Re: Non-responsive name servers when started during boot on OS X Mavericks 10.9

2014-01-17 Thread Eduardo Bonsi
Hello Larry, I had the same "head-ache" when I upgraded to 10.9. It seems that instead going forward we all took a step behind. I guess this type of free stuff does come with something attached to it. Anyways, when you upgraded to 10.9 the boot files were wipe clean from the /System/Library/Lau

RE: transfer signed zone

2014-01-17 Thread tlarsen
Question in better format. Original Message Subject: transfer signed zone From: Date: Fri, January 17, 2014 6:49 pm To: bind-us...@isc.org Receiving the following lines when transferring from a non-BIND server. Is there a way to identify the "extra input data"? Jan 17 17:16

Non-responsive name servers when started during boot on OS X Mavericks 10.9

2014-01-17 Thread Larry Stone
Background: I have been using my Macintosh as a server running the client version of OS X (not OS X Server) for many years. Until 10.9 (Mavericks), Apple provided BIND and it worked just fine. My servers were internal only providing behind-NAT local addresses for the local network as well as cac

transfer signed zone

2014-01-17 Thread tlarsen
Receiving the following lines when transferring from a non-BIND server. Is there a way to identify the "extra input data"?Jan 17 17:16:35 had4 named[6497]: runningJan 17 17:16:35 had4 named[6497]: zone example.com/IN: Transfer started.Jan 17 17:16:35 had4 named[6497]: transfer of 'example.com/IN' f

Re: Rate-limiting - working? How to test?

2014-01-17 Thread John Horne
On 17/01/14 14:22, Rich Goodson wrote: > You need a rate-limit log stanza to see rate limiting information (rate limiting from IP address, no longer > limiting from IP address, etc), and the individual queries that are not responded to are logged either in > your querylog or query-errors (can’

Re: Rate-limiting - working? How to test?

2014-01-17 Thread Rich Goodson
John, "log-only yes;" is the reason you are not seeing any rate limiting. You are telling your server not to actually do any rate limiting, just to log what it would have done. You didn’t post any more of your named.conf, but I would assume you don’t have any logging set up for rate limiting

Re: Rate-limiting - working? How to test?

2014-01-17 Thread Stephane Bortzmeyer
On Fri, Jan 17, 2014 at 01:34:00PM +, John Horne wrote a message of 40 lines which said: > log-only yes; >From the ARM: Use log-only yes to test rate limiting parameters without actually dropping any requests. > I get 10 correct responses. It makes sense.

Rate-limiting - working? How to test?

2014-01-17 Thread John Horne
Hello, I have BIND 9.9.4 installed on a server, and have included in the global options: rate-limit { responses-per-second 5; log-only yes; }; However, if I run from a client: for n in `seq 1 10`; do dig +short jhorne.csd.plymouth.ac.uk a @1