On 10/11/2010 3:26 PM, Andrey G. Sergeev (AKA Andris) wrote:
Hello Alans,
Mon, 11 Oct 2010 20:07:40 +0300 Alans wrote:
Why not? OpenDNS is a good example i think.
Good example? Was it a joke? Do the traceroute on IP addresses of the
two OpenDNS resolvers and you'll find that they both are b
> >I have a very strange problem with AXFR. We are using a master and a
> >secondary DNS Server with an internal and an external view. Depending
> >on the source address the secondary server will get the internal or
> >external view for zone transfer.
> >
> >Everything is working correct so far exc
Hello Alans,
Mon, 11 Oct 2010 20:07:40 +0300 Alans wrote:
> Why not? OpenDNS is a good example i think.
Good example? Was it a joke? Do the traceroute on IP addresses of the
two OpenDNS resolvers and you'll find that they both are behind the
same router. Do you still trust the OpenDNS people wh
Hello Steinar,
Mon, 11 Oct 2010 19:38:54 +0200 (CEST) sth...@nethelp.no wrote:
> Unfortunately, in some countries you may be required to do so. The
> example I know best is, naturally, Norway.
>
> In Norway we have what is basically a government requirement for ISPs
> to block child porn domain
On 10/11/2010 2:44 PM, Nuno Paquete wrote:
Ok, but you can always browse by IP address and in this case there is
no DNS server than can stop you from browsing what you want.
If you want to block IP address access you have to use firewall, or if
you are talking about http traffic and have a pro
Hello Matus,
Mon, 11 Oct 2010 18:37:43 +0200 Matus UHLAR - fantomas wrote:
> On 11.10.10 14:16, Alans wrote:
>> Thanks Dave, yes i know about OpenDNS, I'm trying to imlement
>> somehting kind of similar to that in a small scale.
>> So i was wondering about Bind dns capabilities and may be third
Hi.
This is NOT something BIND (or any DNS server) should do. Blocking
web sites
is business for web proxies, firewalls etc. Doing this stuff at DNS
level
could lead to many surprises.
I definetly agree with this.
In Norway we have what is basically a government requirement for ISPs
to b
> > Thanks Dave, yes i know about OpenDNS, I'm trying to imlement somehting
> > kind of similar to that in a small scale.
> > So i was wondering about Bind dns capabilities and may be third party
> > stuffs that could integrate with bind dns in addition to the ip/website
> > list.
>
> This i
Why not? OpenDNS is a good example i think.
Also, i think as mentioned in Kal's email, DNS RPZ from isc is an
approach to implement these functionalities at DNS level.
We want to give individuals/customers access to their account to block
what they want to block, something similar to OpenDNS b
On 11.10.10 14:16, Alans wrote:
> Thanks Dave, yes i know about OpenDNS, I'm trying to imlement somehting
> kind of similar to that in a small scale.
> So i was wondering about Bind dns capabilities and may be third party
> stuffs that could integrate with bind dns in addition to the ip/website
On 10.10.10 21:03, Doug Barton wrote:
> http://dougbarton.us/DNS/bind-users-FAQ.html#nslookup-evil
nice but I miss there some explanations that were mentioned here, e.g.
it sometimes does not query the server user asks for (iirc)
Something could be reworded. e.g. uses system libraries that could
Alans wrote:
> Hello,
>
> Is it possible for bind dns to check the queries, if the returned answer
> is existed in a file that contains blacklisted IPs then block it?
>
> One more thing, from where we can get/buy updated lists of categorized
> IPs/websites,
> like Gaming, Porn, Social...?
>
> Thank
Hello all,
I would like to ask you for the reason why there are separate versions
of libdns, libisc & friends, called "export libraries" in BIND 9.7
series.
If I understand correctly those export libs are supposed to be used
from non-BIND9 applications and some methods are lightweight compared
to
Thanks Dave, yes i know about OpenDNS, I'm trying to imlement somehting
kind of similar to that in a small scale.
So i was wondering about Bind dns capabilities and may be third party
stuffs that could integrate with bind dns in addition to the ip/website
list.
regards,
Alans
On 10/11/2010 02
On 11/10/10 1:02 PM, "Alans" wrote:
>
> Hello,
>
> Is it possible for bind dns to check the queries, if the returned answer
> is existed in a file that contains blacklisted IPs then block it?
DNS RPZ may do what you want.
There is a patch on the isc.org website for 9.4,9.6 and 9.7.1-P2
Hello,
Is it possible for bind dns to check the queries, if the returned answer
is existed in a file that contains blacklisted IPs then block it?
One more thing, from where we can get/buy updated lists of categorized
IPs/websites,
like Gaming, Porn, Social...?
Thanks,
Alans
___
16 matches
Mail list logo
