RE: Unable to upgrade BIND v9.19.11 on Ubuntu without error
Hi Darren,
Thank you, that's fixed it. I'm not sure why I didn't spot that blindingly
obvious error message pointing me to the exact line in my logging configuration
file! I've REM'd out that line (prefixed with '//') and the upgrade progressed
successfully. Obviously something's changed in 9.19.12 and up.
For info the source of my logging file is this, and it's what I've been using
for quite a few years now. But I don't actively review that specific log file
so I haven't lost anything by removing that statement.
https://kb.isc.org/docs/aa-01526
It was indeed this line that caused all the problems, REM'ing it out has fixed
it:
category delegation-only { auth_servers_log; default_debug; };
Thanks again for your help Darren,
Richard.
-Original Message-
From: Darren Ankney
Sent: Monday, July 10, 2023 9:07 PM
To: Richard T.A. Neal
Cc: bind-users@lists.isc.org
Subject: Re: Unable to upgrade BIND v9.19.11 on Ubuntu without error
Hi Richard,
It looks like you have an error in the configuration file
/etc/bind/named.conf.logging on line 147:
Jul 10 19:49:07 flons3 named[1140]: /etc/bind/named.conf.logging:147:
undefined category: 'delegation-only'
Jul 10 19:49:07 flons3 named[1140]: loading configuration: failure
I assume this is an included file that has your logging configuration?
It would be helpful to see the named configuration. You can get that with
named-checkconf -px which will hide any keys and pull in any includes.
Thank you,
Darren Ankney
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this software with paid support subscriptions.
Contact us at https://www.isc.org/contact/ for more information.
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: Unable to upgrade BIND v9.19.11 on Ubuntu without error
Hi Richard, FYI: The BIND 9.19.12 Release Notes contain the following: Removed Features ... Zone type delegation-only, and the delegation-only and root-delegation-only statements, have been removed. Using them is a configuration error. ... Kind Regards Peter - -- Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
RE: Unable to upgrade BIND v9.19.11 on Ubuntu without error
Thanks Peter, I shall pay more attention to those release notes next time! 😊 Best, Richard. -Original Message- From: Peter Davies Sent: Tuesday, July 11, 2023 9:25 AM To: Richard T.A. Neal Cc: bind-users@lists.isc.org Subject: Re: Unable to upgrade BIND v9.19.11 on Ubuntu without error Hi Richard, FYI: The BIND 9.19.12 Release Notes contain the following: Removed Features ... Zone type delegation-only, and the delegation-only and root-delegation-only statements, have been removed. Using them is a configuration error. ... Kind Regards Peter - -- Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Unable to upgrade BIND v9.19.11 on Ubuntu without error
And this: --cut here-- Notes for BIND 9.18.14 -- Removed Features - Zone type ``delegation-only``, and the ``delegation-only`` and ``root-delegation-only`` statements, have been deprecated. A warning is now logged when they are used. These statements were created to address the SiteFinder controversy, in which certain top-level domains redirected misspelled queries to other sites instead of returning NXDOMAIN responses. Since top-level domains are now DNSSEC-signed, and DNSSEC validation is active by default, the statements are no longer needed. :gl:`#3953` --cut here-- When you are skipping releases and running development release, I would strongly advise using `named-checkconf` when doing the upgrades. Ondřej -- Ondřej Surý (He/Him) ond...@isc.org My working hours and your working hours may be different. Please do not feel obligated to reply outside your normal working hours. > On 11. 7. 2023, at 10:25, Peter Davies wrote: > > > Hi Richard, > FYI: The BIND 9.19.12 Release Notes contain the following: > > > Removed Features > ... > Zone type delegation-only, and the delegation-only and root-delegation-only > statements, > have been removed. Using them is a configuration error. > ... > > Kind Regards Peter > > - > -- > Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from > this list > > ISC funds the development of this software with paid support subscriptions. > Contact us at https://www.isc.org/contact/ for more information. > > > bind-users mailing list > bind-users@lists.isc.org > https://lists.isc.org/mailman/listinfo/bind-users -- Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
extended dns error
Hello community I want to use "extended dns error" option on my recursive dns server. What config changes are required to enable EDE? I am using BIND 9.16.42 as recursive server. Regards Sami -- Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
RE: Unable to upgrade BIND v9.19.11 on Ubuntu without error
Thanks Ondrej, that's a really good suggestion to run named-checkconf when doing upgrades. Richard. -Original Message- From: Ondřej Surý Sent: Tuesday, July 11, 2023 9:33 AM To: Richard T.A. Neal ; ML BIND Users Subject: Re: Unable to upgrade BIND v9.19.11 on Ubuntu without error And this: --cut here-- Notes for BIND 9.18.14 -- Removed Features - Zone type ``delegation-only``, and the ``delegation-only`` and ``root-delegation-only`` statements, have been deprecated. A warning is now logged when they are used. These statements were created to address the SiteFinder controversy, in which certain top-level domains redirected misspelled queries to other sites instead of returning NXDOMAIN responses. Since top-level domains are now DNSSEC-signed, and DNSSEC validation is active by default, the statements are no longer needed. :gl:`#3953` --cut here-- When you are skipping releases and running development release, I would strongly advise using `named-checkconf` when doing the upgrades. Ondřej -- Ondřej Surý (He/Him) ond...@isc.org My working hours and your working hours may be different. Please do not feel obligated to reply outside your normal working hours. -- Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: extended dns error
Upgrade to 9.18, because 9.16 does not support extended DNS errors. See https://gitlab.isc.org/isc-projects/bind9/-/issues/?sort=created_date&state=all&label_name%5B%5D=Extended%20DNS%20Errors&first_page_size=20 For which errors are supported. Best regards, Matthijs On 7/11/23 11:10, sami.ra...@sofrecom.com wrote: Hello community I want to use "extended dns error" option on my recursive dns server. What config changes are required to enable EDE? I am using BIND 9.16.42 as recursive server. Regards Sami -- Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
