Re: rndc flush(more-than-one)name
> In message , Chris > Thom > pson writes: > > Arising out of today's little accident with the "de" TLD ... > > > > Am I right in thinking that "rndc flushname de" flushes only entries for > > that specific name, and not for names in the tree *under* "de"? It would > > be rather useful to have the latter facility (short of flushing the whole > > cache). > > > > Of course, it would be possible to invent arbitrarily refined variants > > on this theme - in this case what was wanted was "flush all negative > > answers for names matching [f-z]*.de" - but maybe not very productively. On 13.05.10 10:26, Mark Andrews wrote: > "rndc flushnamespace" / "rndc flushname -recurse" would have to > walk the tree and remove each entry. This can be time consuming. is this planned feature or does it already work somewhere? -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. I wonder how much deeper the ocean would be without sponges. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
RE: Multiple PTRs for an in-addr
Well said, Paul. I make my users choose between the various names for a server, and generally publish the name that the machine actually knows itself as, rather than any of the application names that reside there. In my opinion, the RFC is fairly clear. And my users don't know you have added this capability to BIND. So I agree this should never become the expected behavior, even if it begins to appear in great DNS software around the world. 73 Paul de NG3B Alan Alan V. Shackelford Sr. Systems Software Engineer The Johns Hopkins University and Johns Hopkins Medical Institutions Baltimore, Maryland USA 410-735-4773ashac...@jhmi.edu -Original Message- From: bind-users-bounces+ashackel=jhmi@lists.isc.org [mailto:bind-users-bounces+ashackel=jhmi@lists.isc.org] On Behalf Of Paul Vixie Sent: Wednesday, June 02, 2010 11:41 AM To: bind-us...@isc.org Subject: Chris Thompson writes: > Nothing that I can see. Maybe dnsviz can't cope with multiple PTR > records in an RRset, as your first case has? (On the other hand it > handles multiple A records in forward zones OK.) to be fair, multiple PTR RRs is something we added in BIND gethostbyaddr() in more or less direct contravention to RFC 1034. if dnsviz doesn't handle it (and i don't know if it doesn't) then it's not dnsviz's fault at all since the DNS RFC's say that there will only be one PTR RR at an in-addr. -- Paul Vixie KI6YSY ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users PGP.sig Description: PGP signature ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Choosing authoritative nameservers
Thanks for the reply sir! Just to share, I've finally figured out why my traces always seem to be hitting ens2.bursamalaysia.com no matter what I do. A packet dump actually shows requests being sent out to both ens1.bursamalaysia.com and ens2.bursamalaysia.com but somehow only ens2.bursamalaysia.com answers my queries (with a broken answer to boot!). I've tried changing my source IP and voila ens1.bursamalaysia.com suddenly starts answering again. They must really have some strange things going on their network. Their SOA does not list any valid contacts and their WHOIS contact isn't bothered to respond...just great... - Original Message - From: "Matus UHLAR - fantomas" To: Sent: Wednesday, June 02, 2010 8:39 PM Subject: Re: Choosing authoritative nameservers On 02.06.10 16:20, Elias wrote: Does anyone know how BIND chooses which authoritative server to refer to? When a referal returns ns1.abc.com, ns2.abc.com and ns3.abc.com, will the recursive server randomly send out a request to either ns1, ns2 or ns3 or is there a selection algorithm? there's algorithm preferring the server with fastest responses but ocasionally tryiong other servers. I've got a problem resolving www.klse.com.my and its probably caused by a broken server along the path. But the problem is I keep hitting the same server everytime no matter how many times I flush my caches. it's most probably not caused by server selection in BIND but in broken delegation. this is provided by com.my. sevrers: klse.com.my.86400 IN NS ens1.klse.com.my. klse.com.my.86400 IN NS ens2.klse.com.my. ;; Received 103 bytes from 61.6.38.139#53(ns5.jaring.my) in 6 ms ens1.klse.com.my. 86400 IN A 211.25.178.3 ens2.klse.com.my. 86400 IN A 121.123.146.80 This is provided by delegated servers: ;; ANSWER SECTION: klse.com.my.28800 IN NS ens1.bursamalaysia.com. klse.com.my.28800 IN NS ens2.bursamalaysia.com. ;; SERVER: 211.25.178.3#53(211.25.178.3) klse.com.my.28800 IN NS ens1.bursamalaysia.com. klse.com.my.28800 IN NS ens2.bursamalaysia.com. ;; SERVER: 121.123.146.80#53(121.123.146.80) - we can safely say STOP here, the delegation is broken, fix it. However, looking at bursamalaysia.com domain... Delegation: ;; AUTHORITY SECTION: bursamalaysia.com. 172800 IN NS ens1.bursamalaysia.com. bursamalaysia.com. 172800 IN NS ens2.bursamalaysia.com. ;; ADDITIONAL SECTION: ens1.bursamalaysia.com. 172800 IN A 211.25.178.3 ens2.bursamalaysia.com. 172800 IN A 121.123.146.80 while ens1.bursamalaysia.com. returns same list of namservers, but does not return glue records for them, the ens2.bursamalaysia.com. returns SERVFAIL for bursamalaysia.com. It's even more broken. -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Fighting for peace is like fucking for virginity... ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: rndc flush(more-than-one)name
At Thu, 3 Jun 2010 15:21:08 +0200, Matus UHLAR - fantomas wrote: > > "rndc flushnamespace" / "rndc flushname -recurse" would have to > > walk the tree and remove each entry. This can be time consuming. > > is this planned feature or does it already work somewhere? This is a planned (or wished) feature. Not available right now. --- JINMEI, Tatuya Internet Systems Consortium, Inc. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: clarification on AXFR
At Thu, 3 Jun 2010 11:39:30 +0530, rams wrote: > During AXFR of a zone, the zone.dbfile is not created till the AXFR > completes. Till AXFR completes, the file name will be some value as > 456eefwfc. Is it correct behavior? Yes, that's the intended behavior. --- JINMEI, Tatuya Internet Systems Consortium, Inc. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
