change ONLY one record in zone
Hello bind gurus! I need to change only one record in zone (not deligated to my server, can't transfer it too) RECORD.DOMAIN.NET IN A 192.168.1.1 to RECORD.DOMAIN.NET IN CNAME RECORD.DOMAIN.ORG Only one record! Is this possible via bind? ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: change ONLY one record in zone
On 14.01.10 12:27, Dmitry Rybin wrote: > Hello bind gurus! > > I need to change only one record in zone (not deligated to my server, > can't transfer it too) > > RECORD.DOMAIN.NET IN A 192.168.1.1 > to > RECORD.DOMAIN.NET IN CNAME RECORD.DOMAIN.ORG > > Only one record! Is this possible via bind? Not if ht domain is not yours. You must ask the person who maintains domain.net. -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Quantum mechanics: The dreams stuff is made of. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
search directive in resolv.conf - only 2 domains searched
My resolver only does lookups for the first two domains specified by the search directive in the /etc/resolv.conf file. For example, if I do a lookup of server1.eur.domain2.mil and domain2.mil is the second domain specified by the search directive, the query works. However, if domain2.mil is the third domain specified by the search directive, the query fails. This is behavior that has changed within the last two weeks on our Solaris 9 systems (the Solaris 10 systems still work). The only explanation that I can think of is that the resolver libraries have changed and that the libraries were only compiled to look through the first 2 domains that are specified by the search directive. Is this a possibility? Where are the dns resolver libraries located on a Solaris 9 system? Thanks, Andy srs-e1-swartzb(~)->uname -a SunOS srs-e1 5.9 Generic_122300-39 sun4u sparc SUNW,Sun-Fire-480R srs-e1-swartzb(~)-> more /etc/resolv.conf search eur.dcn.domain1.mil eur.domain2.mil conus.dcn.domain1.mil nameserver 10.99.5.18 nameserver 10.99.5.25 srs-e1-swartzb(~)-> nslookup Default Server: dns-e1.eur.dcn.domain1.mil Address: 10.99.5.18 > set d2 QUERY #1 - successful! > server1 Server: dns-e1.eur.dcn.domain1.mil Address: 10.99.5.18 ;; res_nmkquery(QUERY, server1.eur.dcn.domain1.mil, IN, A) SendRequest(), len 39 HEADER: opcode = QUERY, id = 36724, rcode = NOERROR header flags: query, want recursion questions = 1, answers = 0, authority records = 0, additional = 0 QUESTIONS: server1.eur.dcn.domain1.mil, type = A, class = IN Got answer (87 bytes): HEADER: opcode = QUERY, id = 36724, rcode = NXDOMAIN header flags: response, auth. answer, want recursion questions = 1, answers = 0, authority records = 1, additional = 0 QUESTIONS: server1.eur.dcn.domain1.mil, type = A, class = IN AUTHORITY RECORDS: -> eur.dcn.domain1.mil type = SOA, class = IN, dlen = 36 ttl = 86400 (1D) origin = dns-e1.eur.dcn.domain1.mil mail addr = root.dns-e1.eur.dcn.domain1.mil serial = 2010010803 refresh = 86400 (1D) retry = 7200 (2H) expire = 1728000 (1728000) minimum ttl = 86400 (1D) ;; res_nmkquery(QUERY, server1.eur.domain2.mil, IN, A) SendRequest(), len 35 HEADER: opcode = QUERY, id = 36725, rcode = NOERROR header flags: query, want recursion questions = 1, answers = 0, authority records = 0, additional = 0 QUESTIONS: server1.eur.domain2.mil, type = A, class = IN Got answer (138 bytes): HEADER: opcode = QUERY, id = 36725, rcode = NOERROR header flags: response, auth. answer, want recursion questions = 1, answers = 1, authority records = 2, additional = 2 QUESTIONS: server1.eur.domain2.mil, type = A, class = IN ANSWERS: -> server1.eur.domain2.mil type = A, class = IN, dlen = 4 internet address = 199.10.205.100 ttl = 86400 (1D) AUTHORITY RECORDS: -> eur.domain2.mil type = NS, class = IN, dlen = 22 nameserver = dns-e2.eur.dcn.domain1.mil ttl = 86400 (1D) -> eur.domain2.mil type = NS, class = IN, dlen = 9 nameserver = dns-e1.eur.dcn.domain1.mil ttl = 86400 (1D) ADDITIONAL RECORDS: -> dns-e1.eur.dcn.domain1.mil type = A, class = IN, dlen = 4 internet address = 10.99.5.18 ttl = 86400 (1D) -> dns-e2.eur.dcn.domain1.mil type = A, class = IN, dlen = 4 internet address = 10.99.5.25 ttl = 86400 (1D) Name:server1.eur.domain2.mil Address: 199.10.205.100 > exit srs-e1-swartzb(~)-> more /etc/resolv.conf search eur.dcn.domain1.mil conus.dcn.domain1.mil eur.domain2.mil nameserver 10.99.5.18 nameserver 10.99.5.25 srs-e1-swartzb(~)-> nslookup Default Server: dns-e1.eur.dcn.domain1.mil Address: 10.99.5.18 > set d2 QUERY #2 - NOT successful! > server1 Server: dns-e1.eur.dcn.domain1.mil Address: 10.99.5.18 ;; res_nmkquery(QUERY, server1.eur.dcn.domain1.mil, IN, A) SendRequest(), len 39 HEADER: opcode = QUERY, id = 9424, rcode = NOERROR header flags: query, want recursion questions = 1, answers = 0, authority records = 0, additional = 0 QUESTIONS: server1.eur.dcn.domain1.mil, type = A, class = IN Got answer (87 bytes): HEADER: opcode = QUERY, id = 9424, rcode = NXDOMAIN header flags: response, auth. answer, want recursion questions = 1, answers = 0, authority records = 1, additional = 0 QUESTIONS: server1.eur.dcn.domain1.mil, type = A, class = IN AUTHORITY RECORDS: -> eur.dcn.domain1.mil type = SOA, class = IN, dlen = 36 ttl = 86400 (1D) origin = d
Re: change ONLY one record in zone
Matus UHLAR - fantomas wrote: I need to change only one record in zone (not deligated to my server, can't transfer it too) RECORD.DOMAIN.NET IN A 192.168.1.1 to RECORD.DOMAIN.NET IN CNAME RECORD.DOMAIN.ORG Only one record! Is this possible via bind? Not if ht domain is not yours. You must ask the person who maintains domain.net. I know it. But the question in other. Is this possible via bind? ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: change ONLY one record in zone
>>> I need to change only one record in zone (not deligated to my server, >>> can't transfer it too) >>> >>> RECORD.DOMAIN.NET IN A 192.168.1.1 >>> to >>> RECORD.DOMAIN.NET IN CNAME RECORD.DOMAIN.ORG >>> >>> Only one record! Is this possible via bind? > Matus UHLAR - fantomas wrote: >> Not if ht domain is not yours. >> You must ask the person who maintains domain.net. On 14.01.10 13:51, Dmitry Rybin wrote: > I know it. But the question in other. Is this possible via bind? yes. It needs to be master zone. If you have allowed dynamic updates, send an update. If not, edit the config file and ask named to reload it. -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Support bacteria - they're the only culture some people have. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Best way to run Bind on public DNS servers??
Jason Fesler wrote: On Jan 11, 2010, at 9:39 AM, Kaya Saman wrote: Hi, since I got no responses for this question could I rephrase it to asking if Bind will do a zone transfer over public internet if the servers have private IP addresses and are behind NAT with static port definitions? Tell bind to slave from the public IP that is forward to the private side. Thanks Jason! Will this work as Bind will examine the packet and will have a different IP in the sendto: part Otherwise is easy if it can actually be done this way :-) Regards, Kaya ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: search directive in resolv.conf - only 2 domains searched
On Jan 14, 2010, at 5:47 AM, Andrew Swartzbaugh wrote: > My resolver only does lookups for the first two domains specified by the > search directive in the /etc/resolv.conf file. For example, if I do a lookup > of server1.eur.domain2.mil and domain2.mil is the second domain specified by > the search directive, the query works. However, if domain2.mil is the third > domain specified by the search directive, the query fails. > > This is behavior that has changed within the last two weeks on our Solaris > 9 systems (the Solaris 10 systems still work). > > The only explanation that I can think of is that the resolver libraries > have changed and that the libraries were only compiled to look through the > first 2 domains that are specified by the search directive. Is this a > possibility? Where are the dns resolver libraries located on a Solaris 9 > system? nslookup is not a valid test of the behavior of the stub resolver. Can you demonstrate the problem with a method that actually sends a request to the stub resolver, such as 'ping server1'? Chris Buxton > srs-e1-swartzb(~)->uname -a > SunOS srs-e1 5.9 Generic_122300-39 sun4u sparc SUNW,Sun-Fire-480R > > srs-e1-swartzb(~)-> more /etc/resolv.conf > search eur.dcn.domain1.mil eur.domain2.mil conus.dcn.domain1.mil > nameserver 10.99.5.18 > nameserver 10.99.5.25 > > srs-e1-swartzb(~)-> nslookup > Default Server: dns-e1.eur.dcn.domain1.mil > Address: 10.99.5.18 > >> set d2 > > > QUERY #1 - successful! > > >> server1 > Server: dns-e1.eur.dcn.domain1.mil > Address: 10.99.5.18 > > ;; res_nmkquery(QUERY, server1.eur.dcn.domain1.mil, IN, A) > > SendRequest(), len 39 >HEADER: > opcode = QUERY, id = 36724, rcode = NOERROR > header flags: query, want recursion > questions = 1, answers = 0, authority records = 0, additional = 0 > >QUESTIONS: > server1.eur.dcn.domain1.mil, type = A, class = IN > > > > Got answer (87 bytes): >HEADER: > opcode = QUERY, id = 36724, rcode = NXDOMAIN > header flags: response, auth. answer, want recursion > questions = 1, answers = 0, authority records = 1, additional = 0 > >QUESTIONS: > server1.eur.dcn.domain1.mil, type = A, class = IN >AUTHORITY RECORDS: >-> eur.dcn.domain1.mil > type = SOA, class = IN, dlen = 36 > ttl = 86400 (1D) > origin = dns-e1.eur.dcn.domain1.mil > mail addr = root.dns-e1.eur.dcn.domain1.mil > serial = 2010010803 > refresh = 86400 (1D) > retry = 7200 (2H) > expire = 1728000 (1728000) > minimum ttl = 86400 (1D) > > > ;; res_nmkquery(QUERY, server1.eur.domain2.mil, IN, A) > > SendRequest(), len 35 >HEADER: > opcode = QUERY, id = 36725, rcode = NOERROR > header flags: query, want recursion > questions = 1, answers = 0, authority records = 0, additional = 0 > >QUESTIONS: > server1.eur.domain2.mil, type = A, class = IN > > > > Got answer (138 bytes): >HEADER: > opcode = QUERY, id = 36725, rcode = NOERROR > header flags: response, auth. answer, want recursion > questions = 1, answers = 1, authority records = 2, additional = 2 > >QUESTIONS: > server1.eur.domain2.mil, type = A, class = IN >ANSWERS: >-> server1.eur.domain2.mil > type = A, class = IN, dlen = 4 > internet address = 199.10.205.100 > ttl = 86400 (1D) >AUTHORITY RECORDS: >-> eur.domain2.mil > type = NS, class = IN, dlen = 22 > nameserver = dns-e2.eur.dcn.domain1.mil > ttl = 86400 (1D) >-> eur.domain2.mil > type = NS, class = IN, dlen = 9 > nameserver = dns-e1.eur.dcn.domain1.mil > ttl = 86400 (1D) >ADDITIONAL RECORDS: >-> dns-e1.eur.dcn.domain1.mil > type = A, class = IN, dlen = 4 > internet address = 10.99.5.18 > ttl = 86400 (1D) >-> dns-e2.eur.dcn.domain1.mil > type = A, class = IN, dlen = 4 > internet address = 10.99.5.25 > ttl = 86400 (1D) > > > Name:server1.eur.domain2.mil > Address: 199.10.205.100 > >> exit > > > > > > srs-e1-swartzb(~)-> more /etc/resolv.conf > search eur.dcn.domain1.mil conus.dcn.domain1.mil eur.domain2.mil > nameserver 10.99.5.18 > nameserver 10.99.5.25 > > srs-e1-swartzb(~)-> nslookup > Default Server: dns-e1.eur.dcn.domain1.mil > Address: 10.99.5.18 > >> set d2 > > > QUERY #2 - NOT successful! > > >> server1 > Server: dns-e1.eur.dcn.domain1.mil > Address: 10.99.5.18 > > ;; res_nmkquery(QUERY, server1.eur.dcn.domain1.mil, IN, A) > > SendRequest(), len 39 >HEADER: > opcode = QUERY, id = 9424, rcode = NOERROR > header flags: query, want recursion > questions = 1, answers = 0, authority records = 0, additional = 0 > >QUESTIONS: > server1.eur.dcn.domain1.mil, type = A, class = IN > > > -
Re: search directive in resolv.conf - only 2 domains searched
Chris, Yes, you are correct. I took the user's word for it and then used nslookup to do my troubleshooting and was misled by the output. There is no problem with the search directive. Thank you for your quick response. Thanks, Andy --- On Thu, 1/14/10, Chris Buxton wrote: > From: Chris Buxton > Subject: Re: search directive in resolv.conf - only 2 domains searched > To: "Andrew Swartzbaugh" > Cc: bind-users@lists.isc.org > Date: Thursday, January 14, 2010, 4:04 AM > On Jan 14, 2010, at 5:47 AM, Andrew > Swartzbaugh wrote: > > > My resolver only does lookups for the first two > domains specified by the search directive in the > /etc/resolv.conf file. For example, if I do a lookup > of server1.eur.domain2.mil and domain2.mil is the second > domain specified by the search directive, the query > works. However, if domain2.mil is the third domain > specified by the search directive, the query fails. > > > > This is behavior that has changed within the last two > weeks on our Solaris > > 9 systems (the Solaris 10 systems still work). > > > > The only explanation that I can think of is that the > resolver libraries > > have changed and that the libraries were only compiled > to look through the first 2 domains that are specified by > the search directive. Is this a possibility? > Where are the dns resolver libraries located on a Solaris 9 > system? > > nslookup is not a valid test of the behavior of the stub > resolver. Can you demonstrate the problem with a method that > actually sends a request to the stub resolver, such as 'ping > server1'? > > Chris Buxton > > > srs-e1-swartzb(~)->uname -a > > SunOS srs-e1 5.9 Generic_122300-39 sun4u sparc > SUNW,Sun-Fire-480R > > > > srs-e1-swartzb(~)-> more /etc/resolv.conf > > search eur.dcn.domain1.mil eur.domain2.mil > conus.dcn.domain1.mil > > nameserver 10.99.5.18 > > nameserver 10.99.5.25 > > > > srs-e1-swartzb(~)-> nslookup > > Default Server: dns-e1.eur.dcn.domain1.mil > > Address: 10.99.5.18 > > > >> set d2 > > > > > > QUERY #1 - successful! > > > > > >> server1 > > Server: dns-e1.eur.dcn.domain1.mil > > Address: 10.99.5.18 > > > > ;; res_nmkquery(QUERY, server1.eur.dcn.domain1.mil, > IN, A) > > > > SendRequest(), len 39 > > HEADER: > > opcode = QUERY, id = 36724, rcode = > NOERROR > > header flags: query, want > recursion > > questions = 1, answers = > 0, authority records = 0, additional = 0 > > > > QUESTIONS: > > server1.eur.dcn.domain1.mil, type = > A, class = IN > > > > > > > > Got answer (87 bytes): > > HEADER: > > opcode = QUERY, id = 36724, rcode = > NXDOMAIN > > header flags: response, auth. > answer, want recursion > > questions = 1, answers = > 0, authority records = 1, additional = 0 > > > > QUESTIONS: > > server1.eur.dcn.domain1.mil, type = > A, class = IN > > AUTHORITY RECORDS: > > -> eur.dcn.domain1.mil > > type = SOA, class = IN, dlen = 36 > > ttl = 86400 (1D) > > origin = > dns-e1.eur.dcn.domain1.mil > > mail addr = > root.dns-e1.eur.dcn.domain1.mil > > serial = 2010010803 > > refresh = 86400 (1D) > > retry = 7200 (2H) > > expire = 1728000 (1728000) > > minimum ttl = 86400 (1D) > > > > > > ;; res_nmkquery(QUERY, server1.eur.domain2.mil, IN, > A) > > > > SendRequest(), len 35 > > HEADER: > > opcode = QUERY, id = 36725, rcode = > NOERROR > > header flags: query, want > recursion > > questions = 1, answers = > 0, authority records = 0, additional = 0 > > > > QUESTIONS: > > server1.eur.domain2.mil, type = A, > class = IN > > > > > > > > Got answer (138 bytes): > > HEADER: > > opcode = QUERY, id = 36725, rcode = > NOERROR > > header flags: response, auth. > answer, want recursion > > questions = 1, answers = > 1, authority records = 2, additional = 2 > > > > QUESTIONS: > > server1.eur.domain2.mil, type = A, > class = IN > > ANSWERS: > > -> server1.eur.domain2.mil > > type = A, class = IN, dlen = 4 > > internet address = 199.10.205.100 > > ttl = 86400 (1D) > > AUTHORITY RECORDS: > > -> eur.domain2.mil > > type = NS, class = IN, dlen = 22 > > nameserver = > dns-e2.eur.dcn.domain1.mil > > ttl = 86400 (1D) > > -> eur.domain2.mil > > type = NS, class = IN, dlen = 9 > > nameserver = > dns-e1.eur.dcn.domain1.mil > > ttl = 86400 (1D) > > ADDITIONAL RECORDS: > > -> dns-e1.eur.dcn.domain1.mil > > type = A, class = IN, dlen = 4 > > internet address = 10.99.5.18 > > ttl = 86400 (1D) > > -> dns-e2.eur.dcn.domain1.mil > > type = A, class = IN, dlen = 4 > > internet address = 10.99.5.25 > > ttl = 86400 (1D) > > > > > > Name: server1.eur.domain2.mil > > Address: 199.10.205.100 > > > >> exit > > > > > > > > > > > > srs-e1-swartzb(~)-> more /etc/resolv.conf > > search eur.dcn.domai
a question on bind cache
Hello, We have been facing this problem, sometime the original server was down, but Bind didn't know it, and still answered clients with the dead IP. Or sometime an external domain name has two or more IPs, accessing to part of them is fast, but accessing to another part is slow. So, do you think is there a resolving way for Bind which can implement the features: 1. check the popular domains' original IPs (like google's, yahoo's, aol's etc), and exclude the dead IPs from its cache. 2. for the popular domains, testing the access speed to each of their IPs and answers the fast IPs to local clients. Thanks for any suggestion. Regards, Wah. __ See what's on at the movies in your area. Find out now: http://au.movies.yahoo.com/session-times/ ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
The thread is dead?
I do not see any activity in the thread... is everyone on holidays? Regards ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: a question on bind cache
Tech W. wrote: > So, do you think is there a resolving way for Bind which can > implement the features: > > 1. check the popular domains' original IPs (like google's, yahoo's, > aol's etc), and exclude the dead IPs from its cache. > 2. for the popular domains, testing the access speed to each of their > IPs and answers the fast IPs to local clients. Neither of these is the job of DNS. AlanC ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Best way to run Bind on public DNS servers??
On Jan 14, 2010, at 3:00 AM, Kaya Saman wrote: > Thanks Jason! Will this work as Bind will examine the packet and will > have a different IP in the sendto: part If your firewall/NAT is forwarding a public address to your private internal address, it will rewrite the packets in order to do so, to reach the private internal address. You can use tcpdump to confirm the traffic seen by either dns server. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Handling of RSASHA256 and RSASHA512 in BIND 9.6.0 and BIND 9.6.0-P1
On Dec 15 2009, Evan Hunt wrote: (Doug Barton wrote) BIND 9.6.2 is in the "b1" phase atm, which means that there is plenty of time to get SHA2 in there and get the release out before a signed root goes live. I encourage the folks at ISC to do so, and if you agree I encourage you to make your voice heard. We hear you. Expect a decision in the next few days. So, has the decision been made? [I am tentatively planning on going to 9.7 in production round about Easter, in good time for the RSASHA256-signed root zone in July, but it would be nice to have a fall-back option.] -- Chris Thompson Email: c...@cam.ac.uk ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: a question on bind cache
The highest incentive, and the optimal strategy, is for content *owners* to manage this, not *consumers*. http://lmgtfy.com/?q=content+distribution+network - Kevin Tech W. wrote: Hello, We have been facing this problem, sometime the original server was down, but Bind didn't know it, and still answered clients with the dead IP. Or sometime an external domain name has two or more IPs, accessing to part of them is fast, but accessing to another part is slow. So, do you think is there a resolving way for Bind which can implement the features: 1. check the popular domains' original IPs (like google's, yahoo's, aol's etc), and exclude the dead IPs from its cache. 2. for the popular domains, testing the access speed to each of their IPs and answers the fast IPs to local clients. Thanks for any suggestion. Regards, Wah. __ See what's on at the movies in your area. Find out now: http://au.movies.yahoo.com/session-times/ ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Handling of RSASHA256 and RSASHA512 in BIND 9.6.0 and BIND 9.6.0-P1
> >We hear you. Expect a decision in the next few days. > > So, has the decision been made? > > [I am tentatively planning on going to 9.7 in production round about Easter, > in good time for the RSASHA256-signed root zone in July, but it would be > nice to have a fall-back option.] I'm sorry, I completely forgot to follow up on this. Thank you for the nudge. Yes, we are backporting the SHA-2 algorithms into 9.6. It will be in the next release, which I believe will be called "9.6.2rc1", and will be out by the end of this month. (I expect it to be sooner, actually; I'm just hedging my bet.) -- Evan Hunt -- e...@isc.org Internet Systems Consortium, Inc. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Best way to run Bind on public DNS servers??
Jason Fesler wrote: On Jan 14, 2010, at 3:00 AM, Kaya Saman wrote: Thanks Jason! Will this work as Bind will examine the packet and will have a different IP in the sendto: part If your firewall/NAT is forwarding a public address to your private internal address, it will rewrite the packets in order to do so, to reach the private internal address. You can use tcpdump to confirm the traffic seen by either dns server. Many thanks Jason for the support! Since everyone has mentioned I can do this I'm certain it will be a swift an easy job for my migration! Best regards, Kaya ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Handling of RSASHA256 and RSASHA512 in BIND 9.6.0 and BIND 9.6.0-P1
On 1/14/2010 8:11 AM, Evan Hunt wrote: >>> We hear you. Expect a decision in the next few days. >> >> So, has the decision been made? >> >> [I am tentatively planning on going to 9.7 in production round about Easter, >> in good time for the RSASHA256-signed root zone in July, but it would be >> nice to have a fall-back option.] > > I'm sorry, I completely forgot to follow up on this. Thank you for > the nudge. > > Yes, we are backporting the SHA-2 algorithms into 9.6. It will be in the > next release, which I believe will be called "9.6.2rc1", and will be out > by the end of this month. (I expect it to be sooner, actually; I'm just > hedging my bet.) Thank you, both for the decision and the followup. :) Doug -- Improve the effectiveness of your Internet presence with a domain name makeover!http://SupersetSolutions.com/ Computers are useless. They can only give you answers. -- Pablo Picasso ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Multiple masters?
And I right in thinking that, on a slave, I can have multiple masters designated for a particular zone? I just have to make sure that the slave that is pretending to be the master allows transfers, right? All but two of the slaves are BIND, the other two are Evil Empire servers. Still no problem? -- Peter Laws / N5UWY National Weather Center / Network Operations Center University of Oklahoma Information Technology pl...@ou.edu --- Feedback? Contact my director, Craig Cochell, cra...@ou.edu. Thank you! ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Multiple masters?
On Jan 14, 2010, at 5:04 PM, Peter Laws wrote: > And I right in thinking that, on a slave, I can have multiple masters > designated for a particular zone? I just have to make sure that the slave > that is pretending to be the master allows transfers, right? Don't forget about the notify mechanism. Make sure it's properly configured and tuned. > All but two of the slaves are BIND, the other two are Evil Empire servers. > Still no problem? No problem. Chris Buxton ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: a question on bind cache
- Original Message > From: Kevin Darcy > To: bind-users@lists.isc.org > Sent: Thu, 14 January, 2010 11:42:32 PM > Subject: Re: a question on bind cache > > The highest incentive, and the optimal strategy, is for content *owners* > to manage this, not *consumers*. > > http://lmgtfy.com/?q=content+distribution+network > Thanks, I know something about CDN. But I also want to know if it's possible to let DNS handle this? Regards. __ See what's on at the movies in your area. Find out now: http://au.movies.yahoo.com/session-times/ ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: a question on bind cache
On Jan 14, 2010, at 9:53 PM, Tech W. wrote: > - Original Message >> From: Kevin Darcy >> To: bind-users@lists.isc.org >> Sent: Thu, 14 January, 2010 11:42:32 PM >> Subject: Re: a question on bind cache >> >> The highest incentive, and the optimal strategy, is for content *owners* >> to manage this, not *consumers*. >> >> http://lmgtfy.com/?q=content+distribution+network >> > > Thanks, I know something about CDN. > But I also want to know if it's possible to let DNS handle this? It's possible for some monitoring system to use DNS to approximate this, but it will never be perfect. Take a look at the offerings of F5 -- www.f5.com. Chris Buxton ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: a question on bind cache
>> http://lmgtfy.com/?q=content+distribution+network > Thanks, I know something about CDN. > But I also want to know if it's possible to let DNS handle this? BIND itself does not "do" this. You could monitor your services and then use dynamic DNS to change resource records based on the results, but it's not the best way to go about doing it. To illustrate, you can use a window as a door. It works, but it's not the "right" thing to do. AlanC ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: a question on bind cache
- Original Message > From: Alan Clegg > To: bind-users@lists.isc.org > Sent: Fri, 15 January, 2010 11:37:58 AM > Subject: Re: a question on bind cache > > You could monitor your services and then use dynamic DNS to change > resource records based on the results, but it's not the best way to go > about doing it. Thanks Alan and others. What's the reason we should not do this with DNS? And what's the best way? Thanks again. __ See what's on at the movies in your area. Find out now: http://au.movies.yahoo.com/session-times/ ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: a question on bind cache
there is no reason we should not do this with DNS, but bind does not provide those kind function. you could find another dns solution for what you want to do, like F5. F5 provides a part of what you want do. like giving closest ip address of server where you query domains. but bind does not. 2010/1/15 Tech W. > > > > > - Original Message > > From: Alan Clegg > > To: bind-users@lists.isc.org > > Sent: Fri, 15 January, 2010 11:37:58 AM > > Subject: Re: a question on bind cache > > > > > You could monitor your services and then use dynamic DNS to change > > resource records based on the results, but it's not the best way to go > > about doing it. > > Thanks Alan and others. > What's the reason we should not do this with DNS? > And what's the best way? > > Thanks again. > > > > > __ > See what's on at the movies in your area. Find out now: > http://au.movies.yahoo.com/session-times/ > ___ > bind-users mailing list > bind-users@lists.isc.org > https://lists.isc.org/mailman/listinfo/bind-users > ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
