xpected. I'm not too
> concerned about it, and the benefits outweigh the costs. He was also heavily
> invested in fixing similar problems in his powerbanks at the time, so the
> verdict may have been biased. Lots of switching power supplies are noisy like
> that.
>
> https://www
tside your normal working hours.
>
> > On 10. 2. 2025, at 15:07, Turritopsis Dohrnii Teo En Ming via bind-users
> > bind-users@lists.isc.org wrote:
> >
> > Rather than using WSL, I think I will use Hyper-V, VMware Workstation or
> > Oracle VirtualBox instead.
--
ery slow.
Regards,
Mr. Turritopsis Dohrnii Teo En Ming
Targeted Individuals in Singapore
>
> --
> Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
> this list
>
> ISC funds the development of this software with paid support subscriptions.
> Contact
to be a way to assign
> > it a static IP - i.e. your WSL BIND server will change IP address every
> > time (it's a private routed address that will need a Windows Firewall NAT
> > rule to be reached from other machines on your network).
>
>
> Please do note that WS
On Sunday, February 9th, 2025 at 6:55 PM, Marco Moock wrote:
> Am 09.02.2025 um 10:51:35 Uhr schrieb Turritopsis Dohrnii Teo En Ming
> via bind-users:
>
> > Can I install WinBIND on Windows 10 and Windows 11? The following
> > guide mentioned installation of WinBIND o
On Sunday, February 9th, 2025 at 7:07 PM, Richard T.A. Neal
wrote:
> That's my site! đ
>
> Whilst functional please bear in mind that BIND is no longer developed or
> supported on Windows so I really donât recommend doing so. You should install
> it on a Linux sy
gurations... and all this happened
in South Africa!
The "old terms" are now somewhat forgotten.
On 2025/02/09 12:45, Carsten Strotmann via bind-users wrote:
Hi,
On 9 Feb 2025, at 7:35, Michael De Roover wrote:
I for
one look forward to seeing what people from various parts of the
Subject: BIND DNS Server on Windows
Good day from Singapore,
Can I install WinBIND on Windows 10 and Windows 11? The following guide
mentioned installation of WinBIND on Windows Server only.
Link: https://www.winbind.org/installing-bind-on-windows/
Thank you.
Regards,
Mr. Turritopsis
me personally, and I do not want go back using the old
terms.
(for context: I'm from Germany)
Greetings
Carsten Strotmann
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this software with paid support subscription
ttps://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this software with paid support subscriptions.
Contact us at https://www.isc.org/contact/ for more information.
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/list
escription: S/MIME Cryptographic Signature
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this software with paid support subscriptions.
Contact us at https://www.isc.org/contact/ for more information.
bind-users mailing
Dear All,
I realized that dnsviz.net is showing me 5 errors for some domain names,
even some which do not exist.
This is not only for one domain. I see this for some domains I manage.
I am running BIND 9.18.34-dev (Extended Support Version)
This is for example such an error message at
Greg Choules via bind-users writes:
> What's a "primary master" as opposed to (presumably?) a "secondary master"?
Some servers will be both masters and slaves when using hierarchical
replication. It is useful to define the root of the tree as "primary
master&
On 2/6/25 08:40, Greg Choules via bind-users wrote:
In DNS terms, for me, a "primary" has the single source of truth for
data in zones and a "secondary" transfers a temporary copy of that data
from a primary, or from another secondary (though daisy chain
secondaries at
tanza from both servers, restarted
both primary and secondary and since I made those changes almost 6 hours ago
have not observed those messages.
Sorry, my bad.
Thank you for your continued support,
Brian
From: Greg Choules
Sent: Thursday, February 6, 2025 3:18 AM
To: Cuttler, Brian R (HEALTH)
own and
> restart, not just a reload.
> Get the messages about the extra NS â.â And unable to find root files,
> restored the stanza, same error.
>
>
>
> Thanks,
>
> Brian
>
>
>
> *From:* Greg Choules
> *Sent:* Thursday, February 6, 2025 3:18 AM
> *To:* Cutt
3:18 AM
To: Cuttler, Brian R (HEALTH)
Cc: bind-users
Subject: Re: forwarding non-domain queries
ATTENTION: This email came from an external source. Do not open attachments or
click on links from unknown senders or unexpected emails.
Hi Brian.
I'm confused. In previous mails you confirmed that
re authoritative, only one is the reference version.
Cheers, Greg
/soapbox
On Thu, 6 Feb 2025 at 14:19, Paul Kosinski via bind-users <
bind-users@lists.isc.org> wrote:
> On Sat, 1 Feb 2025 09:11:32 +0100
> OndĹej SurĂ˝ wrote:
>
> > Hey,
> >
> > since you'
dies of the definitions. (Not to mention that it
would be rather confusing to have "Primary master" defined as a reference to
"Primary primary".)
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this s
that whether or not I have the cache file loading Iâm seeing
> these messages at server restart.
>
> zone ".: {
>
>type hint;
>
>file ;
>
> };
>
>
>
>
>
> root@ash:/etc/bind# 05-Feb-2025 12:08:46.332 general: warning:
> checkhints: unable
Greg,
I did a spectacular sloppy job with the hints file.
Just realized that whether or not I have the cache file loading I'm seeing
these messages at server restart.
zone ".: {
type hint;
file ;
};
root@ash:/etc/bind# 05-Feb-2025 12:08:46.332 general: warning: checkhints:
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this software with paid support subscriptions.
Contact us at https://www.isc.org/contact/ for more information.
bind-users mailing list
bind-users@lists.isc.org
https://lis
Hi,
Iâm running BIND 9.18.30-0ubuntu0.22.04.2-Ubuntu in production on a university
network.
Recently, we have been experiencing the error shown below:
named[4787]:
/lib/x86_64-linux-gnu/libisc-9.18.30-0ubuntu0.22.04.2-Ubuntu.so(isc_assertion_failed+0x10)
[0x7fe1b4e1d7c0]
named[4787]:
/lib
Hi EveryoneÂ
With design where one ISC Bind DNS server is a master for domain example1.com
while in same time acts like as Slave for another one lets say example2.com do
we breaks any ISC recomendations or good practice ?Â
WysĹane z Yahoo Mail do iPhone
--
Visit https://lists.isc.org/mailman
1.
My systems are low volume, so I cannot report on any performance gains or
regressions.
Greetings
Carsten
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this software with paid support subscriptions.
Contact us at
cryption is supported natively.
--
Grant. . . .
unix || die
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this software with paid support subscriptions.
Contact us at https://www.isc.org/contact/ for more information.
ckson-dprive-adot-auth-06.htmlIn case you werenât aware there is also this (competing) RFC which has progressed past draft status:https://www.rfc-editor.org/rfc/rfc9539.htmlNick.--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this s
> in zone file. Can i make this record. Older version 9.18.20 was case
> sensitiv and MAP.domain.tld
> was useful.
> Is some posibility to have map.domain.tld
>
> Than you for any answer
>
> ---
> Michal BednĂĄĹ
>
> --
> Visit https://lists.isc.org/mailman/listin
On 1/27/25 07:02, Carlos Horowicz via bind-users wrote:
IMHO this has nothing to do with DNSSEC,
HEAVYsigh
Why do things seem to focus on the encryption of DNS traffic and ignore
authentication of the information?
I'm sure that all of us are aware that it's perfectly possible
DoT instead of plaintext UDP/53 , but also zone
transfers over the Internet encrypted with TLS (thus the reference to
certificates).
-Carlos
On 27/01/2025 14:02, Carlos Horowicz via bind-users wrote:
IMHO this has nothing to do with DNSSEC, it sounds more like the urge
to encrypt resolver
o see the relationship with certificates. But if you want a
complete analysis of privacy issues in DNS, read RFC 7626
<https://www.rfc-editor.org/info/rfc7626>.
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this sof
rrent implementation of certificates.
Even google does not trust CA's with it's certificate pinning.
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this software with paid support subscriptions.
Cont
On 1/24/25 17:09, phil via bind-users wrote:
ftr ubuntu also ships bind with a db.local file
I wonder if we're dancing around what upstream from ISC ships vs what
distros create therefrom and ship.
I'll have to check my copies of the venerable BIND book to be sure, but
I belie
Every release since then is
also available to download, should you want to check them all.
So the fact that you *do* have a file called âdb.local", I think means
nothing. Anyone could have created that for some purpose only they
knew at the time.
ftr ubuntu also ships bind with a db.local f
Hello,
I'm running bind 9.18.28 on OpenSuSE Leap 15.6. I also run 'certbot'
with some home-brewed scripts for DNS validation.
Something happened between January 6th and yesterday that caused
'certbot' renewals to fail with OpenSSL errors:
tls.c:90:tls_
Darilion
Cc: Klaus Darilion via bind-users
Subject: Re: Sporadic Timeouts after upgrading to bind9.20
Hi Klaus,
we've identified an issue in the glue cache that have been causing drops in the
performance.
Can you test a development branch or do you need fix on top of 9.20?
Ondrej
--
OndĹej
Nick.
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this software with paid support subscriptions.
Contact us at https://www.isc.org/contact/ for more information.
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
On 15/01/2025 4:56 am, Lee wrote:
Should bind answer when asked for an A record for random.name.localhost?
If so, does the ISC ship a db.local with a wildcard - eg.
--- cut here ---
@ IN NS localhost.
@ IN A 127.0.0.1
@ IN ::1
* IN
tro,
but can be changed by modifying /etc/nsswitch.conf.
* I'm not sure about Android.
Nick.
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this software with paid support subscriptions.
Contact us at https://www.
nameserver
entries in /etc/resolv.conf determine where queries are sent, which could
be a local instance of BIND.
If the local BIND is authoritative for localhost/.local etc. then it should
respond in microseconds. I don't know how this would compare with a lookup
into hosts. I suspect hosts wou
On 13/01/2025 12:44, Lee wrote:
As long as I'm asking ignorant questions.. is there some reason why
bind (at least as it came configured on my Debian machine) looks up
.local names?
I added this bit to named.conf to do what seemed reasonable. But
again - it seems reasonable _to me_ I dun
Hello Evan and Petr!
Thanks for the details.
Klaus
> -Original Message-
> From: Evan Hunt
> Sent: Thursday, January 9, 2025 7:32 PM
> To: Klaus Darilion
> Cc: Greg Choules via bind-users
> Subject: Re: Binary zone file and journal compatibility between Bind9 version
Hello!
For testing I often up- and downgrade Bind versions, ie. Between 9.18, 9.20 and
9.21. I wonder how stable the binary zone file format and journal file format
is, and if there are changes in the binary format, if Bind would detect that
and behave properly.
I am concerned about zones
I tried disabling and stopped systemd resolved. It didn't fix the issue. I
checked in nsswitch, and could see the entries for file, group, user with
systemd.
Get Outlook for iOS<https://aka.ms/o0ukef>
From: bind-users on behalf of Fred Morris
Sen
remember any time I cared about the DHCP server's
IP in the last two decades, other than DHCP helpers / forwarders.
I'm sure there are some edge cases that I'm not thinking of. I'd be
curious to learn edge cases others have run into.
As others have said, running BIND and
a
different box.
Try it and see. Personally I would use different addresses for DNS and DHCP
service, just to make it easy to know which is which.
I'm sure there will be many opinions :)
Cheers, Greg
On Wed, 8 Jan 2025 at 15:35, Karol Nowicki via bind-users <
bind-users@lists.isc.or
HelloÂ
Does a good practice recommend to split running ISC Bind and DHCP into two
different machines or make DNS+DHCP running on same server is allowed ?Â
ThanksÂ
WysĹane z Yahoo Mail do iPhone
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds
Hello,
We have setup a bind with dnstap enabled and bind is running on channel
127.0.0.1. We want to write all DNS queries resolved by any name servers to
dnstap file. But ,it is writing the query logging to dnstap file which
resolving only by 127.0.0.1 and localhost name servers. bind version
n Internet Draft â there is a helpful
page here: https://authors.ietf.org/en/home
<https://authors.ietf.org/en/home>Â .
W
Robert Wagner
----
*From:* bind-users on behalf of
Carlos Horowicz via bind-users
*Sent:* Thu
Hi there,
does anyone know of the bind developers thinking of incorporating
post-quantum cryptography into bind9 , like Cloudflare with
X25519Kyber768 on BoringSSL ?
I'm just curious about if there are thoughts or ongoing work, or if this
is in the near roadmap at all.
Thank you,
C
On 12/27/24 15:40, Roberto Braga wrote:
For this, I must use 2 servers:
I agree that you should use two servers. But I also believe you could
do what you're doing with one server, one OS image, and maybe even one
instance of BIND.
The first, like Recursive DNS itself, is what clients
; The scheme below is working, but I would like someone more experienced who
> can review and identify if I'm doing it correctly, if there are flaws or
> how I can improve this structure... Thank you.
>
> *First server configuration (Recursive DNS):*
>
> *file /etc/bind/name
h hit or miss, I've found.
> Searching for information about which browsers support it is problematic
> because DNS and HTTPS are used together for different things.
Yeah. Having SVCB/HTTPS support in caniuse.com would
be useful:
https://github.com/Fyrd/caniuse/issues/6091
-Jan
--
Visi
ave
equal part in supporting and enabling the solution.
P.S. Reply directly / off-list if you'd like to discuss details.
--
Grant. . . .
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this software with paid suppor
Thanks Jan,
Per discussion not supported by all dns servers nor clients.
Ultimate solution is a non-DNS based fix to the websites anchors or a url
wr-write function to correct for the missing www. Prefix.
Thanks,
Brian
-Original Message-
From: bind-users On Behalf Of Jan Schaumann
"Cuttler, Brian R (HEALTH) via bind-users" wrote:
> However, I've been asked if we can point the apex record at the external
> webserver.
I'm not quite sure if this covers what you're trying
to accomplish, but if you're talking about an HTTP /
browser contex
source and sending the page/with anchors to the user's
browser?
That would fix their problem by complicating the code and not fixing the
problem at the source, so a perfect fit...
-Original Message-
From: bind-users On Behalf Of G.W. Haywood
Sent: Tuesday, December 24, 2024 10
in house because web devs will cry and be sad. Just sayin ...
John
Sent from Nine<http://www.9folders.com/>
From: "Cuttler, Brian R (HEALTH) via bind-users"
Sent: Tuesday, December 24, 2024 9:23 AM
To: Greg Choules
Cc: bind-users
Subject: RE: cname f
On Tue, Dec 24, 2024 at 03:22:44PM +,
11;rgb://Cuttler, Brian R (HEALTH) via bind-users
wrote
a message of 593 lines which said:
> Stefane - thank you for your input as well, I'll recheck my
> delegation and see where we've lost proper delegation.
I used che
On Tue, Dec 24, 2024 at 03:27:06PM +,
Cuttler, Brian R (HEALTH) via bind-users wrote
a message of 646 lines which said:
> Apologies, meant to write Stephane and not Stefane.
No problem, US-based people often miswrite it Stephanie :-)
--
Visit https://lists.isc.org/mailman/listinfo/b
Apologies, meant to write Stephane and not Stefane.
From: bind-users On Behalf Of Cuttler, Brian
R (HEALTH) via bind-users
Sent: Tuesday, December 24, 2024 10:23 AM
To: Greg Choules
Cc: bind-users
Subject: RE: cname for apex record
ATTENTION: This email came from an external source. Do not
efix, anchors do not.
Ged - I just put up the server in the spring, will check and update if we are
somehow running an older version.
Thanks to all and happy holidays,
Brian
From: Greg Choules
Sent: Tuesday, December 24, 2024 10:00 AM
To: Cuttler, Brian R (HEALTH)
Cc: bind-users
Subject: Re: cna
fic.
John
Sent from Nine<http://www.9folders.com/>
From: Greg Choules
Why do these people want you to alias your entire zone to them anyway?
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development
HEALTH) via bind-users"
Sent: Tuesday, December 24, 2024 8:39 AM
To: bind-users
Subject: cname for apex record
Hello bind users.
We are running bind 9.14.28 on Ubuntu and have an offsite provider for our DNS
services.
The cname we create for our webserver
www.wadsworth.org<http://ww
ected your whole zone somewhere else.
CNAME/DNAME are very old now. More recently, a couple of other RRTYPEs -
SVCB and HTTPS - have been standardised (and are supported by BIND) that do
allow you to alias the apex (the zone itself) *but* not for any query, only
for queries matching those RRTPEs.
On Tue, Dec 24, 2024 at 02:38:51PM +,
Cuttler, Brian R (HEALTH) via bind-users wrote
a message of 163 lines which said:
> The cname we create for our webserver
> www.wadsworth.org<http://www.wadsworth.org> is working well.
> However, I've been asked if we can point th
Hello bind users.
We are running bind 9.14.28 on Ubuntu and have an offsite provider for our DNS
services.
The cname we create for our webserver
www.wadsworth.org<http://www.wadsworth.org> is working well.
However, I've been asked if we can point the apex record at the external
web
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
https://www.five-ten-sg.com/mapper/bind contains links to the source
rpm, and build instructions. This .src.rpm contains a .tar.gz file with
the ARM documentation, so the rpm rebuild process does not need sphinx-
build and associated dependencies
al.
or my own custom utility (Perl / Python code) to use beside dig et al.?
--
Grant. . . .
unix || die
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this software with paid support subscriptions.
Contact us at https://www.is
Greg,
From: Greg Choules
Sent: Wednesday, December 18, 2024 5:04 PM
To: Cuttler, Brian R (HEALTH)
Cc: bind-users
Subject: Re: forwarding non-domain queries
ATTENTION: This email came from an external source. Do not open attachments or
click on links from unknown senders or unexpected emails
your network allows it) will send
a query for to that address. I would always recommend using this
form, to be certain where your queries are going.
4) dig +trace will cause dig itself to follow addresses it gets back. So
whilst the first query may go to your local BIND (depending on 1, 2 or 3)
sub
his case I queried a .edu address.
Is there a way to prevent these errors, or was my query ill thought out or have
I simply misconfigured my server?
thanks,
Brian
Dig without trace
root@intest:/etc/bind# dig @intest ns1.albany.edu
18-Dec-2024 14:45:04.452 queries: info: client @0x7f
ailure)
--
Marco
Original Message
*Subject: *BIND 9.20.4 exiting
*From: *Klaus Darilion via bind-users
*To: *"y...@iaelu.net" , OndĹej SurĂ˝
*Cc: *"bind-users@lists.isc.org"
*Date: *Wed, 18 Dec 2024 15:10:04 +
I confirm that I hit the same crash, but had
Cc: Klaus Darilion ; bind-users@lists.isc.org
Subject: Re: BIND 9.20.4 exiting
Issue has been created on gitlab.
It is marked as confidential, and its title is "BIND 9.20.4 exiting".
Everything is detailed there.
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubs
time: 40 msec
;; SERVER: 54.229.229.105#53(dns4.elasticbox.eu) (UDP)
;; WHEN: Fri Dec 13 15:40:38 CET 2024
;; MSG SIZE rcvd: 582
That implies that this might be a network problem, but since all servers
have a public IP and no NAT, I really cant's imagine why or how.
What diagnostic steps
Hello,
Thanks for the new release.
It's just me that cannot find the new release in the repo:
https://download.copr.fedorainfracloud.org/results/isc/bind/epel-9-x86_64/?
From: bind-announce on behalf of Victoria
Risk
Sent: 11 December 2024 17:01
To: bind-
> On 26 Nov 2024, at 14:36, Petr Ĺ paÄek wrote:
>
> On 26. 11. 24 10:08, n/a via bind-users wrote:
>> I am a new user in bind9.
>> I have setup my DNS server with port 53, port 443 (DoH), and port 853 (DoT).
>> And now, in my logging file of `queries` category, one
A quick follow-up for posterity, this was resolved by manually editing
the bind 9.18 zone files and removing all DNSSEC records.
On 2024-10-22 9:57 p.m., Paul Galbraith wrote:
I am getting this error with bind 9.20.2, when trying to delete an
record with nsupdate on the same host. Using
roblems. If we manage an instantaneous
>>> change on all of the authoritative servers at once, we can still have
>>> cached records out there. You could still have a resolver with the NS and
>>> SOA of bar.example.com cached. It goes to ask for
>>> "doesntex
;
> Brian
>
>
>
> *From:* Greg Choules
> *Sent:* Tuesday, December 10, 2024 9:54 AM
> *To:* Cuttler, Brian R (HEALTH)
> *Cc:* bind-users
> *Subject:* Re: forwarding non-domain queries
>
>
>
> *ATTENTION: This email came from an external source. Do not open
>
From: Greg Choules
Sent: Tuesday, December 10, 2024 9:54 AM
To: Cuttler, Brian R (HEALTH)
Cc: bind-users
Subject: Re: forwarding non-domain queries
ATTENTION: This email came from an external source. Do not open attachments or
click on links from unknown senders or unexpected emails.
And my
v> wrote:
> Greg,
>
> Yes, I do have that but it looks like this
>
> (/etc/dns-root is a link to /etc/bind/zones carry over from an older
> platform)
>
> These are the servers I want to use as the forwards for all queries that
> arenât either local zones or more specifi
Greg,
Yes, I do have that but it looks like this
(/etc/dns-root is a link to /etc/bind/zones carry over from an older platform)
These are the servers I want to use as the forwards for all queries that aren't
either local zones or more specific zones in the internal corp network.
brian@
continue to word when I add a forwarders statement for the
> servers that ny.gov servers for all more generic queries.
>
>
>
> Many thanks,
>
> Brian
>
>
>
> *From:* Greg Choules
> *Sent:* Monday, December 9, 2024 6:26 PM
> *To:* Cuttler, Brian R (HEALTH)
> *
Nick, Greg,
Thank you both, don't deal with that level of detail very often but I love
having a clue as to the underpinnings of things.
The root priming process is exactly the sort of thing you'd hope a service like
this did, and it does!
Thanks,
Brian
From: bind-users On Beha
health.ny.gov and ny.gov and its.ny.gov,
those will continue to word when I add a forwarders statement for the servers
that ny.gov servers for all more generic queries.
Many thanks,
Brian
From: Greg Choules
Sent: Monday, December 9, 2024 6:26 PM
To: Cuttler, Brian R (HEALTH)
Cc: bind-users
Subject: Re
, and wait until the
AXFR either succeeded or failed.
Does somebody have an idea if this is somehow possible?
Thanks
Klaus
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this software with paid support subscriptions.
Hi OndĹej!
We run Ubuntu 24.04. Can you please update the dev-ppa too?
Thanks
Klaus
--
Klaus Darilion, Head of Operations
nic.at GmbH, Jakob-Haringer-StraĂe 8/V
5020 Salzburg, Austria
From: OndĹej SurĂ˝
Sent: Monday, December 9, 2024 2:54 PM
To: Klaus Darilion
Cc: Klaus Darilion via bind
Hi Nick.
True, they do, but very infrequently. Here are the ones I could find from
recent history:
b-root 2023-11-27
i-root 2016-03-23
h-root 2015-12-01
d-root 2013-01-03
l-root 2007-11-01
Despite those changes, each release of BIND (and other resolvers, I
believe) contains the current set
On 10/12/2024 12:25, Greg Choules via bind-users wrote:
Actually you don't need it anyway, even if you are doing recursion, as
Internet root hints have been built into BIND for many years. The only
reason you would need a hint zone is to define custom roots for a
private network th
ng that's not local *and* disabling
recursion if forwarding fails, you don't need the hint zone at all; please
delete it.
Actually you don't need it anyway, even if you are doing recursion, as
Internet root hints have been built into BIND for many years. The only
reason you would need a
Hello, looking for a sanity check.
Inside our network we are running BIND 9.18.28-0ubuntu0.22.04.1-Ubuntu on
Ubuntu 22.04.5 LTS
Currently our server serves our own zones files - A/CNAME/PTR/TXT/etc records
for our domain.
We have already modified the db.cache file to reference two servers
'm going to
re-state the config, with the corrections I *think* you meant.
zone "example. <http://example.net/>com" {
type forward;
forwarders {
10.0.1.10;
10.0.1.11;
};
};
zone "internal.example.com <
Hi Mike.
What version of BIND are you running?
Firstly, please clarify your question and example configuration.
You talk about "example.com" and subdomains of "exmaple.com", but your
config shows "example.net". It's not easy to understand exactly what you'r
e internal
zone is 10
.0.2.0/24 and it not Internet routable.
Let's say that .com has NS recording point example.com to 10.0.1.10 and
10.0.1.11. Those are bind servers hosting zones for example.com and
dmz.exmaple.com.
There are two BIND servers in the internal zone, 10.0.1.10 and
10.0.1.1
plugin.
Debugging 9.16.23+pile_of_patches and bind-dyndb-ldap is really out of the
scope for this list. Speaking with upstream hat, whatever the result of your
debugging is, we would be interested only in case this could be reproduced on
the latest 9.18 ESV or 9.20 branch.
I understand
Hi OndĹej!
I can test also the development branch. I prefer deb packages (do you have
nightly builds?), but I can fallback to make&&make install
Regards
KLaus
From: OndĹej SurĂ˝
Sent: Thursday, December 5, 2024 8:36 PM
To: Klaus Darilion
Cc: Klaus Darilion via bind-users
Sub
is an _awesome_ debugger
Once you get `rr record` functional on your system (which might require
a bit of fiddling, but definitely worth it!) ... go and modify command
to run BIND from:
 named -c ...
to something like:
 rr record named -n1 -g -c ...
A quick question.
The normal way (on a FreeIPA s
On 03-12-2024 15:56, Petr Ĺ paÄek wrote:
On 03. 12. 24 11:36, Kees Bakker via bind-users wrote:
I have a CentOS FreeIPA setup with with multiple named (bind9 9.16.23)
servers.
On two of my five servers, when I start named it fails a REQUIRE in
dns_name_equal
/*
 * Either name1 is
};".
I need to simplify adding and removing a domain so that it is enough
to just add the zone file itself whitout editing the big list. Is this
possible? There are simpler options?
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the dev
1 - 100 of 1164 matches
Mail list logo
