How to stop ANY zone transfer
Hello all. I'm developing a web application to apply massive dns changes automatically. I have a master dns server and three slaves. To test the application I'm going to create an identical copy of the master server (in the same network too). What is scaring me is the update of the slaves. If I don't change anything in the Bind configuration on the test server at the first zone change it will replicate the zone to the slaves, and I, obviously, don't want it. What is the best way to stop ANY zone transfer (even to the slaves configured in the zones)? Is a global "NOTFY NO" enough? Thanks in advance for any suggestion. Stefano. Stefano Chiesa Wolters Kluwer Italia Strada 1, Palazzo F6 20090 Milanofiori Assago (Mi) - Italia Phone +39 0282476279 (20279 Voip) Fax +39 0282476815 ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
OT - Dns test Q/A
Hello all. I created an application to delegate zone management to collegues that are used to ask changes to that zones. I would set up a small "zone administration test" to verify a minimal dns knowledge (right use of main RR such A-CNAME-MX.) Can you suggest me a document from which I can extract few questions? Sorry for the OT and thanks in advance. Stefano Chiesa. -------- Stefano Chiesa Wolters Kluwer Italia Network Specialist Strada 1, Palazzo F6 20090 Milanofiori Assago (Mi) - Italia Phone +39 0282476279 (20279 Voip) Fax +39 0282476815 ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
R: OT - Dns test Q/A - [[]] - ok it's an OT, but no help?
-Messaggio originale- Da: bind-users-bounces+stefano.chiesa=wki...@lists.isc.org [mailto:bind-users-bounces+stefano.chiesa=wki...@lists.isc.org] Per conto di Chiesa Stefano Inviato: giovedì 29 novembre 2012 11.44 A: bind-users@lists.isc.org Oggetto: OT - Dns test Q/A - [[]] Hello all. I created an application to delegate zone management to collegues that are used to ask changes to that zones. I would set up a small "zone administration test" to verify a minimal dns knowledge (right use of main RR such A-CNAME-MX.) Can you suggest me a document from which I can extract few questions? Sorry for the OT and thanks in advance. Stefano Chiesa. -------- Stefano Chiesa Wolters Kluwer Italia Network Specialist Strada 1, Palazzo F6 20090 Milanofiori Assago (Mi) - Italia Phone +39 0282476279 (20279 Voip) Fax +39 0282476815 ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Allow recursion for esternal resources in a authoritative zone on a "not open" dns server
Hello all. I have a "closed" bind dns server. It answers only to queries related to zones it is authoritative for (a normal behaviour... right?). I have dns zones that contain cname that points to hostnames in domains not managed by that server. So it won't resolve that names returning the cname to the client. I'd like to know if there is a way to tell to BIND "if the external resource is in a domain managed by you, resolve (do recourse)" Do you know if it is possible? Thanks in advance, Stefano. Stefano Chiesa Wolters Kluwer Italia Network Specialist Strada 1, Palazzo F6 20090 Milanofiori Assago (Mi) - Italia Phone +39 0282476279 (20279 Voip) Fax +39 0282476815 ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
R: DNS with several ip adessess
I use views to manage about 500 "mirrored" (internal/external) zones and it works fine. > Use views Views +1 Stefano. -Messaggio originale- Da: bind-users-bounces+stefano.chiesa=wki...@lists.isc.org [mailto:bind-users-bounces+stefano.chiesa=wki...@lists.isc.org] Per conto di Dnsbed Ops Inviato: lunedì 30 dicembre 2013 11.03 A: bind-users@lists.isc.org Oggetto: Re: DNS with several ip adessess On 2013-12-30 17:38, Abdul Khader wrote: > Use views Views +1 http://www.cyberciti.biz/faq/linux-unix-bind9-named-configure-views/ ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
R: Again question about edns (like swupdl.adobe.com)
Hello all.
Maybe I didn't understand the problem but in my installation of BIND 9.10
WINDOWS I can't replicate the error:
C:\>dig swupdl.adobe.com @10.39.128.11
; <<>> DiG 9.10-P1 <<>> swupdl.adobe.com @10.39.128.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 43143
;; flags: qr rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 8, ADDITIONAL: 9
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;swupdl.adobe.com. IN A
;; ANSWER SECTION:
swupdl.adobe.com. 10761 IN CNAME swupdl.wip4.adobe.com.
swupdl.wip4.adobe.com. 561 IN CNAME swupdl.adobe.com.edgesuite.net.
swupdl.adobe.com.edgesuite.net. 21561 IN CNAME a1577.d.akamai.net.
a1577.d.akamai.net. 20 IN A 95.101.34.43
a1577.d.akamai.net. 20 IN A 95.101.34.51
-
C:\>dig www.acer.it @10.39.128.11
; <<>> DiG 9.10-P1 <<>> www.acer.it @10.39.128.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 49188
;; flags: qr rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 8, ADDITIONAL: 9
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;www.acer.it. IN A
;; ANSWER SECTION:
www.acer.it.275 IN CNAME public-akamai.gtm.acer.com.
public-akamai.gtm.acer.com. 6 IN CNAME www.acer.com.edgesuite.net.
www.acer.com.edgesuite.net. 21576 INCNAME a492.b.akamai.net.
a492.b.akamai.net. 20 IN A 2.228.46.113
a492.b.akamai.net. 20 IN A 2.228.46.122
Regards.
Stefano Chiesa
Da: bind-users-boun...@lists.isc.org [mailto:bind-users-boun...@lists.isc.org]
Per conto di IDS Submit
Inviato: mercoledì 22 ottobre 2014 12:30
A: bind-us...@isc.org
Oggetto: Again question about edns (like swupdl.adobe.com)
Good morning,
with www.acer.it I have the same problem as swupdl.adobe.com
NXDOMAIN with bind 9.10 but NOERROR with Google DNS
I have read the Mark Andrews reply on july 4 2014:
--
It looks like nameserver vendors are not doing even rudimentry checks like
those above. DiG has thos options so that we could perform checks like these.
Until Adobe fix their broken servers you can use a server clause to disable
sending SIT requests to them. Obviously this does not scale.
server { request-sit no; };
Mark
--
But this doesn't solve the problem on others domains ...
... should be possible enable "request-sit no" for all domains and not manually
add it?
Because I think there are lot of domains with this problem L
--
\Server\Bind\bin\dig.exe @81.174.15.142 www.acer.it
; <<>> DiG 9.10.1 <<>> @81.174.15.142 www.acer.it
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42228
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;www.acer.it. IN A
;; ANSWER SECTION:
www.acer.it.300 IN CNAME public-akamai.gtm.acer.com.
;; AUTHORITY SECTION:
gtm.acer.com. 60 IN SOA gtm1.acer.com.
hostmaster.gtm1.acer.com. 482 10800 3600 604800 60
;; Query time: 572 msec
;; SERVER: 81.174.15.142#53(81.174.15.142)
;; WHEN: Wed Oct 22 12:13:12 ora legale Europa occidentale 2014
;; MSG SIZE rcvd: 132
--
--
\Server\Bind\bin\dig.exe @8.8.8.8 www.acer.it
; <<>> DiG 9.10.1 <<>> @8.8.8.8 www.acer.it
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 34510
;; flags: qr rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;www.acer.it. IN A
;; ANSWER SECTION:
www.acer.it.281 IN CNAME public-akamai.gtm.acer.com.
public-akamai.gtm.acer.com. 11 IN CNAME www.acer.com.edgesuite.net.
www.acer.com.edgesuite.net. 12306 INCNAME a492.b.akamai.net.
a492.b.akamai.net. 19 IN A 88.149.196.137
a492.b.akamai.net. 19 IN A 88.149.196.145
;; Query time: 60 msec
;; SERVER: 8.8.8.8#53(8.8.8.8)
;; WHEN: Wed Oct 22 12:14:02 ora legale Europa occidentale 2014
;; MSG SIZE rcvd: 180
---
Bind 9.9.3 slave keep on asking zone tranfer to a 9.10.2.master
Hello all. I used since many years Bind on Windows w/o problems. Now I'm doing a double upgrade: from Windows Server 2003 to 2012 and from Bind 9.9.3-P2 to 9.10.2-P3 at the same time. I've already upgraded three server, the Master and two Slaves and everything seems ok. There are three other slaves 2003 (I cannot upgrade them right now) that show a strange behaviour. They keep on asking zone transfer even if the Master tell them that the zone is "up to date" (below an example but the log files are full of these messages). I use two views (internal and external) but this happen only with the external view (this is why there is "connected using 10.39.18.12". When the Master sees this ip it answers with the external zone). This configuration did not change from the beginning so I think there must be a "misunderstanding" between Master and Slave... Where am I doing wrong? Thanks in advance Stefano Chiesa. MASTER (10.39.128.11) == XFER.LOG 20-Aug-2015 15:02:03.041 info: transfer of 'genya.it/IN/external' from 10.39.128.11#53: Transfer completed: 0 messages, 1 records, 0 bytes, 0.046 secs (0 bytes/sec) 20-Aug-2015 15:02:24.118 info: transfer of 'rete-tecnet.com/IN/external' from 10.39.128.11#53: connected using 10.39.18.12#16152 20-Aug-2015 15:02:24.165 info: transfer of 'rete-tecnet.com/IN/external' from 10.39.128.11#53: Transfer completed: 0 messages, 1 records, 0 bytes, 0.046 secs (0 bytes/sec) 20-Aug-2015 15:02:29.149 info: transfer of 'igle.it/IN/external' from 10.39.128.11#53: connected using 10.39.18.12#16153 20-Aug-2015 15:02:29.196 info: transfer of 'igle.it/IN/external' from 10.39.128.11#53: Transfer completed: 0 messages, 1 records, 0 bytes, 0.046 secs (0 bytes/sec) 20-Aug-2015 15:02:32.430 info: transfer of 'strategieimpresa.it/IN/external' from 10.39.128.11#53: connected using 10.39.18.12#16154 20-Aug-2015 15:02:32.477 info: transfer of 'strategieimpresa.it/IN/external' from 10.39.128.11#53: Transfer completed: 0 messages, 1 records, 0 bytes, 0.046 secs (0 bytes/sec) 20-Aug-2015 15:02:45.601 info: transfer of 'pragma.it/IN/external' from 10.39.128.11#53: connected using 10.39.18.12#16155 20-Aug-2015 15:02:45.648 info: transfer of 'pragma.it/IN/external' from 10.39.128.11#53: Transfer completed: 0 messages, 1 records, 0 bytes, 0.046 secs (0 bytes/sec) 20-Aug-2015 15:02:52.866 info: transfer of 'lamiabibliotecawki.it/IN/external' from 10.39.128.11#53: connected using 10.39.18.12#16156 20-Aug-2015 15:02:52.913 info: transfer of 'lamiabibliotecawki.it/IN/external' from 10.39.128.11#53: Transfer completed: 0 messages, 1 records, 0 bytes, 0.046 secs (0 bytes/sec) DEFAULT.LOG 20-Aug-2015 15:02:02.682 debug 1: client 10.39.18.12#16151 (genya.it): view external: transfer of 'genya.it/IN': IXFR poll up to date 20-Aug-2015 15:02:02.682 info: client 10.39.18.12#16151 (genya.it): view external: transfer of 'genya.it/IN': IXFR ended 20-Aug-2015 15:02:23.808 debug 1: client 10.39.18.12#16152 (rete-tecnet.com): view external: transfer of 'rete-tecnet.com/IN': IXFR poll up to date 20-Aug-2015 15:02:23.808 info: client 10.39.18.12#16152 (rete-tecnet.com): view external: transfer of 'rete-tecnet.com/IN': IXFR ended 20-Aug-2015 15:02:28.839 debug 1: client 10.39.18.12#16153 (igle.it): view external: transfer of 'igle.it/IN': IXFR poll up to date 20-Aug-2015 15:02:28.839 info: client 10.39.18.12#16153 (igle.it): view external: transfer of 'igle.it/IN': IXFR ended 20-Aug-2015 15:02:32.121 debug 1: client 10.39.18.12#16154 (strategieimpresa.it): view external: transfer of 'strategieimpresa.it/IN': IXFR poll up to date 20-Aug-2015 15:02:32.121 info: client 10.39.18.12#16154 (strategieimpresa.it): view external: transfer of 'strategieimpresa.it/IN': IXFR ended 20-Aug-2015 15:02:45.293 debug 1: client 10.39.18.12#16155 (pragma.it): view external: transfer of 'pragma.it/IN': IXFR poll up to date 20-Aug-2015 15:02:45.293 info: client 10.39.18.12#16155 (pragma.it): view external: transfer of 'pragma.it/IN': IXFR ended 20-Aug-2015 15:02:52.559 debug 1: client 10.39.18.12#16156 (lamiabibliotecawki.it): view external: transfer of 'lamiabibliotecawki.it/IN': IXFR poll up to date 20-Aug-2015 15:02:52.559 info: client 10.39.18.12#16156 (lamiabibliotecawki.it): view external: transfer of 'lamiabibliotecawki.it/IN': IXFR ended SLAVE (10.39.18.12) === XFER.LOG 20-Aug-2015 15:02:02.994 info: transfer of 'genya.it/IN/external' from 10.39.128.11#53: connected using 10.39.18.12#16151 20-Aug-2015 15:02:03.041 info: transfer of 'genya.it/IN/external' from 10.39.128.11#53: Transfer completed: 0 messages, 1 records, 0 bytes, 0.046 secs (0 bytes/sec) 20-Aug-2015 15:02:24.118 info: transfer of 'rete-tecnet.com/IN/external' from 10.39.128.11#53: connected using 10.39.18.12#16152 20-Aug-2015 15:02:24.165 info: transfer of 'rete-tecnet.com/IN/external' from 10.39.128.11#53: Transfer completed: 0 messages, 1 records, 0 bytes, 0.046 secs (0 bytes/sec) 20-Aug-2015 15:02:29.149 info: transfer of 'igle.it/IN/e
Bind 9.6.0p1- Windows - The service did not respond to the start or control request in a timely fashion.
Hi all. Maybe it's not a new issue, but... I have a Windows 2003 SP2 with a 9.4.2 release that worked fine for years. Today I wanted to upgrade my release to 9.6. I installed it but when I try to start the service the system says: Event Type: Error Event Source: Service Control Manager Event Category: None Event ID: 7000 Date: 1/8/2009 Time: 1:45:55 PM User: N/A Computer: S-MI-DNS Description: The ISC BIND service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. No other messages in Event Viewer. I reinstalled the 9.4.2 version and everything returned to work... Does someone know why (and the solution)? Thanks in advance. Stefano Chiesa ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Too long stats on version: 9.6.0-P1 - windows
Hi all. I just upgraded my Bind 9.4.2 to 9.6.0-P1 without changing anything in the named.conf file. Now my named.stats has changed in his structure from the short one: +++ Statistics Dump +++ (1211013000) success 664883 referral 127191 nxrrset 147535 nxdomain 183023 recursion 442326 failure 11897 --- Statistics Dump --- (1211013000) to the extended one: +++ Statistics Dump +++ (1234878900) ++ Incoming Requests ++ 24196 QUERY 1391 NOTIFY 18 UPDATE ++ Incoming Queries ++ 11377 A 3150 NS 318 CNAME 428 SOA 4956 PTR 2194 MX 418 TXT 971 52 SRV 111 A6 54 SPF 3 TKEY 119 IXFR 46 ANY ++ Outgoing Queries ++ [View: internal] 7967 A 25 NS 285 CNAME 84 SOA 4998 PTR 590 MX 118 TXT 49 26 SRV 1 ANY [View: external] 3 A 1 NS 3 Is there a way to come back to the first structure? The dns server send the file to a statistic server but now it doesn't undestand the structure any more... Thanks in advance... Stefano. C:\bind\bin>rndc status version: 9.6.0-P1 CPUs found: 2 worker threads: 2 number of zones: 683 debug level: 0 xfers running: 0 xfers deferred: 0 soa queries in progress: 0 query logging is ON recursive clients: 2/0/1000 tcp clients: 1/100 server is up and running Stefano Chiesa Wolters Kluwer Italia 20090 Milanofiori Assago (Mi) Strada 1, Palazzo F6 Phone +39 0282476279 (20279 Voip) Fax +39 0282476633 ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
R: How do I stress test my newly setup DNS BIND server?
Hello Samad. There are two other tools you can review: http://www.grc.com/dns/benchmark.htm http://code.google.com/p/namebench/ Have a nice day. Stefano. Da: bind-users-bounces+stefano.chiesa=wki...@lists.isc.org [mailto:bind-users-bounces+stefano.chiesa=wki...@lists.isc.org] Per conto di Samad Agha Inviato: giovedì 19 agosto 2010 19.35 A: Tom Daly Cc: bind-users@lists.isc.org Oggetto: Re: How do I stress test my newly setup DNS BIND server? Thanks guys; how about something to check for any possible errors that might be generating? Samad On Thu, Aug 19, 2010 at 9:17 AM, Tom Daly wrote: Samad, It depends on how you want to test. Are you looking to test DNS query performance (if so, try dnsperf from Nominum), and if you just want to test the box itself for malformed query handling / TCP/UDP stack performance try using tcpreplay + PCAPs captured from the world. Tom > I'm new to setting up DNS servers, I used Webmin to set it up, and now > need to test all different functionalities of it before registering it > (basically a stress test). Can someone show me some cool commands to > do this? Thanks in advance. > > Samad Agha > ___ > bind-users mailing list > bind-users@lists.isc.org > https://lists.isc.org/mailman/listinfo/bind-users -- Tom Daly CTO, Dynamic Network Services, Inc. http://dyn.com/ ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
R: How do I stress test my newly setup DNS BIND server?
Sorry... And this one too: http://www.txdns.net/ TXDNS is a Win32 aggressive multithreaded DNS digger. Capable of placing, on the wire, thousands of DNS queries per minute. Ciao. Stefano. Da: bind-users-bounces+stefano.chiesa=wki...@lists.isc.org [mailto:bind-users-bounces+stefano.chiesa=wki...@lists.isc.org] Per conto di Samad Agha Inviato: giovedì 19 agosto 2010 19.35 A: Tom Daly Cc: bind-users@lists.isc.org Oggetto: Re: How do I stress test my newly setup DNS BIND server? Thanks guys; how about something to check for any possible errors that might be generating? Samad On Thu, Aug 19, 2010 at 9:17 AM, Tom Daly wrote: Samad, It depends on how you want to test. Are you looking to test DNS query performance (if so, try dnsperf from Nominum), and if you just want to test the box itself for malformed query handling / TCP/UDP stack performance try using tcpreplay + PCAPs captured from the world. Tom > I'm new to setting up DNS servers, I used Webmin to set it up, and now > need to test all different functionalities of it before registering it > (basically a stress test). Can someone show me some cool commands to > do this? Thanks in advance. > > Samad Agha > ___ > bind-users mailing list > bind-users@lists.isc.org > https://lists.isc.org/mailman/listinfo/bind-users -- Tom Daly CTO, Dynamic Network Services, Inc. http://dyn.com/ ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
R: How do I do a zone transfer of two different views
Hello Scott.
You have to reserve an internal IP to use to transfer the external view.
In my case, on the master:
ON THE MASTER
acl Internal_Network{
10.39.0.0/16;
};
view "internal" {
match-clients {
!10.39.144.2; //on of two slave's ip used for
exterlal view transfer
Internal_Network;
};
view "external" {
match-clients { any; };
};
ON THE SLAVE (primary ip 10.39.144.1)
--
view "external" {
match-clients { any; };
transfer-source 10.39.144.2;
};
So the slave uses 10.39.144.1 to transfer internal zones and 10.39.144.2
for the external ones.
Hope this helps.
Ciao.
Stefano.
-Messaggio originale-
Da: bind-users-bounces+stefano.chiesa=wki...@lists.isc.org
[mailto:bind-users-bounces+stefano.chiesa=wki...@lists.isc.org] Per
conto di Scott Simpson
Inviato: sabato 28 agosto 2010 8.22
A: bind-users@lists.isc.org
Oggetto: How do I do a zone transfer of two different views
I have a master DNS server with two different views: "internal" and
"external". How do I do a zone transfer of the two different views? The
following on the slave only grabs the internal view:
view "external" {
match-clients { any; };
allow-transfer { none; };
allow-query { any; };
zone "foo.org" in {
type slave;
masters { 192.168.2.10; };
file "named.foo.org.external.slave";
};
...
because I don't know how to specify the correct view from the master.
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
R: Unable to query the nameserver
On Mon, Oct 4, 2010 at 23:20, Andrey G. Sergeev (AKA Andris) wrote: > Hi Dotan! > Hello hello! > You might be blocking 53/udp and (or) 53/tcp port. Try to query your > problematic server from some other location rather than the site this > server is installed on. > The ports aren't blocked as another site (example.eu) hosted on the 1.1.1.1 server works fine. The working site has both nameservers pointed to that same server (on two different IP addresses on eth0 and etho0:0). Only the example.de site which has one nameserver on the 1.1.1.1 machine and the second nameserver on 1.1.2.2 is giving me a headache. Hello Dothan. You said: "The working site has both nameservers pointed to that same server (on two different IP addresses on eth0 and etho0:0)." So the question is "Are you sure you answer to queries on the proper interface?" Maybe you (for instance) receive a query on eth0:0 (1.1.2.2 ?) but answer on eth0 (1.1.1.1 ?)... What is your default gateway? Ciao. Stefano. -- Dotan Cohen http://gibberish.co.il http://what-is-what.com ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
R: Operating system recommendation
-Messaggio originale- Da: bind-users-bounces+stefano.chiesa=wki...@lists.isc.org [mailto:bind-users-bounces+stefano.chiesa=wki...@lists.isc.org] Per conto di pollex Inviato: mercoledì 9 marzo 2011 20.52 A: comp-protocols-dns-b...@isc.org Oggetto: Operating system recommendation Hi, I want to know in your experience what is the best operating system to run bind for an ISP. We currently have Debian for the 5 Cache servers and for the 2 Authoritative servers. We have around 111851 success querys in the cache servers and around 7267 zones created in the authoritative servers. We are doing a major re analysis for all the arquitecture and Debian is changing to soon their versions and only have support for 1 version before so I dont know if this is best option Best regards and thanks ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users Hello. The italian Registration Authorithy, that manages more than 2 millions .it domains, runs theirs BIND dns server on UBUNTU. For futher info you can try to contact them at their email addresses: i...@registro.it hostmas...@registro.it http://www.nic.it/?set_language=en Hope this help. Ciao. Stefano. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
R: Help me- Bind9.71 service not start on Windows XP
Hello. You have to go to: Control Panel Administrative Tools Services Look for "ISC BIND" and start it. Check if it is in the "Automatic Startup Type" and if, in the Event Viewer, it returns errors. Hope it helps. Ciao. Stefano. -Messaggio originale- Da: bind-users-bounces+stefano.chiesa=wki...@lists.isc.org [mailto:bind-users-bounces+stefano.chiesa=wki...@lists.isc.org] Per conto di Vasant Srisanan Inviato: domenica 4 luglio 2010 6.37 A: bind-us...@isc.org Oggetto: Help me- Bind9.71 service not start on Windows XP I install at c:\Servers\named But can't start it. How I do,for start it. Thank you. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Does bind send email?
Hello all. I've noticed that in the McAfee Antivirus AccessProtectionLog several lines like this one: "27/05/2010 17.06.32 1094 C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi93.49.247.253:25" (translated from italian: Prevent mass mailing worms from sending mail). What is strange is the blocked process: C:\bind\bin\named.exe (our Windows 2003 Bind 9.6.0-P1 installation). So, does bind send email? Details: Bind 9.6.0-P1 Windows 2003 Server sp3 McAfee Viruscan 8.5.0i Thanks in advance, and sorry if I bother you all. Ciao. Stefano Chiesa. -------- Stefano Chiesa Wolters Kluwer Italia Strada 1, Palazzo F6 20090 Milanofiori Assago (Mi) - Italia Phone +39 0282476279 (20279 Voip) Fax +39 0282476633 9/10/2009 11.46.451094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi80.252.224.6:25 19/10/2009 15.09.291094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi80.252.224.6:25 19/10/2009 17.20.371094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi80.252.224.6:25 20/10/2009 10.00.061094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi80.252.224.6:25 21/10/2009 10.00.581094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi80.252.224.6:25 21/10/2009 17.17.401094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi80.252.224.6:25 22/10/2009 11.00.041094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi80.252.224.6:25 22/10/2009 13.24.451094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi80.252.224.6:25 22/10/2009 17.35.161094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi80.252.224.6:25 23/10/2009 16.12.341094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi80.252.224.6:25 10/11/2009 10.44.361094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi89.105.151.154:25 16/11/2009 16.25.071094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi93.55.227.246:25 30/11/2009 10.17.151094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi160.97.1.254:25 26/12/2009 13.46.541094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi217.169.214.105:25 11/01/2010 19.52.361094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi160.97.1.254:25 27/01/2010 11.12.071094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi93.55.220.134:25 11/02/2010 10.14.281094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi83.103.23.98:25 05/03/2010 5.52.06 1094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi146.187.216.3:587 13/03/2010 12.19.561094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi93.62.253.101:25 27/05/2010 17.06.321094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi93.49.247.253:25 27/05/2010 18.21.491094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi187.58.17.194:25 08/06/2010 23.31.191094C:\bind\bin\named.exe Protezione antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare messaggi187.58.17.194:25 ___ bind-users mailing
R: Does bind send email?
A couple of details:
* bind is working fine and on the server the Task Manager shows just one
named.exe process ("show processes from all users" checked)
* I don't' think McAfee is triggering on MX lookups because he's blocking
connection on port 25 (look at the end of log line: 187.58.17.194:25)
08/06/2010 23.31.191094C:\bind\bin\named.exe Protezione
antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare
messaggi 187.58.17.194:25
Regards.
Stefano.
-Messaggio originale-
Da: bind-users-bounces+stefano.chiesa=wki...@lists.isc.org
[mailto:bind-users-bounces+stefano.chiesa=wki...@lists.isc.org] Per conto di
Phil Mayers
Inviato: venerdì 9 luglio 2010 14.23
A: bind-users@lists.isc.org
Oggetto: Re: Does bind send email?
On 09/07/10 12:18, tomasz dereszynski wrote:
>
> check below link
> apparently viruses (some) hide themselves behind that name/process.
> http://www.file.net/process/named.exe.html
>
> mind you, it might be something else ...
>
Maybe McAfee is triggering on MX lookups?
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
R: Does bind send email?
Looking at the Mcafee AccessProtectionLog I noticed that behaviour only 26
times starting from 06/06/2009.
Too few tries for a malware/virus, isn't it?
Could it be a port used fortuitously by named in his random port use?
Ciao.
Stefano.
-Messaggio originale-
Da: bind-users-bounces+stefano.chiesa=wki...@lists.isc.org
[mailto:bind-users-bounces+stefano.chiesa=wki...@lists.isc.org] Per conto di
Chiesa Stefano
Inviato: venerdì 9 luglio 2010 15.09
A: bind-users@lists.isc.org
Oggetto: R: Does bind send email?
A couple of details:
* bind is working fine and on the server the Task Manager shows just one
named.exe process ("show processes from all users" checked)
* I don't' think McAfee is triggering on MX lookups because he's blocking
connection on port 25 (look at the end of log line: 187.58.17.194:25)
08/06/2010 23.31.191094C:\bind\bin\named.exe Protezione
antivirus standard:Impedisci a worm distribuiti tramite mass-mailing di inviare
messaggi 187.58.17.194:25
Regards.
Stefano.
-Messaggio originale-
Da: bind-users-bounces+stefano.chiesa=wki...@lists.isc.org
[mailto:bind-users-bounces+stefano.chiesa=wki...@lists.isc.org] Per conto di
Phil Mayers
Inviato: venerdì 9 luglio 2010 14.23
A: bind-users@lists.isc.org
Oggetto: Re: Does bind send email?
On 09/07/10 12:18, tomasz dereszynski wrote:
>
> check below link
> apparently viruses (some) hide themselves behind that name/process.
> http://www.file.net/process/named.exe.html
>
> mind you, it might be something else ...
>
Maybe McAfee is triggering on MX lookups?
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Error after upgrading to 9.7.1-p2 windows 2k3 VMWare ESX
Hello all. Our Bind installaton is on a virtual VMWare ESX W2k3 server. I've just upgraded our public primary dns server from 9.6.0-p1 to 9.7.1-p2. After more or less 15 minutes of work the following messages appear in the log: 13-Aug-2010 9:09:39.305 general: error: .\socket.c:2444: unexpected error: 13-Aug-2010 9:09:39.305 general: error: SOCKET_RECV: Windows error code: 1236, returning ISC error 54 13-Aug-2010 9:09:39.430 general: error: .\socket.c:2444: unexpected error: 13-Aug-2010 9:09:39.430 general: error: SOCKET_RECV: Windows error code: 1236, returning ISC error 54 I read around that it could be a BIND bug, or a problem in the Windows registry. Can some of you tell me something more certain and, if it is possible, how to solve it? Thanks in advance. Have a nice day. Stefano Chiesa. Stefano Chiesa Wolters Kluwer Italia Strada 1, Palazzo F6 20090 Milanofiori Assago (Mi) - Italia Phone +39 0282476279 (20279 Voip) Fax +39 0282476633 ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Wildcard DNS records
Hello all. I manage several BIND 9.10.4-P8 servers with more of less 600 DNS zones. Anyway I never used wildcard DNS record and I hope you can help me to understand. The need is: * I have a dns zone i.e. example.com * this zone will have an unknown number of sub domains, let's say siteA.example.com, siteB.example.com, siteC.example.com with other record inside I need to know if it is possible create an A record valid for all the sub domains, WWW for instance. I thought that a record like this: www.* IN A 1.2.3.4 could work and if I'd query www.siteA.example.com it would return 1.2.3.4 ... but it does not work. Can you tell me if it is possible and how? Thanks in advance. Stefano. Stefano Chiesa | NTT DATA Italia Viale Cassala, 14/A - 20143 Milano, Italia | M: +39 337 1534214 | stefano.chi...@nttdata.com | Learn more at www.nttdata.com/it __ Disclaimer: This email and any attachments are sent in strictest confidence for the sole use of the addressee and may contain legally privileged, confidential, and proprietary data. If you are not the intended recipient, please advise the sender by replying promptly to this email and then delete and destroy this email and any attachments without any further use, copying or forwarding. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
