Do you want a correctly operating DNS64 server or do you want to filter
all A records? They are mutually exclusive requirements. Please read
RFC 6147 to understand why they are mutually exclusive.
IPv6-only means that the IP packets being sent and received are only IPv6
packets for the thing (no
Hi,
I use tumbleweed for testing, since compiling bind is hard(at least for me).
bind version: 9.18.11
options {
dns64 64:ff9b::/96 {
clients { any; };
recursive-only yes;
mapped { !10/8; any; };
};
};
plugin query "filter-a.so" {
filt
Hello,
A year ago, I migrated a subdomain from auto-dnssec to dnssec-policy
according to https://kb.isc.org/docs/dnssec-key-and-signing-policy.
Everything went well. named set the ZSK's lifetime to 0. I later
initiated a manual rollover. I also had to set the KSK's DSState
manually from rumo
Hi,
I think you can achieve the same effect with dig, but it requires some
preparations.
First, enable zone transfers for your slave zone from 127.0.0.1: add
allow-transfer {127.0.0.1;}; to your slave zone definition (or add
127.0.0.1 there if you already have allow-transfer).
Then you can
by default, the files written by BIND when acting as a slave is
not in "text" format, but is some binary file format, I beleive
what is referred to as "raw" format.
I've avoided this, on my slaves:
zone "abundo.se" {
masterfile-format text;
};
I guess the binary format is m
Hi Håvard.
I currently have 9.18.8 installed; the version of named-compilezone is the
same. As a test I just converted a text format zone file to raw and then
that raw file back to text and it looks fine to me:
- named-compilezone -f text -F raw -o junk.raw junk db.junk
- named-compilezone -f raw -
> Named-checkzone and named-compilezone are the same executable.
> Named-checkzone looks up remote records to more completely
> detect configuration errors. See the man page for details.
Thanks for the hint, I apparently need to complicate my script
even more to avoid the network lookups.
You di
Named-checkzone and named-compilezone are the same executable. Named-checkzone
looks up remote records to more completely detect configuration errors. See
the man page for details.
--
Mark Andrews
> On 30 Jan 2023, at 19:33, Havard Eidnes via bind-users
> wrote:
>
> Hi,
>
> by default,
Hi,
by default, the files written by BIND when acting as a slave is
not in "text" format, but is some binary file format, I beleive
what is referred to as "raw" format.
Once in a while it's desireable to be able to see the contents of
the slave zone file as plain text. To that end I have previou
9 matches
Mail list logo
