Hi folks, i have a question about signing zone files with the ksk and the
zsk, as i know,when signing the zone files i have to use the ksk and zsk
both,just as following:
*dnssec-signzone -o domain-name -t -k KSK zone-name ZSK*
but i want to sign the ZSK with KSK first,and then sign the zone files
jefsey wrote:
> At 06:36 06/12/2009, Danny Mayer wrote:
>> JFC Morfin wrote:
>> > I wish to set-up my BIND DNS server on window XP as a service. I
>> checked
>> > the "automatic start-up". Unfortunately it did not work. The readme1st
>> > guide only says that the way to do it is as usual, what does
jefsey wrote:
> At 11:06 06/12/2009, Chris Buxton wrote:
>> On Dec 5, 2009, at 6:34 AM, JFC Morfin wrote:
>> > Chris Buxton 4 décembre 2009 20:29
>> >> The reason IDN support in the BIND query tools (dig, host,
>> nslookup) is not the default is because it relies on a 3rd party
>> library, which m
Tech W. wrote:
--- On Fri, 4/12/09, Kevin Darcy wrote:
From: Kevin Darcy
Subject: Re: parent dns answers the ARR of child dns
To: bind-users@lists.isc.org
Received: Friday, 4 December, 2009, 1:56 AM
Not only that, but DNS.gduf.edu.cn is
performing recursion, while not
setting RA in, and n
Thanks Jeff. I'll give this a try.
On Mon, Dec 7, 2009 at 1:53 PM, Jeff Lightner wrote:
> You create a zone file that only has the entries for accounting.com. You add
> that to named.conf.
>
> Your other zone files are still in place so you shouldn't need to forward
> anything else because yo
Can't you just add something to your _own_ DNS, pointing to the external
IP address, and have your clients use that name?
It would pretty ridiculous if a) the server code of the app actually
cares what name the client uses for accessing it, b) they mandate that
their (<-- note spelling of word
You create a zone file that only has the entries for accounting.com. You add
that to named.conf.
Your other zone files are still in place so you shouldn't need to forward
anything else because you're saying this is internal to your network. If a
user is sitting at his desk and types:
Inter
I have out Bind servers running as slaves to Windows 2008 DNS server,
and it's working fine as far as I can see (except that the slaves after
a period of times lose the data and never update it unless restart the
Bind process, but that's another matter) but browsing the web I noticed
there shou
Yes I do need some kind of dns configuration. We bought a hosted
accounting service from a company that has asked us to put a dns entry
into our dns servers so that our internal machines only can resolve
there hosted service via dns. I guess they don't want to populate
there isp's dns servers wit
On Mon, 07 Dec 2009 19:07:19 +0100, Chris Hills wrote:
> It is back now.
>
it is up for me
https://www.isc.org/
> ___
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
___
It is back now.
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
It is sod's law that just when I need to look up the email address to
report a bug, currently the website is showing:-
Unable to connect to database server
[..]
The MySQL error was: Can't connect to local MySQL server through socket
'/tmp/mysql.sock' (2).
[..]
Dan Letkeman wrote:
Hello,
I need to add an entry in our dns servers for a hosted service we
purchased. Do I just add a master zone and a single entry? Or is
there a better way to add a single entry to forward to a remote
server?
Maybe I'm not understanding your requirements. If this hoste
George wrote:
Hi,
I am trying to set up a BIND9 slave server.
>From the docs I found on the internet I can see that when you add a
new domain it needs to be added on both slave and master in
named.conf. Is this correct?
Is there a way to make the slave server automatically get and update
any n
In BIND, no.
There are some solutions discussed (check the archives) around setting
up special zones with the meta data required for the slaves to create
their own slaves, I've even whipped up a POC, but I've not found a
ready-made tool yet.
Your best bet is to script something up. We have a sta
Hello,
I need to add an entry in our dns servers for a hosted service we
purchased. Do I just add a master zone and a single entry? Or is
there a better way to add a single entry to forward to a remote
server?
Thanks,
Dan.
___
bind-users mailing list
On 07-Dec-2009, at 08:37, George wrote:
Is there a way to make the slave server automatically get and update
any new domains that are added to the master server?
This question pops up about once every two months on the list. There
are several other discussions on the subject that you could
At 14:07 07/12/2009, Danny Mayer wrote:
> The reason IDN support in the BIND query tools (dig, host, nslookup)
is not the default is because it relies on a 3rd party library, which
must be installed and configured by the package builder beforehand. This
is just like SSL support, needed for DNSSEC
Hello,
some counters in the zone statistics remain 0 although queries have been
answered.
Here is the example for a zone statistics.
The counter Requestv4 is still 0. Requestv6 is irrelevant for what I
did, queries were done via IPv4.
QrySuccess, QryAuthAns and QryNXDOMAIN are correct.
My tar
On Mon, 7 Dec 2009, Dmitry Rybin wrote:
Hi! RTFM :)
/etc/security/limits.conf
binduser softnofile 32384
binduser hardnofile 32384
change binduser - to you real BIND user.
Thanks,
john
___
bind-users mailing list
bind-users@l
Hi,
I am trying to set up a BIND9 slave server.
>From the docs I found on the internet I can see that when you add a
new domain it needs to be added on both slave and master in
named.conf. Is this correct?
Is there a way to make the slave server automatically get and update
any new domains that
Hi! RTFM :)
/etc/security/limits.conf
binduser softnofile 32384
binduser hardnofile 32384
change binduser - to you real BIND user.
john wrote:
Hi,
I'm seeing this quite frequently in syslog from bind:
Dec 7 11:00:00 ext named[26731]: isc_socket_create: fcntl/reserved:
Chris Buxton wrote:
> On Dec 4, 2009, at 10:12 AM, Joe Baptista wrote:
>
>> On Fri, Dec 4, 2009 at 12:26 PM, Chris Buxton wrote:
>>
>>> nslookup will only understand IDN if BIND is compiled with that
option in the ./configure step.
>> might be a good idea if it was the default option. as idn be
On 06.12.09 18:13, MontyRee wrote:
> I have one question about chached information.
> If I have example.com domain and let's assume registered like below.
>
> 1. root dns
> example.com. 3600IN NS ns1.example.com.
> 3600IN NS ns2.example.com.
>
Hi all,
I'm having some problems with implementing DNSSEC with NSEC3. I'm fairly new to
DNSSEC, so it is certainly possible that my understanding of the subject is
causing me to miss something. Also, I'm not entirely sure this is the correct
mailing list, more accurate pointers are welcome.
Th
On Fri, 4 Dec 2009, Steve Foster wrote:
Hi Folks,
just to followup on this, I've caputred a core of named when this happens.
From the looks of it there is a deadlock/very long pause occuring as most
of the threads appear to be parked.
The output of the stacktrace suggests that 3 out of 5 thr
ulimit?
2009/12/7 john
> Hi,
> I'm seeing this quite frequently in syslog from bind:
>
> Dec 7 11:00:00 ext named[26731]: isc_socket_create: fcntl/reserved: Too
> many open files
> Dec 7 11:00:00 ext named[26731]: isc_socket_create: fcntl/reserved: Too
> many open files
>
> Googling found some
Hi,
I'm seeing this quite frequently in syslog from bind:
Dec 7 11:00:00 ext named[26731]: isc_socket_create: fcntl/reserved: Too
many open files
Dec 7 11:00:00 ext named[26731]: isc_socket_create: fcntl/reserved: Too
many open files
Googling found someone asked before on here in February a
28 matches
Mail list logo
