from:"dev

Re: Psuedo-Master Zones

2009-03-25 Thread dev_null




 > I would use a #include in the zone file on the internal machine to include 
 > the contents of zone file on the external machine. (NFS mount, or 
 > cron'ed rsync copy.)
 > 
 > You could use views/split horizon dns and run them both off of one server, 
 > but this seems unneeded and nasty. 
 > http://www.finalcog.com/dns-views-split-horizon-brain-dribble
 >  
 
Thanks for the reference.
I have been also meeting bind's sync problems for multi-views between master 
and slave.
Is there any official way to resolve this?

Regards.___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

multi-named instance exist?

2009-03-25 Thread dev_null

Hello,

I found a strange case on bind server.
when one named was running, I started another one or more (the same) named 
server again, they all got started successsfully.

this is the ps output:

nobody28312 1  0 10:10 ?00:00:00 /usr/local/bind/sbin/named -u 
nobody
nobody28359 1  0 10:16 ?00:00:00 /usr/local/bind/sbin/named -u 
nobody
nobody28362 1  0 10:16 ?00:00:00 /usr/local/bind/sbin/named -u 
nobody

But at this time named server behaves not normal.
for example, I added a NS record and execute rndc reload, the new record could 
not be queried.

why this happen? 

Thanks.

___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: multi-named instance exist?

2009-03-25 Thread dev_null


That's the good idea, I have written a script to archive that:

start()
{
if ! ps -efw|grep 'named -u nobody'|grep -v grep >/dev/null 2>&1;then
/usr/local/bind/sbin/named -u nobody
fi
}


Thanks.



 > dev_n...@zoho.com wrote: 
 > > Hello, 
 > > 
 > > I found a strange case on bind server. 
 > > when one named was running, I started another one or more (the same) named 
 > > server again, they all got started successsfully. 
 > > 
 > > this is the ps output: 
 > > 
 > > nobody 28312 1 0 10:10 ? 00:00:00 /usr/local/bind/sbin/named -u nobody 
 > > nobody 28359 1 0 10:16 ? 00:00:00 /usr/local/bind/sbin/named -u nobody 
 > > nobody 28362 1 0 10:16 ? 00:00:00 /usr/local/bind/sbin/named -u nobody 
 > > 
 > > But at this time named server behaves not normal. 
 > > for example, I added a NS record and execute rndc reload, the new record 
 > > could not be queried. 
 > > 
 > > why this happen? 
 > > 
 > > 
 > Do you have a wrapper script that checks whether there is already a 
 > named instance running before starting another one? 
 >  
 > Starting named manually without some sort of wrapper script like that is 
 > dangerous business, the instances have a high possibility of fighting 
 > with each other over the listen port, with the end result often being 
 > that *none* of them are functional. Look at your logs, you'll probably 
 > find some ugliness there. 
 >  
 >  
 >  - Kevin 
 >  
 > ___ 
 > bind-users mailing list 
 > bind-users@lists.isc.org 
 > https://lists.isc.org/mailman/listinfo/bind-users
 >___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: multi-named instance exist?

2009-03-25 Thread dev_null

I don't agree so much.

some time when a system is reboot unnormally, named doesn't have the chance to 
remove its pid file.
(when OS is shutdown normally, OS sends SIGTERM to named, named can exit and 
remove its own pid file.)
after system is started, the pid number in name's pid file is maybe another 
process's.
so kill -0 `cat named.pid` is successful, but named is not running at this 
time. 
Am I right?


 > Standard methodology would be to read the contents of the PID file and 
 > see if that process is running (traditionally kill -0 $pid can be used 
 > to non-intrusively check whether a given process is running). 
 >  
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: multi-named instance exist?

2009-03-25 Thread dev_null




 > If named is invoked successfully on startup, then the contents of the 
 > PID file will be overwritten with the new PID value. 
 >  
 > If named *isn't* invoked successfully on startup, then that's a separate 
 > error condition that should be detected and dealt with, within the whole 
 > startup subsystem. 
 >  
 > The problems with using "ps" to find the named process include: 
 > -- you can get false matches if you don't tailor your string matching 
 > _just_right_, 
 > -- unexpectedly "missed" matches if the command-line arguments change, 
 > even a little bit (e.g. if someone bypasses the wrapper script on an 
 > emergency basis to start the process manually, with the arguments given 
 > perhaps in a different order), and 
 > -- since "ps" operates on a constantly-changing data source, it can 
 > "miss" legitimate processes in the process table. I've seen that happen 
 > many many times with "ps" on Solaris, not sure if Linux or other flavors 
 > of Unix have some sort of concurrency-control mechanism to prevent that 
 > phenomenon. 
 >  
 

I agree all your opitions on ps's drawbacks.
what I said is, kill -0 $PID will return true even the process who owns $PID 
isn't named.

for example, named.pid wasn't removed after a system shutdown, the value in it 
is 1234.
after system startup, another process is launched and owns that process id of 
1234.

so, this start script will not work:

if kill -0 $PID; then
  :
else
  /usr/local/sbin/named -u nobody
fi

Thanks.

___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

PTR for localhost

2009-03-26 Thread dev_null

Hello,

In recent version of Bind-9.6, is it needed for reverse parsing config of 
localhost? for example,

zone "0.0.127.IN-ADDR.ARPA" {
type master;
file "local.rev";
};


thanks.___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

config for views

2009-03-26 Thread dev_null

Hello,

I want to config a named for two networks, using the view.
for example, neta is for internal users, netb is for any other users.
I got the named.conf below, do you have any suggestion on it? thanks.


options {
  directory "/usr/local/bind";
  recursion no;
  zone-statistics yes;
  statistics-file "/usr/local/bind/var/named.stats";
};

view "neta" {
  match-clients { someip; };

  zone "test.a.com" {
   type master;
   file "/usr/local/bind/etc/test.a.com.neta.db";
  };
};

view "netb" {
  match-clients { any; };

  zone "test.a.com" {
   type master;
   file "/usr/local/bind/etc/test.a.com.netb.db";
  };
};

key "rndc-key" {
  algorithm hmac-md5;
  secret "*";
};
 
controls {
  inet 127.0.0.1 port 953
  allow { 127.0.0.1; } keys { "rndc-key"; };
};___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: config for views

2009-03-26 Thread dev_null


2009 19:36:54 -0700 Kevin Darcy  


 > > }; 
 > That's the general idea, yes, but "someip" can't be used literally 
 > unless it's defined as an ACL somewhere else in the config, of course, 
 > and "recursion no" in "options" means that *neither* of these views can 
 > be used for your own clients (including perhaps the nameserver itself) 
 > to resolve any names outside of the test.a.com zone. 
 >  



Thanks.
If it's used in a product environment, does it have some other directives 
setting for security and performance?

regards.
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Psuedo-Master Zones

multi-named instance exist?

Re: multi-named instance exist?

Re: multi-named instance exist?

Re: multi-named instance exist?

PTR for localhost

config for views

Re: config for views

8 matches

Site Navigation

Mail list logo

Footer information