On Jan 7, 2014, at 2:05 PM, Martin McCormick wrote:
> Is there any way to tell what is actually being sent to
> bind when attempting a dynamic update?
>
> I have a perl script which is obviously broken because
> every forward update it tries to send fails.
>
> 07-Jan-2014 15:38:09.4
Is there any way to tell what is actually being sent to
bind when attempting a dynamic update?
I have a perl script which is obviously broken because
every forward update it tries to send fails.
07-Jan-2014 15:38:09.458 client 192.168.1.5#17352: request has invalid
signature: TSI
>
> Once the DS record is removed from the .edu zone, queriers won't
> expect your zone to be signed any more. At that point, you can leave
> it signed or remove the signatures, and it won't make any difference.
> You just need to wait at least 24 hours from the time the record
> disappears from t
On Tue, Jan 07, 2014 at 04:34:27PM +, Eric Davis wrote:
> Duh...silly mistake...I did a DIG on the NS record..Once the DS record is
> removed DNS queries should work fine right? Thanks Bill.
Once the DS record is removed from the .edu zone, queriers won't expect your
zone to be signed any m
Duh...silly mistake...I did a DIG on the NS record..Once the DS record is
removed DNS queries should work fine right? Thanks Bill.
-Original Message-
From: Bill Owens [mailto:ow...@nysernet.org]
Sent: Tuesday, January 07, 2014 11:28 AM
To: Eric Davis
Cc: bind-users@lists.isc.org
Subject
On Tue, Jan 07, 2014 at 04:24:31PM +, Eric Davis wrote:
> So I guess my DS record has the same TTL as my default TTL for my records?
> My default is 8 hours, so if I wait 8 hours after I remove the DS from my
> parent zone then I should be ok? My parent zone is a TLD(.edu).
The DS record i
So I guess my DS record has the same TTL as my default TTL for my records? My
default is 8 hours, so if I wait 8 hours after I remove the DS from my parent
zone then I should be ok? My parent zone is a TLD(.edu).
-Original Message-
From: bind-users-bounces+eric=rockefeller@lists.is
On 01/07/2014 05:01 PM, Eric Davis wrote:
> My DNS appliances are not well-suited for this yet, so I want to
> disable DNSSEC for my for domain. Anyone know the proper steps to
> take and what order if there is any order? I have a DS record in
> my parent domain. Do I need to remove that first?
My DNS appliances are not well-suited for this yet, so I want to disable DNSSEC
for my for domain. Anyone know the proper steps to take and what order if
there is any order? I have a DS record in my parent domain. Do I need to
remove that first? Thanks in advance.
Eric
On 07/01/14 14.16, Bob McDonald wrote:
> > Unless the goal is to move all DNS services off that subnet. Our
> network
> > staff would love to reclaim the /24 our DNS servers are tying up
> with very
> > little else on it wasting 250 addresses.
>
> I'm not sure I'm describing a properly configured
> Unless the goal is to move all DNS services off that subnet. Our network
> staff would love to reclaim the /24 our DNS servers are tying up with very
> little else on it wasting 250 addresses.
I'm not sure I'm describing a properly configured anycast environment
well. Since in anycast the clie
11 matches
Mail list logo
