> > --On 5. oktober 2010 22.25.17 +0700 Phan Quoc Hien
> > wrote:
> >>
> >> I'm find the way to "custom DNS error with BIND". Below I explained it:
> >>
> >> It A record not exist => return to one IP to redirect custom error
> >> page with apache! Like OpenDNS?
> >>
> >> Please let me know how to
On 6/10/10 6:49 AM, Dotan Cohen wrote:
> On Tue, Oct 5, 2010 at 20:30, Eivind Olsen wrote:
>>
>> I don't think you've mentioned which OS you're running, and whether you run
>> a bundled or self-compiled version of BIND, so I'm not sure where it puts
>> its logs by default. Do you see _any_ mention
BIND 9.5.3rc1 is now available.
BIND 9.5.3rc1 is a beta version of the maintenance release
for BIND 9.5. BIND 9.5.3 is intended to be the last
maintenance release for BIND 9.5.
BIND 9.5.3rc1 can be downloaded from
ftp://ftp.isc.org/isc/bind9/9.5.
On 10/5/2010 12:14 PM, Stewart Dean wrote:
In the standard 'yum install bind' installation, I see there are
/var/named/data and /var/named/slaves directories. What are they for? I
do so like to follow standards particularly if there is a good reason :)
I am not familiar with the way that your L
If you would like to create a new thread your best bet is to store the
list address in your e-mail address book and then create a new message
to the list. By replying to someone else's message and changing the
subject you cause your message to appear "hidden" behind the message you
replied to f
Hello,
On 05.10.2010 16:45, Nicholas Wheeler wrote:
> > At Tue, 5 Oct 2010 09:19:49 -0400, Atkins, Brian (GD/VA-NSOC) wrote:
>> >> From what I've read, everyone seems to frown on over-riding cache times,
>> >> but I haven't seen any specifics as to why it's bad.
> >
> > Because it's a protocol vio
After noodling it out with a co-administrator, that is the same
conclusion we came to.
Thank you for confirming it.
Brian
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
On Tue, Oct 5, 2010 at 20:30, Eivind Olsen wrote:
>> However, another site that _does_ work (with both nameservers on this
>> host, not just ns1) shows the same thing:
>>
>> # nslookup ns1.sharingserver.eu 178.63.65.136
>> Server: 178.63.65.136
>> Address: 178.63.65.136#53
>>
>> **
On Tue, Oct 5, 2010 at 16:31, Greg Whynott wrote:
> its as if they think hackers main source of targets comes from here.
> doesn't appear to really want any help anyway.
>
Not at all, rather I was trying to learn. I really didn't want anybody
doing the heavy lifting for me. But I've gotten to
On Tue, Oct 5, 2010 at 11:35, Eivind Olsen wrote:
> Hm, you mention in another posting that you're hosting other domains. Are
> they using the same registrar as the one that's giving you this error
> message?
Yes.
> Are you _naming_ the nameservers the same? I know some registrars
> require you
On Tue, Oct 5, 2010 at 08:48, Chiesa Stefano wrote:
> Hello Dothan.
> You said: "The working site has both nameservers pointed to that same
> server (on two different IP addresses on eth0 and etho0:0)."
> So the question is "Are you sure you answer to queries on the proper
> interface?"
> Maybe yo
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 05.10.2010 20:35, Dotan Cohen wrote:
I think the problem is that your two servers return different
answers to the same question:
dig +norec sharingcenter.de ns @178.63.65.171:
> ;; ANSWER SECTION:
> sharingcenter.de. 86400 IN NS ns
On Tue, Oct 5, 2010 at 02:47, Noel Butler wrote:
> apart from my dig for you not giving real information..
>
> On Mon, 2010-10-04 at 23:08 +0200, Dotan Cohen wrote:
>
>
> // On 1.1.1.1
> [r...@1.1.1.1]# cat /etc/named.conf
> options {
> directory "/etc";
>
>
> Why are you specifying /e
In the standard 'yum install bind' installation, I see there are
/var/named/data and /var/named/slaves directories. What are they for? I do so
like to follow standards particularly if there is a good reason :)
In AIX, everything was just there (in /etc/dns).
I plan to use views and have the i
Andrey G. Sergeev (AKA Andris) wrote:
> Hello Dotan,
>
>
> Tue, 5 Oct 2010 20:35:24 +0200 Dotan Cohen wrote:
>
>
>> The two domains names are sharingcenter.eu and sharingcenter.de. The
>> eu domain has ns1 and ns2 on the same server (IP addresses
>> 178.63.65.136 and 178.63.65.188) and works fin
Is there a bug in the implementation of the update-policy or do I not have a
grasp on how it should work?
If wanted to only allow machines in an Active Directory the ability to update
their 'A' records shouldn't I be able to use a statement like this:
update-policy {
gra
Hello Dotan,
Tue, 5 Oct 2010 20:35:24 +0200 Dotan Cohen wrote:
> The two domains names are sharingcenter.eu and sharingcenter.de. The
> eu domain has ns1 and ns2 on the same server (IP addresses
> 178.63.65.136 and 178.63.65.188) and works fine. The de domain has
> ns1 on this same server (IP ad
On Tue, Oct 5, 2010 at 02:35, Noel Butler wrote:
> Quite right, too many people with paranoia come here looking for help but
> refuse to let us do correct remote testing.
> First post was 7.08am local, its 3 /12 hours later and we still have no real
> info, had it been supplied his problem may bee
Hello Dotan,
Tue, 5 Oct 2010 20:20:02 +0200 Dotan Cohen wrote:
>> Can you successfuly telnet port 53 from an external host?
>
> Yes, but it's only a connection. I don't see any output. That' me
> typing "helo":
>
> $ telnet 178.63.65.136 53
> Trying 178.63.65.136...
> Connected to 178.63.65.13
--On 5. oktober 2010 20.20.02 +0200 Dotan Cohen
wrote:
Yes, but it's only a connection. I don't see any output. That' me typing
"helo":
$ telnet 178.63.65.136 53
Trying 178.63.65.136...
Connected to 178.63.65.136.
Escape character is '^]'.
helo
USER test
^C^C
Connection closed by foreign host.
--On 5. oktober 2010 20.07.57 +0200 Dotan Cohen
wrote:
# nslookup ns1.sharingserver.de 178.63.65.171
Server: 178.63.65.171
Address:178.63.65.171#53
** server can't find ns1.sharingserver.de: NXDOMAIN
In this case, you're trying to look up ns1.sharingserver.de on the
nameserve
Thanks to all! Zone transfers were allowed. Already changed backups to
include the zonefiles and setup a secondary (slave) named server.
--
Jay Moore, CIO
The National Beta Club
UT PROSIM
- Original Message -
> On Tue, 5 Oct 2010, Jay Moore wrote:
> > I am running BIND 9.4.3-P1 on
On Tue, Oct 5, 2010 at 01:03, Nuno Paquete wrote:
> Can you successfuly telnet port 53 from an external host?
Yes, but it's only a connection. I don't see any output. That' me typing "helo":
$ telnet 178.63.65.136 53
Trying 178.63.65.136...
Connected to 178.63.65.136.
Escape character is '^]'.
h
If you haven’t restarted the server, you could do an rndc dumpdb and grab the
zone content I’d think
From: bind-users-bounces+tsnyder=rim@lists.isc.org
[mailto:bind-users-bounces+tsnyder=rim@lists.isc.org] On Behalf Of Jay Moore
Sent: Tuesday, October 05, 2010 1:13 PM
To: bind-users@list
On Mon, Oct 4, 2010 at 23:37, Greg Whynott wrote:
> someone with way more bind clues than I would be able to give you a better
> answer. the error returned begs two questions..
>
> 1. is this server behind or running a local firewall?
> 2. is bind actually listening on the proper interface?
>
--On 5. oktober 2010 13.46.30 -0400 "Atkins, Brian (GD/VA-NSOC)"
wrote:
Currently, we use DNS to blackhole bad domains. The list of bad domains
are provided to us from another government entity or vetted by an
enterprise security team.
How do you implement this list? By putting those domains i
Thank you for all the good responses.
While I am unsure if Chrisoph's question was answered, I now understand
why most everyone thinks it is a bad idea to over-ride the TTL for
records I am not authoritive for:
1) It's not RFC compliant for the protocol
2) Changing it could potentially increase l
On Tue, Oct 5, 2010 at 01:14, Nuno Paquete wrote:
> Are your servers running virtualized?
>
No, it's real hardware!
--
Dotan Cohen
http://gibberish.co.il
http://what-is-what.com
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.o
--On 5. oktober 2010 13.12.37 -0400 Jay Moore wrote:
I am running BIND 9.4.3-P1 on slackware 12.2. The server is only for
internal use. I have accidentally removed one of my zone files, and I
have no backup! Is there a way to restore this zone file from the cache?
I looked at rndc and named
Hello Jay,
Tue, 5 Oct 2010 13:12:37 -0400 (EDT) Jay Moore wrote:
> I am running BIND 9.4.3-P1 on slackware 12.2. The server is only for
> internal use. I have accidentally removed one of my zone files, and I
> have no backup! Is there a way to restore this zone file from the
> cache? I looked at
On Tue, 5 Oct 2010, Jay Moore wrote:
I am running BIND 9.4.3-P1 on slackware 12.2. The server is only for
internal use. I have accidentally removed one of my zone files, and I have
no backup! Is there a way to restore this zone file from the cache? I
looked at rndc and named options, but d
I am running BIND 9.4.3-P1 on slackware 12.2. The server is only for internal
use. I have accidentally removed one of my zone files, and I have no backup! Is
there a way to restore this zone file from the cache? I looked at rndc and
named options, but don't see anything that will help?
--
J
Thank for your respond. I find for testing purpuse only.
On Tue, Oct 5, 2010 at 11:20 PM, Eivind Olsen wrote:
> --On 5. oktober 2010 22.25.17 +0700 Phan Quoc Hien
> wrote:
>>
>> I'm find the way to "custom DNS error with BIND". Below I explained it:
>>
>> It A record not exist => return to one I
--On 5. oktober 2010 22.25.17 +0700 Phan Quoc Hien
wrote:
I'm find the way to "custom DNS error with BIND". Below I explained it:
It A record not exist => return to one IP to redirect custom error
page with apache! Like OpenDNS?
Please let me know how to solve this problem...or must edit bind
Hi,
I'm find the way to "custom DNS error with BIND". Below I explained it:
It A record not exist => return to one IP to redirect custom error
page with apache! Like OpenDNS?
Please let me know how to solve this problem...or must edit bind source code?
--
Best regards,
Mr.Hien
E-mail: phanquoch
> I asked a similar question 2 weeks ago and got a non-response (e.g., a
> response with no real information).
The only somewhat good reason I see to overriding (well, lowering) the
cache time is if it causes your server any memory issues. Although the
real solution then would be to buy more memor
At Tue, 5 Oct 2010 10:45:04 -0400, Nicholas Wheeler wrote:
>
> I think Brian's OP was about a max-ttl override ... Which is the
> opposite. The only disadvantages I see is a potential waste of
> bandwidth (and it violates the protocol).
max-ttl is (very) different from min-ttl. max-ttl might (or
I think Brian's OP was about a max-ttl override ... Which is the opposite. The
only disadvantages I see is a potential waste of bandwidth (and it violates the
protocol).
- Original Message -
From: bind-users-bounces+nwheeler=devis@lists.isc.org
To: bind-users@lists.isc.org
Sent: T
At Tue, 5 Oct 2010 09:19:49 -0400, Atkins, Brian (GD/VA-NSOC) wrote:
>
> I asked a similar question 2 weeks ago and got a non-response (e.g., a
> response with no real information).
>
> From what I've read, everyone seems to frown on over-riding cache times,
> but I haven't seen any specifics as
its as if they think hackers main source of targets comes from here.doesn't
appear to really want any help anyway.
-g
On Oct 4, 2010, at 8:35 PM, Noel Butler wrote:
> On Mon, 2010-10-04 at 17:29 -0500, Lyle Giese wrote:
>> Dotan Cohen wrote:
>
>>> The ports aren't blocked as another s
On 10/5/2010 9:19 AM, Atkins, Brian (GD/VA-NSOC) wrote:
I asked a similar question 2 weeks ago and got a non-response (e.g., a
response with no real information).
From what I've read, everyone seems to frown on over-riding cache times,
but I haven't seen any specifics as to why it's bad.
Ba
I asked a similar question 2 weeks ago and got a non-response (e.g., a
response with no real information).
>From what I've read, everyone seems to frown on over-riding cache times,
but I haven't seen any specifics as to why it's bad.
Brian
___
bind-user
Dotan - Are zone transfers working correctly between ns1 & ns2? Although
you have ns2 defined as a slave to ns1, your cat output of the zone on ns2
shows a zone with contents different from the master. The slave zone is
missing a host record for ns1. Is it possible the system trying to resolve
n
> but when I try to configure
> my domain name in the registrar's control panel I get this error:
> """
> Error : Unable to query the nameserver ns1.example.de
> """
Hm, you mention in another posting that you're hosting other domains. Are
they using the same registrar as the one that's giving you
44 matches
Mail list logo
