity.com wrote:
On Thu, 25 Oct 2012, Damien Fleuriot wrote:
Anyone else experienced this problem today ?
We slave the root zone and have received signature expired errors.
Found
On 12/7/11 8:15 PM, Kernel Panic wrote:
Apologies if this is not the appropriate list but I can't seem to find
one pertaining to the installation and configuration of BIND. I posted
the following message on the FreeBSD forums a few weeks back but have
had no replies, so I thought I'd try here
On 23/11/2011 12:53, Howard Leadmon wrote:
I just ran through on one of my older FreeBSD servers, and updated from
BIND 9.8.1 to 9.8.1-P1 to get the security patches for BIND online, and
after doing this bind crashes.
I am seeing:
Nov 23 06:35:19 named[24537]: starting BIND 9.8.1-P1
On Wed, November 23, 2011 08:18, Matthew Seaman wrote:
I've been using the attached patch with the dns/bind98 port and
openssl-1.0.x from ports for months. This disables using the GOST
cipher plugins -- which is no big deal as far as I'm concerned. GOST
ciphers are only supplied as plugin
On Wed, 23 Nov 2011 13:18:45 +
Matthew Seaman articulated:
I've been using the attached patch with the dns/bind98 port and
openssl-1.0.x from ports for months. This disables using the GOST
cipher plugins -- which is no big deal as far as I'm concerned. GOST
ciphers are only supplied as
On 23/11/2011 14:01, Jerry wrote:
On Wed, 23 Nov 2011 13:18:45 +
Matthew Seaman articulated:
I've been using the attached patch with the dns/bind98 port and
openssl-1.0.x from ports for months. This disables using the GOST
cipher plugins -- which is no big deal as far as I'm concerned.
CyberLeo Kitsana,
Thank you so much for the history and evolution on Bind expected
directory structures. It enabled me to jump through that tough spot.
Thanks again,
Matthew
On 10/01/2010 12:52 PM, Matthew wrote:
I would be grateful for any pointers on how to resolve this. I suspect
the
Krad,
Thank you for the tip. I've changed the . to the correct value.
Matthew
On 1 October 2010 21:16, CyberLeo Kitsanacyber...@cyberleo.net wrote:
On 10/01/2010 12:52 PM, Matthew wrote:
I would be grateful for any pointers on how to resolve this. I suspect
the error message may
On 1 October 2010 21:16, CyberLeo Kitsana cyber...@cyberleo.net wrote:
On 10/01/2010 12:52 PM, Matthew wrote:
I would be grateful for any pointers on how to resolve this. I suspect
the error message may not be exactly descriptive of whats happening.
Kinda.
Here's a few points to keep in
On 10/01/2010 12:52 PM, Matthew wrote:
I would be grateful for any pointers on how to resolve this. I suspect
the error message may not be exactly descriptive of whats happening.
Kinda.
Here's a few points to keep in mind when working with bind in FreeBSD:
* By default, named runs in a
In freebsd-questions Digest, Vol 317, Issue 13, Message: 14
On Sat, 3 Jul 2010 14:20:01 -0700 Chris Maness ch...@chrismaness.com wrote:
Ok, it is working for the local net now, but it is no longer working
as an authoritative server for my zones.
Here is the current config:
//
On Thu, Jul 1, 2010 at 7:33 AM, Matthew Seaman
m.sea...@infracaninophile.co.uk wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 01/07/2010 15:05:37, Chris Maness wrote:
Can a sub block of IP address space be used, and if so, what is the
wild card?
Yes. You can use lists of IPs or
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 03/07/2010 20:28:27, Chris Maness wrote:
Including the line:
acl public-nets { 127.0.0.1; ::1; }
^
You need a semi-colon here __|
for testing resulted in a failure to launch with the following
On Sat, Jul 3, 2010 at 12:52 PM, Matthew Seaman
m.sea...@infracaninophile.co.uk wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 03/07/2010 20:28:27, Chris Maness wrote:
Including the line:
acl public-nets { 127.0.0.1; ::1; }
^
You need a
Ok, it is working for the local net now, but it is no longer working
as an authoritative server for my zones.
Here is the current config:
// $FreeBSD: src/etc/namedb/named.conf,v 1.26.2.2.2.1 2008/11/25
02:59:29 kensmith Exp $
//
// Refer to the named.conf(5) and named(8) man pages, and the
Ahhh, I see I need to add:
allow-query { any; };
to my authoritative zones.
Thanks it all works now.
Chris Maness
p.s. So was this a change in the default behavior of BIND over the
years? Because I don't think my named.conf has been changed, and this
used to work for any hosts.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 03/07/2010 22:29:46, Chris Maness wrote:
Ahhh, I see I need to add:
allow-query { any; };
to my authoritative zones.
Thanks it all works now.
Great.
p.s. So was this a change in the default behavior of BIND over the
years? Because I
On 30 June 2010 15:34, Chris Maness ch...@chrismaness.com wrote:
On Wed, Jun 30, 2010 at 1:49 AM, krad kra...@googlemail.com wrote:
On 29 June 2010 07:20, Chris Maness ch...@chrismaness.com wrote:
My named server used to resolve for external hosts. Recently I have
noticed that it no
Can a sub block of IP address space be used, and if so, what is the wild card?
Chris
On Wed, Jun 30, 2010 at 7:34 AM, Chris Maness ch...@chrismaness.com wrote:
On Wed, Jun 30, 2010 at 1:49 AM, krad kra...@googlemail.com wrote:
On 29 June 2010 07:20, Chris Maness ch...@chrismaness.com wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 01/07/2010 15:05:37, Chris Maness wrote:
Can a sub block of IP address space be used, and if so, what is the
wild card?
Yes. You can use lists of IPs or address-and-mask in BIND ACLs. See:
On 29 June 2010 07:20, Chris Maness ch...@chrismaness.com wrote:
My named server used to resolve for external hosts. Recently I have
noticed that it no longer resolves names for resolvers not on the
local host. It works just fine for dig on the dns server itself. It
also works for domains
On Wed, Jun 30, 2010 at 1:49 AM, krad kra...@googlemail.com wrote:
On 29 June 2010 07:20, Chris Maness ch...@chrismaness.com wrote:
My named server used to resolve for external hosts. Recently I have
noticed that it no longer resolves names for resolvers not on the
local host. It works
uhm here's my named.conf (it's a bit lightwight) but it works...
// $FreeBSD: src/etc/namedb/named.conf,v 1.26.2.2.4.1 2009/04/15 03:14:26
kensmith Exp $
options {
directory/etc/namedb/namedwritable; //made dir writable to bind
user
pid-file/var/run/named/pid;
dump-file
On Wed, 28 Oct 2009 15:49:15 -0700 (PDT), Aflatoon Aflatooni
aaflato...@yahoo.com wrote:
Hi,
I have a Freebsd 7.2 installation and using Sendmail for the SMTP
service. This server has two public interfaces and different IP
addresses.
I need to have sendmail configured so that the outbound
On Oct 26, 2009, at 10:03 AM, Ray Still wrote:
Hello,
I am adding a redundant Internet connection to my current hosting
setup and
I need to figure out how to set up the DNS to make this work.
The two issues normally aren't related.
If both connections are from the same provider, talk to
Still rstil...@gmail.com
Cc: freebsd-questions@freebsd.org freebsd-questions@freebsd.org
Sent: Mon Oct 26 12:50:56 2009
Subject: Re: bind configuration issues
On Oct 26, 2009, at 10:03 AM, Ray Still wrote:
Hello,
I am adding a redundant Internet connection to my current hosting
setup and
I
: owner-freebsd-questi...@freebsd.org
owner-freebsd-questi...@freebsd.org
To: Ray Still rstil...@gmail.com
Cc: freebsd-questions@freebsd.org freebsd-questions@freebsd.org
Sent: Mon Oct 26 12:50:56 2009
Subject: Re: bind configuration issues
On Oct 26, 2009, at 10:03 AM, Ray Still wrote:
Hello
Of Ray Still
Sent: Monday, October 26, 2009 1:56 PM
To: freebsd-questions@freebsd.org
Subject: Re: bind configuration issues
On Mon, Oct 26, 2009 at 11:55 AM, Gary Gatten ggat...@waddell.com wrote:
You certainly don't need BGP for this, the DNS thing will work, but will be
a bit kludgy
Of Gary Gatten
Sent: Monday, October 26, 2009 2:07 PM
To: Ray Still; freebsd-questions@freebsd.org
Subject: RE: bind configuration issues
I'm not intimate with bind, or anything/one actually - but that's another
story...
Anyway, the gist is you need to ping some public hosts from your dns server
Of Gary Gatten
Sent: Monday, October 26, 2009 2:07 PM
To: Ray Still; freebsd-questions@freebsd.org
Subject: RE: bind configuration issues
I'm not intimate with bind, or anything/one actually - but that's another
story...
Anyway, the gist is you need to ping some public hosts from your dns
...@freebsd.org] On Behalf Of Gary Gatten
Sent: Monday, October 26, 2009 2:07 PM
To: Ray Still; freebsd-questions@freebsd.org
Subject: RE: bind configuration issues
I'm not intimate with bind, or anything/one actually - but that's another
story...
Anyway, the gist is you need to ping some
How will the client side resolvers know what dns server to use to resolve
example.com?
- Original Message -
From: Gary Gatten
To: 'rstil...@gmail.com' rstil...@gmail.com; 'freebsd-questions@freebsd.org'
freebsd-questions@freebsd.org
Sent: Mon Oct 26 18:24:38 2009
Subject: Re: bind
Ray Still wrote:
Ok,
tell me just how nuts this idea is.
imho, your thought-process is not nuts. I can see what you are trying to
do, so kudos given for trying to work it out with what you have.
To recap, two pipes, one destination.
I set up second DNS server.
ns1.example.com at 70.65.
Ray Still wrote:
Ok,
tell me just how nuts this idea is.
In addition to my other post:
I like your mentality of trying to do whatever you can to create redundancy.
I've often tried to think of ways to use DNS to make things redundant
and resilient.
Keep up trying new ways to stretch things
On Mon, Oct 26, 2009 at 6:42 PM, Steve Bertrand st...@ibctech.ca wrote:
Ray Still wrote:
Ok,
tell me just how nuts this idea is.
imho, your thought-process is not nuts. I can see what you are trying to
do, so kudos given for trying to work it out with what you have.
To recap, two pipes,
On Mon, Jul 27, 2009 at 07:37:26PM -0800, Mel Flynn wrote:
On Monday 27 July 2009 18:35:17 Marc G. Fournier wrote:
--On Monday, July 27, 2009 14:07:44 -0800 Mel Flynn
mel.flynn+fbsd.questi...@mailing.thruhere.net wrote:
On Monday 27 July 2009 13:17:51 Anton Shterenlikht wrote:
On ia64
On Monday 27 July 2009 13:17:51 Anton Shterenlikht wrote:
On ia64 8.0-beta1 SMP, running bsdstats-5.4_2,
I get this error:
# /usr/local/etc/periodic/monthly/300.statistics
/usr/src/lib/bind/isc/../../../contrib/bind9/lib/isc/task.c:1023: fatal
error:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- --On Monday, July 27, 2009 14:07:44 -0800 Mel Flynn
mel.flynn+fbsd.questi...@mailing.thruhere.net wrote:
On Monday 27 July 2009 13:17:51 Anton Shterenlikht wrote:
On ia64 8.0-beta1 SMP, running bsdstats-5.4_2,
I get this error:
#
On Monday 27 July 2009 18:35:17 Marc G. Fournier wrote:
--On Monday, July 27, 2009 14:07:44 -0800 Mel Flynn
mel.flynn+fbsd.questi...@mailing.thruhere.net wrote:
On Monday 27 July 2009 13:17:51 Anton Shterenlikht wrote:
On ia64 8.0-beta1 SMP, running bsdstats-5.4_2,
I get this error:
#
Jack Raats wrote:
This morning I tried to install BIND, the DNS server.
I downloaded the handbook (English version) and tried to follow the
instructions giving in the handbook.
But the handbook is outdated OR FreeBSD 7.2-RELEASE-p2 is not correct.
I'm missing make-localhost in /etc/namedb.
On Fri, Mar 13, 2009 at 12:59 PM, Dave sed.entary...@gmail.com wrote:
Hi all,
I'm trying to get cPanel installed on my host, and to run it from jail.
The
installer script that cPanel provides, however, seems to be confused by the
fact that it cannot test the daemons it has installed by
On Sun, Oct 19, 2008 at 06:22:27AM -0700, Kevin wrote:
I installed bind 9.3.5 on my new FreeBSD 6.3 server. I copied
named.conf directly from my old server (originally from the Internet),
Since you've done this, you should use mergemaster to interactively
merge the changes in the system default
Grant Peel wrote:
Hi all,
Thanks to Lars I have come up with the following (to upgrade BIND for
the DNS caching issue)...(short of updateing all source).
Download the latest port BIND95.9.5.x (p2 I think),
9.5.0.2 -- correct.
Extract it to the ports directory,
make -DWITH_REPLACE_BASE
correct?
Also,
Will the installation leave all my current (BIND) configs alone?
-Grant
- Original Message -
From: Lars Kristiansen [EMAIL PROTECTED]
To: gpeel [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Friday, August 29, 2008 8:38 PM
Subject: Re: BIND DNS Patching on 6.1, 6.2
gpeel
-
From: Lars Kristiansen [EMAIL PROTECTED]
To: gpeel [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Friday, August 29, 2008 8:38 PM
Subject: Re: BIND DNS Patching on 6.1, 6.2
gpeel skrev:
I was thinking I would try the BIND959.5.0 port, but it apprears that
this version is still vulneralbe
-oarc.net TXT
will hopefully now give a result that includes the word GREAT.
Lars
- Original Message - From: Lars Kristiansen [EMAIL PROTECTED]
To: gpeel [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Friday, August 29, 2008 8:38 PM
Subject: Re: BIND DNS Patching on 6.1, 6.2
gpeel skrev:
I
Hi Again,
When I posted this question originally, I had forgotten that I had a devel
server running FreeBSD 6.2-RELEASE. I tried the 6.3 patch, and it would not
make properly.
I was thinking I would try the BIND959.5.0 port, but it apprears that this
version is still vulneralbe.
So I suppose
gpeel skrev:
I was thinking I would try the BIND959.5.0 port, but it apprears that this
version is still vulneralbe.
The port dns/bind95 is patched:
$ named -version
BIND 9.5.0-P2
Easily installed with the option WITH_REPLACE_BASE.
Regards,
Lars
At 05:41 AM 8/9/2008, Redd Vinylene wrote:
I got this FreeBSD server called mother (80.252.2.2). On it, I've made
two jails, camel (80.252.2.3) and box (80.252.2.4 through to
80.252.2.127). The problem is that reverse lookups for any of the IPs
preceding .4 on box fails. If I connect to IRC with
Maybe mother's /etc/pf.conf could also be of relevance?
-
camel=80.252.2.3
box=80.252.2.4
ext_if=rl0
set block-policy return
set skip on { lo0 }
scrub in
pass out keep state
block in
pass in on $ext_if inet proto tcp from any to any port { 22 } keep state
pass in on $ext_if inet proto
I'm pretty sure I do, though my apologies if I'm wrong, did you check my pastie?
On Sat, Aug 9, 2008 at 1:48 PM, Derek Ragona
[EMAIL PROTECTED] wrote:
At 05:41 AM 8/9/2008, Redd Vinylene wrote:
I got this FreeBSD server called mother (80.252.2.2). On it, I've made
two jails, camel
At 06:55 AM 8/9/2008, Redd Vinylene wrote:
I'm pretty sure I do, though my apologies if I'm wrong, did you check my
pastie?
On Sat, Aug 9, 2008 at 1:48 PM, Derek Ragona
[EMAIL PROTECTED] wrote:
At 05:41 AM 8/9/2008, Redd Vinylene wrote:
I got this FreeBSD server called mother (80.252.2.2).
Ok, I got it
zone domain.com {
type master;
database ldap
ldap://192.168.0.2/ou=domain.com,ou=dns,o=domain,dc=com 172800;
};
works fine.
by the way, what does mean this number? 172800?
rvenne a écrit :
Hi list,
I'm trying to use [EMAIL PROTECTED] 7.0_releng on a
openldap
Is it possible in BIND DNS to block images in a certain sites? like for
example the popular friends site ( friendster),
i want to block most images in that site so that client will be irritated
that their images don't load perfectly. but s till
they can visit their site?
Any idea guys?
DNS is
At 09:10 PM 5/22/2008, Ruel Luchavez wrote:
Hi ALL,
Is it possible in BIND DNS to block images in a certain sites? like for
example the popular friends site ( friendster),
i want to block most images in that site so that client will be irritated
that their images don't load perfectly. but s
are images on different serwer than rest of site?
On Fri, 23 May 2008, Ruel Luchavez wrote:
Hi ALL,
Is it possible in BIND DNS to block images in a certain sites? like for
example the popular friends site ( friendster),
i want to block most images in that site so that client will be
Derek Ragona wrote:
At 09:10 PM 5/22/2008, Ruel Luchavez wrote:
Hi ALL,
Is it possible in BIND DNS to block images in a certain sites? like for
example the popular friends site ( friendster),
i want to block most images in that site so that client will be irritated
that their images don't load
At 09:07 AM 5/23/2008, Steve Bertrand wrote:
Derek Ragona wrote:
At 09:10 PM 5/22/2008, Ruel Luchavez wrote:
Hi ALL,
Is it possible in BIND DNS to block images in a certain sites? like for
example the popular friends site ( friendster),
i want to block most images in that site so that client
On May 22, 2008, at 9:10 PM, Ruel Luchavez wrote:
Hi ALL,
Is it possible in BIND DNS to block images in a certain sites? like
for
example the popular friends site ( friendster),
i want to block most images in that site so that client will be
irritated
that their images don't load
On Monday 21 January 2008 22:00:33 perlcat wrote:
Trying to access a vpn using ssh on 6.2 - STABLE. Haven't found an
answer anywhere, and so I must be totally missing the right questions to
ask or configurations to look at.
This problem is consistent regardless of port chosen or access
$ ssh -X -N -L 127.0.0.3:13390:192.168.1.44:3390 [EMAIL PROTECTED]
[EMAIL PROTECTED]'s password:
bind: Can't assign requested address
channel_setup_fwd_listener: cannot listen to port: 13390
Could not request local forwarding.
Ofcourse it fails, you are trying to bind to address
Hi,
I as know default version (without port upgrading) is Bind 9.3.3 in Freebsd
6.2. You can see the version, executing named -v command. Do a
ps -ax | grep named
and see whether named is running or not. Also you can find the Bind logs in
/var/named/var/log directory (chrooted directory), if it
On Fri, Oct 05, 2007 at 05:29:39PM +0500, Narek Gharibyan wrote:
Hi,
Please don't top-post.
I as know default version (without port upgrading) is Bind 9.3.3 in Freebsd
6.2. You can see the version, executing named -v command. Do a
ps -ax | grep named
snip
-Original Message-
You need to enable the service:
$ sudo vi /etc/rc.conf
named_enable=YES
:wq
$ sudo /etc/rc.d/named restart
The bind in-tree is 9.3.4 and the chroot is already setup for you by
default. You don't want to go installing a bitrot version from Ports.
~BAS
On Fri, 2007-10-05 at 12:08 +,
On Wed, Jul 04, 2007 at 03:14:28PM +1000, Mikhail Goriachev wrote:
Nejc Škoberne wrote:
Hello,
I am running BIND (from base system) on my FreeBSD 5.3 machine. The box is
connected to outer world via ADSL connection (tun0 device). If the named is
started when the machine is connected to
On Tue, Jul 03, 2007, Nejc Škoberne wrote:
I also tried to specify the ADSL IP address in named.conf (it is static),
but it is
still a no go. I don't have such problems with other daemons! Any ideas?
Is the interface already up when you are starting BIND? I guess it is
not. I haven't tested
Nejc Škoberne wrote:
Hello,
I am running BIND (from base system) on my FreeBSD 5.3 machine. The box is
connected to outer world via ADSL connection (tun0 device). If the named is
started when the machine is connected to the internet, then everything is OK,
I get this by saying netstat -n
I run multiple FreeBSD versions with Bind and have not had a problem with
records being updated. Are you properly setting the new serial numbers in
the master record files?
-Derek
At 09:47 AM 2/13/2007, Robert Fitzpatrick wrote:
I'm not a member of any bind list, so I was hoping to
On Tue, 2007-02-13 at 10:00 -0600, Derek Ragona wrote:
I run multiple FreeBSD versions with Bind and have not had a problem with
records being updated. Are you properly setting the new serial numbers in
the master record files?
Thanks. Do you mean the master zone files where the BSD
On Friday 26 January 2007 10:50, Robert Fitzpatrick wrote:
I am not a member of a BIND list, so I thought I'd ask here first if
anyone knows of a script tool that will query a primary name server and
setup secondary records on another BIND server? Or any other solution
for doing mass entries
Did you run it in foregroun debug mode or ktrace(1) it yet? Turn on
querylog and see if you're getting worked?
~BAS
On Tue, 2 Jan 2007, patrick wrote:
I'm running BIND 9.3.2 on FreeBSD 6.1, and am noticing that it gets
out of control after running for a while.
PIDUID THR
Hi Robin,
On Tuesday 10 October 2006 16:22, Robin Tiwari wrote:
i've configured dns server in freeBSD 6.1 but when i query the server it
wont resolve my domain name. i've added in resolv.conf also and my bind
daemon is also running without any errors. i couldnt figure out the
problem. if any
PROTECTED]
To: Lisa Casey [EMAIL PROTECTED]
Cc: freebsd-questions@freebsd.org
Sent: Monday, July 10, 2006 3:43 PM
Subject: Re: Bind problem
Did you remember to add:
named_program=/usr/local/sbin/named
to /etc/rc.conf?
Yes. /etc/rc.conf has the following lines for named:
named_enable=YES
value for the program.
-Derek
At 04:34 PM 7/10/2006, Lisa Casey wrote:
- Original Message - From: Jonathan Chen [EMAIL PROTECTED]
To: Lisa Casey [EMAIL PROTECTED]
Cc: freebsd-questions@freebsd.org
Sent: Monday, July 10, 2006 3:43 PM
Subject: Re: Bind problem
Did you remember
On Mon, Jul 10, 2006 at 03:11:41PM -0400, Lisa Casey wrote:
Hi All,
I seem to have a bit of a problem with my Bind installation on FreeBSD 5.3.
When I first setup this box, I installed the Bind 8.4 from the ports. Soon
afterwards, I decided to go with Bind 9 so I installed that from the
- Original Message -
From: Jonathan Chen [EMAIL PROTECTED]
To: Lisa Casey [EMAIL PROTECTED]
Cc: freebsd-questions@freebsd.org
Sent: Monday, July 10, 2006 3:43 PM
Subject: Re: Bind problem
Did you remember to add:
named_program=/usr/local/sbin/named
to /etc/rc.conf?
Yes. /etc
On Monday 10 July 2006 13:34, Lisa Casey wrote:
- Original Message -
From: Jonathan Chen [EMAIL PROTECTED]
To: Lisa Casey [EMAIL PROTECTED]
Cc: freebsd-questions@freebsd.org
Sent: Monday, July 10, 2006 3:43 PM
Subject: Re: Bind problem
Did you remember to add:
named_program
PROTECTED]
To: Lisa Casey [EMAIL PROTECTED]
Cc: freebsd-questions@freebsd.org
Sent: Monday, July 10, 2006 3:43 PM
Subject: Re: Bind problem
Did you remember to add:
named_program=/usr/local/sbin/named
to /etc/rc.conf?
Yes. /etc/rc.conf has the following lines for named:
named_enable=YES
Thanks, that did the trick. I'm not running this in a jail because I'm
paranoid or anything -- I just need a test environment, and I don't
have an extra machine kicking around. :)
Patrick
On 5/1/06, David Robillard [EMAIL PROTECTED] wrote:
BIND is trying to setup a chroot(8) before it starts.
--
Message: 23
Date: Fri, 28 Apr 2006 19:36:22 -0600
From: Chad Leigh -- Shire.Net LLC [EMAIL PROTECTED]
Subject: Re: BIND inside a jail on FreeBSD 6.0
To: patrick [EMAIL PROTECTED]
Cc: freebsd-questions@freebsd.org
Message-ID: [EMAIL PROTECTED]
Content-Type: text
On May 1, 2006, at 7:11 AM, David Robillard wrote:
BIND is trying to setup a chroot(8) before it starts. If you're
already inside a jail, then IMHO it is a little overkill (i.e. Running
BIND in a chroot inside a jail).
Check the BIND related values in rc.conf(5). The chroot(8) startup is
On Apr 28, 2006, at 6:57 PM, patrick wrote:
I'm trying to run BIND inside a jail on FreeBSD 6.0, and I'm
encountering the following problem:
[EMAIL PROTECTED] /var/named]# /etc/rc.d/named start
mount_devfs: Operation not permitted
/etc/rc.d/named: WARNING: devfs_domount(): Unable to mount
Denis R. wrote:
http://cr.yp.to/djbdns/guarantee.html
Richard, besides simple you want a _secure_ caching name server. Yes, you
can type named_enable in rc.conf and be done with it, just don't forget
to periodically check the security updates web page for BIND exploits.
Thanks for the advice
Hello,
I've recently been getting a lot of trouble with SpamAssassin performing
a lot of rDNS lookups which is causing network issues (timeouts etc to
DNS servers).
I am trying to install BIND (or djbdns) as a simple caching nameserver.
Just to take some of the load off the networks DNS
Richard
just set the forwarders to another nameserver in the named.conf and that's
it..
this will speed up SA massively.
--
martin
On 4/25/06, Richard Collyer [EMAIL PROTECTED] wrote:
Hello,
I've recently been getting a lot of trouble with SpamAssassin performing
a lot of rDNS lookups
On Wed, April 26, 2006 8:05 am, Martin Hepworth wrote:
Richard
just set the forwarders to another nameserver in the named.conf and that's
it..
this will speed up SA massively.
--
Yep I've set the named.conf up correctly but when I do ndc start it
tells me that it is not found.
I'll do
On Wed, Apr 26, 2006 at 09:27:27AM +0100, Richard Collyer wrote:
Yep I've set the named.conf up correctly but when I do ndc start it
tells me that it is not found.
With BIND 9.3.1, you'd probably want 'rndc', but even then,
'/etc/rc.d/named start' would do it for you, if you have
Richard Collyer wrote:
Hello,
I've recently been getting a lot of trouble with SpamAssassin performing
a lot of rDNS lookups which is causing network issues (timeouts etc to
DNS servers).
I am trying to install BIND (or djbdns) as a simple caching nameserver.
Just to take some of the load
http://cr.yp.to/djbdns/guarantee.html
Richard, besides simple you want a _secure_ caching name server. Yes, you
can type named_enable in rc.conf and be done with it, just don't forget
to periodically check the security updates web page for BIND exploits.
Regards!
Richard Collyer wrote:
Hello,
AND make sure that either /etc/resolv.conf doesn't exist or that it
contains a single nameserver line like this:
nameserver 127.0.0.1
otherwise your local nameserver isn't queried.
You see, there's really nothing else to do on a standard installation of
freebsd...
1- named_enable=YES in
For a caching nameserver simply follow the instructions in
named.conf. Enable named in rc.conf, and start the daemon.
-Derek
At 05:50 PM 4/25/2006, Richard Collyer wrote:
Hello,
I've recently been getting a lot of trouble with SpamAssassin performing a
lot of rDNS lookups which is
On Apr 23, 2006, at 10:21 AM, Chuck Swiger wrote:
Chad Leigh -- Shire.Net LLC wrote:
On FreeBSD 6.0 with bind9, if I define a host to have multiple A
records, such that some IP addresses are listed more than once,
for example:
[ ... ]
Will those addresses listed more than once show up
On 23/4/06 07:24, Chad Leigh -- Shire.Net LLC [EMAIL PROTECTED] wrote:
On FreeBSD 6.0 with bind9, if I define a host to have multiple A
records, such that some IP addresses are listed more than once, for
example:
.
.
.
www 600 IN A 192.168.1.1
600 IN A 192.168.1.2
600 IN A
Chad Leigh -- Shire.Net LLC wrote:
On FreeBSD 6.0 with bind9, if I define a host to have multiple A
records, such that some IP addresses are listed more than once, for
example:
[ ... ]
Will those addresses listed more than once show up more often as the
answer to name server requests (or more
- Original Message -
From: [EMAIL PROTECTED]
To: freebsd-questions@freebsd.org
Sent: Wednesday, February 08, 2006 2:45 PM
Subject: BIND zone transfers
Any suggestions as to how to proceed would be greatly appreciated. Thanks
in advance for your assistance.
Do you have the Win2k IP
On Wed, Feb 08, 2006 at 12:45:02PM -, [EMAIL PROTECTED] wrote:
Under FreeBSD 4.8 BIND was making zone transfers normally. In my network,
Windows 2000 is the master and bind is the salve. Recently, the server
was upgraded to FreeBSD 6.0, and suddenly BIND stopped making zone
transfers,
1 - 100 of 213 matches
Mail list logo