Re: Microsoft's nslookup Implementation Problems

2010-06-15 Thread Steve Shockley
On 6/13/2010 4:00 PM, Merton Campbell Crockett wrote: Inspecting the query log on the name server indicates that BIND never services a request from the system running Microsoft's nslookup tool. In addition, using tcpdump in controlled tests, I find that Microsoft's nslookup implementation never s

Re: Using bind to provide a dns redirector

2010-03-06 Thread Steve Shockley
On 3/5/2010 12:23 PM, Alex Sharaz wrote: 1). We want users to have access to windows update and app update sites even from the unauth VLAN 2). Whatever else they try and get to via a browser, the host address gets resolved to a Hull IP address. The browser therefore connects to a local web serv

Re: can bind filter the result

2009-04-20 Thread Steve Shockley
On 4/20/2009 2:55 AM, Ken Lai wrote: normally, the client sent the query to SrvA, and SrvA forwards it to SrvB. and SrvA return a result which came from SrvB to the client. unfortunately the SrvB sometimes will return a A record that is a advertisement site ip to SrvA. so i dont want to respond

Re: Windows servers triying to update my zone

2009-04-07 Thread Steve Shockley
On 4/7/2009 8:28 PM, joans4nz wrote: Apr 7 20:04:54 myserver named[67312]: client 172.16.0.146#2186: view interna: update 'mydomain.com/IN ' denied How fix this problem? Either don't use your Windows domain name externally, or ignore the messages. The update is deni

Re: named-checkconf error

2009-03-24 Thread Steve Shockley
On 12/8/2008 11:00 AM, Chris Thompson wrote: In message <493b2b5d.40...@shockley.net>, Steve Shockley wrote: I'm running BIND 9.4.2 on OpenBSD 4.3. I'm getting some errors with named-checkconf I don't really understand. I'm running: named-checkzone -t /var/named cap

Re: BIND Security Advisory (CVE-2009-0025; Severity: Low)

2009-01-09 Thread Steve Shockley
On 1/8/2009 9:10 AM, David Coulthart wrote: Would someone be able to provide some more details as to what particular configurations of BIND this affects? My interpretation is it only impacts recursive nameservers that have DNSSEC validation enabled. Speaking in terms of BIND config options, the d

named-checkconf error

2008-12-06 Thread Steve Shockley
I'm running BIND 9.4.2 on OpenBSD 4.3. I'm getting some errors with named-checkconf I don't really understand. I'm running: named-checkzone -t /var/named capmarksecurities.com /master/db.capmarksecurities.com and I get: zone capmarksecurities.com/IN: getaddrinfo(quarantine1.capmark.com) f