ng; for example:
0x7ffe84665f40
cache
4
279120
20888
20888
262144
0
0
0
How do I map that ID back to something I can make sense of?
--
Augie Schwer-au...@schwer.
_**_
> Please visit
> https://lists.isc.org/mailman/**listinfo/bind-users<https://lists.isc.org/mailman/listinfo/bind-users>to
> unsubscribe from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/**listin
Is it possible to get response-policy statistics via the statistics file or
channel?
--
Augie Schwer-au...@schwer.us-http://schwer.us
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
7-Mar-2013 13:58:43.576 general: info: received control channel
> command 'retransfer drop.rpz.spamhaus.org'
>
> but nothing improves/changes.
>
> I've no idea as to why the 'failed to connect' message. As an obvious
> result, no local zone file is created/written.
>
> Whe
rmine this is a
configuration mistake and not a security breach, you can then
exclude them from DNSSEC validation so your customers can access their
site while they fix their error.
--
Augie Schwer-au...@schwer.us-http://schwer.us
___
Ple
Does anyone have any experience using a large ( 1k ) entry ACL list?
Was there any performance degradation?
I haven't implemented my ACL yet, but it has quickly ballooned up, and I am
hoping to get some advice from others in a similar situation.
--
Augie Schwer-au...@schw
On Tue, Jan 22, 2013 at 2:32 PM, Mark Andrews wrote:
>
> In message <
> ca+fq9b-ym5w+ndxzzndzwnnqk-v29s19enb_myjbk-jrgbj...@mail.gmail.com>,
> Augie Schwer wri
> tes:
> >
> > Would measuring the number of SERVFAIL entries in the "query-errors"
>
logged via the query-errors category to get an indication of what impact
enabling DNSSEC on my production hosts would be.
Is this a good way to measure? Is there a better way?
--
Augie Schwer-au...@schwer.us-http://schwer.us
___
Please v
netmask 255.255.255.224
sudo ifconfig lo:2 10.0.0.2 netmask 255.255.255.255
I get the full usable range on my loop-back interface, and Bind will
happily now listen-on the 10.0.0.2 address.
--
Augie Schwer - au...@schwer.us - http://schwer.us
_
g is.
Any help is appreciated, thank you. :)
--Augie
On Mon, Apr 30, 2012 at 4:36 PM, michoski wrote:
> On 4/30/12 2:56 PM, "Augie Schwer" wrote:
>> I must be doing something wrong, because what I want to do doesn't
>> seem that difficult.
>>
>> I have a
-c 1
PING 10.0.0.2 (10.0.0.2) 56(84) bytes of data.
64 bytes from 10.0.0.2: icmp_seq=1 ttl=64 time=0.027 ms
--- 10.0.0.2 ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
Given all that, can anyone suggest a reason why Bind won't listen on
that address?
--
Au
issing.
Any help is appreciated.
augie@augnix:~$ named -v
BIND 9.7.0-P1
--
Augie Schwer - au...@schwer.us - http://schwer.us
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mai
rmine this is a
configuration mistake and not a security breach, you can then
exclude them from DNSSEC validation so your customers can access their
site while they fix their error.
--
Augie Schwer - au...@schwer.us - http://schwer.us
___
Ple
What is the best way to log DNSSEC failures in Bind without enforcing
DNSSEC validation?
That is I want to see what Bind would have rejected because of failed
DNSSEC validation, but I do not want to return SERVFAIL to my client.
--
Augie Schwer - au...@schwer.us - http://schwer.us
14 matches
Mail list logo
