Sending extra info in bind dns query packet

Hello All, I am just looking into bind and want to send extra information while querying dns bind server. This information will be used at the bind server side to return the resolved ip. I have control of dns query and bind server, I mean I can modify the source codes of both. Can I use addition

Re: auto-dnssec maintain and DNSKEY removal

One last question (I hope): sig-validity-interval seems to only affect the expiration date of newly created signatures, and of course signatures are only rolling over to new keys as they expire. I am wondering if I can ask bind to set the expiration for, say 30 days out, but when a new key is

Re: Breaking trusted chain in dnssec

Georg Kahest wrote: > On 07/13/2016 03:16 PM, Mark Andrews wrote: > > > > You have a delegation without a DS record. > > Or have a DS record without actual dnskey/rrsig records in the > delegated zone. Be aware that these are very different things! Mark's suggestion creates an insecure subdomain

Re: Breaking trusted chain in dnssec

Or nsec3 with opt-out? The question is unclear... W On Wednesday, July 13, 2016, Tony Finch wrote: > rams > wrote: > > > Is any one explain how to break trusted chain in dnssec with example how > to > > create zone or data with trusted chain break. > > Create a delegation without a DS record.

Re: Breaking trusted chain in dnssec

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 07/13/2016 03:16 PM, Mark Andrews wrote: > > In message > , > rams writes: >> >> Greetings...! Is any one explain how to break trusted chain in >> dnssec with example how to create zone or data with trusted chain >> break. >> >> Thanks & Regard

Re: Breaking trusted chain in dnssec

In message , rams writes: > > Greetings...! > Is any one explain how to break trusted chain in dnssec with example how to > create zone or data with trusted chain break. > > Thanks & Regards, > ramesh You have a delegation without a DS record. -- Mark Andrews, ISC 1 Seymour St., Dundas Valle

Re: Breaking trusted chain in dnssec

rams wrote: > Is any one explain how to break trusted chain in dnssec with example how to > create zone or data with trusted chain break. Create a delegation without a DS record. Tony. -- f.anthony.n.finchhttp://dotat.at/ - I xn--zr8h punycode Lundy, Fastnet, Irish Sea: West or northwest

Breaking trusted chain in dnssec

Greetings...! Is any one explain how to break trusted chain in dnssec with example how to create zone or data with trusted chain break. Thanks & Regards, ramesh ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this