Seemingly random ServFail issues on a caching server

Hi list, On a few domains (we'll consider only one domain for this example) I encounter sometimes (seemingly randoms) ServFails while resolving domain names. A client (192.168.147.2) asks my caching server (192.168.151.100) to resolve a target (www.leclercdrive.fr) Here are the relevant logs: Au

Re: bind 9.7.0 auto-dnssec doesn't remove final RRSIG on key inactivation?

Phil Mayers wrote: > > I first create and publish a new ZSK with no activation date. After waiting > the requisite amount of time, I use dnssec-settime: > > dnssec-settime -A K > dnssec-settime -I K > rndc sign > > ...and bind immediately starts using the new key for sigs. After 0.75*30 days, > a

Re: Max number of views and performance.

24.08.2011 08:04, sky shade пишет: I like to know if bind 9.8 have a limit of view? There is any number or I can create something like 1 million views without problems? There is any performance implication in use to many views? On 25.08.11 10:27, Dmitry Rybin wrote: I use about 120 views. It ac

bind 9.7.0 auto-dnssec doesn't remove final RRSIG on key inactivation?

We have a hidden master doing DNSSEC on our zones, and I've observe the following problem when doing a ZSK rollover. Zones are updated from our database using DDNS, and bind of course is (re)generating the signatures at the standard intervals. I first create and publish a new ZSK with no acti