Re: Reason for Limited number of Root DNS Servers

In message <004c01cca034$259d4870$70d7d950$@nic.in>, Gaurav Kansal writes: > > Dear All, > > > > Somewhere I read that number of ROOT DNS servers is limited to 13 because of > protocol limitation of DNS and UDP. > > Exact writing was "A combination of limits in the DNS and certain > protoco

Re: Error when Cross Compiling Bind 9.8.0-P4 for arm-linux

Hi Doug, I need to use dhcp-4.2.2 package and bind-9.7.1 comes with the same package. I think the problem is with cross compilation. and might not be with package. Please let me know if any mistake in cross compilation (configure). or any other settings in Makefile of bind Regards, Mukund On Fr

Re: Error when Cross Compiling Bind 9.8.0-P4 for arm-linux

On 11/10/2011 22:15, Mukund Deshpande wrote: > I have been trying to cross compile ISC DHCP 4.2.2 package with bind > 9.8.0-P4 Step 1, use the latest versions of both. :) -- "We could put the whole Internet into a book." "Too practical." Breadth of IT e

Error when Cross Compiling Bind 9.8.0-P4 for arm-linux

Hi all, I have been trying to cross compile ISC DHCP 4.2.2 package with bind 9.8.0-P4 but facing problems for bind package These are my configure commands This one for DHCP        ./configure \         --prefix=/home/mukund/projects/XYZ/CPSS-03.04.104p2/linux/XCAT_2.6.31/xcat_lsp.2.6.31/linux-

Re: Reason for Limited number of Root DNS Servers

On Nov 11, 2011, at 1:38 PM, Gaurav Kansal wrote: > Dear All, > > Somewhere I read that number of ROOT DNS servers is limited to 13 because of > protocol limitation of DNS and UDP. > Exact writing was “A combination of limits in the DNS and certain protocols, > namely the practical size of u

Re: Reason for Limited number of Root DNS Servers

On Fri, Nov 11, 2011 at 11:08:31AM +0530, Gaurav Kansal wrote: > As root DNS are running in anycast so number is not an issue at all. But I > don't understand where exactly is this limitation exists??? Prior to EDNS(0), DNS packets transmitted over UDP couldn't be more than 512 bytes in length. M

Reason for Limited number of Root DNS Servers

Dear All, Somewhere I read that number of ROOT DNS servers is limited to 13 because of protocol limitation of DNS and UDP. Exact writing was "A combination of limits in the DNS and certain protocols, namely the practical size of unfragmented User Datagram Protocol (UDP) packets, resulted in a

Re: Using IPv6/IPv4 tunnels to send queries to a DNS server

In message , Hansen Candrawinata writes: > Thanks for the responses. > > Can a DNS server (the machine, not BIND) be a tunnel endpoint > for 6to4? Yes, provided it meets all the criteria for being a 6to4 tunnel end point. You need a non ambious IPv4 address for the tunnel end point. If your I

Re: Using IPv6/IPv4 tunnels to send queries to a DNS server

Thanks for the responses. Can a DNS server (the machine, not BIND) be a tunnel endpoint for 6to4? Thanks, Hansen On Thu, Nov 10, 2011 at 3:05 PM, Hansen Candrawinata wrote: > This is not strictly a BIND related question, but thought someone here > probably knew the answer. > > Is it valid to u

Re: Re: Securing zone transfer and DDNS

In message <4b476ffb.2625d518.4ebbf979.d1...@o2.pl>, =?UTF-8?Q?Aleksander_Kurczy k?= writes: > Thanks everybody for the answers. > I have one more question - how can I block every update for every zone in opti > ons section using update-policy? Updates are blocked by default and will always be bl

Re: OT: Bind 9.9.0B1 Inline-Signing Question

> I know that this isn't the forum for betas Sure it is. :) > We have been testing with the alphas and now with the beta. What we are > seeing is that whenever named starts, it initially creates the signed > static zone file, but never really finishes. What do you mean by "never really finishes"

Re: OT: Bind 9.9.0B1 Inline-Signing Question

Do you see that each time named starts or just on the first load of the zone? What happens if you send a query to the server with dig +dnssec? On Nov 10, 2011, at 14:23, "McConville, Kevin" wrote: > I know that this isn’t the forum for betas, which is why I put off-topic on > the subject li

OT: Bind 9.9.0B1 Inline-Signing Question

I know that this isn't the forum for betas, which is why I put off-topic on the subject line. We are trying to implement DNSSEC for our static zones. While the dynamic signing has been automated, static inline-signing isn't available until Bind 9.9 We have been testing with the alphas and now

Re: Subdomain Issue

On 11/10/11 12:24, trm asn wrote: On Thu, Nov 10, 2011 at 8:28 PM, Lyle Giese mailto:l...@lcrcomputer.net>> wrote: On 11/09/11 15:59, trm asn wrote: On Wed, Nov 9, 2011 at 3:15 PM, Matus UHLAR - fantomas mailto:uh...@fantomas.sk>

Re: Subdomain Issue

On Thu, Nov 10, 2011 at 8:28 PM, Lyle Giese wrote: > On 11/09/11 15:59, trm asn wrote: > >> >> >> On Wed, Nov 9, 2011 at 3:15 PM, Matus UHLAR - fantomas >> mailto:uh...@fantomas.sk>> wrote: >> >>Now I have only one question: >> >> >>On 08.11.11 20:27, trm asn wrote: >> >>The momen

Re: Securing zone transfer and DDNS

> I have one more question - how can I block every update for every zone > in options section using update-policy? Are you actually *reading* the documentation: the ARM actually defines `allow-update': "Specifies which hosts are allowed to submit Dynamic DNS updates for master zon

Re: Securing zone transfer and DDNS

Thanks everybody for the answers. I have one more question - how can I block every update for every zone in options section using update-policy? logging { ... }; options { directory "/var/named"; dnssec-enable yes; recursion yes; allow-recursion { 127.0.0.1; };

Re: Subdomain Issue

On 11/09/11 15:59, trm asn wrote: On Wed, Nov 9, 2011 at 3:15 PM, Matus UHLAR - fantomas mailto:uh...@fantomas.sk>> wrote: Now I have only one question: On 08.11.11 20:27, trm asn wrote: The moment I have done the "rndc reload example.com ", the d

Re: about the A and PTR for sending mail

On 10.11.2011 02:57, 风河 wrote: > I have two server IPs, the A records for them are: > > mail.dnsbed.com.300 IN A 74.117.233.4 > mail.dnsbed.com.300 IN A 74.117.232.204 > > The corresponding PTR records are: > > 4.233.117.74.in-addr.arpa. 36466 IN

Re: Resign a zone

Le mardi 8 novembre 2011 10:34, rams a écrit : > Hi , > I have signed zone and already i have resigned two times. Now again i am > resigning zone but after resign zone , RRSIG values are not changed. the > same old values displaying. Any wrong in me. Could you please guide me how > to change RRSIG