Re: how to modify the cache

, Guanghua > Date: Mon, 17 Feb 2014 09:09:13 + > Subject: Re: how to modify the cache > From: sjc...@gmail.com > To: houguang...@hotmail.com > CC: bind-users@lists.isc.org > > On 17 February 2014 01:17, houguanghua wrote: > > I want to override the IP address of

Re: how to modify the cache

On 19 February 2014 09:51, houguanghua wrote: > But if the specified name server is enabled only when normal dns query > process is down. How to configure the local DNS server? The detailed > scenario is descibed in below figure: I'm not sure if that is possible, you either forward or you allow

RE: how to modify the cache

Feb 2014 09:09:13 +0000 > Subject: Re: how to modify the cache > From: sjc...@gmail.com > To: houguang...@hotmail.com > CC: bind-users@lists.isc.org > > On 17 February 2014 01:17, houguanghua wrote: > > I want to override the IP address of NS, for I want to use other authorit

RE: how to modify the cache

Thanks a lot. It's a good solution. > Date: Mon, 17 Feb 2014 09:09:13 + > Subject: Re: how to modify the cache > From: sjc...@gmail.com > To: houguang...@hotmail.com > CC: bind-users@lists.isc.org > > On 17 February 2014 01:17, houguanghua wrote: > > I want

Re: how to modify the cache

Indeed. Regular "stub" only overrides the parent's delegation NS records; "static-stub" overrides the apex NS records of the zone as well. My uses of the words "stub" (which I intended to cover both forms of "stub"bing) and "published" (which I intended to cover both the delegating and apex rec

Re: how to modify the cache

To clarify, it's sometimes necessary to "mix" iterative and recursive resolution in the same nameserver instance, maybe even the same view. Oftentimes, there simply is no choice, because the source of the zone information doesn't make an authoritative nameserver available, only a forwarder (thu

Re: how to modify the cache

> Use a "stub" zone if you want to "override" published NSes _without_ > crossing the very-important boundary between iterative and recursive > resolution. Actually no - use static-stub (newer versions of BIND) - otherwise the NS records received from the zone may override the NS that you want to

Re: how to modify the cache

Bad performance, bad reliability, clandestine IP-over-DNS tunnels between networks that are supposed to be isolated... Is that enough? Understanding the pros and cons of iterative versus recursive resolution is one of the few things still separating us from the MCSE savages...

Re: how to modify the cache

On 02/17/2014 11:37 AM, Kevin Darcy wrote: Ugh, that mixes apples (recursive resolution) and oranges (iterative resolution). Out of curiosity, what bad thing do you think will happen if you mix these two functions? Doug ___ Please visit https://li

Re: how to modify the cache

Ugh, that mixes apples (recursive resolution) and oranges (iterative resolution). Use a "stub" zone if you want to "override" published NSes _without_ crossing the very-important boundary between iterative and recursive resolution. - Kevin On 2/17/2014 4:09 AM, Steven Carr wrote: O

Re: how to modify the cache

On 17 February 2014 01:17, houguanghua wrote: > I want to override the IP address of NS, for I want to use other authority > DNS which isn't registered. For that you use forwarding. Create a zone statement for the zone in question and forward the queries to a different name server. You don't need

RE: how to modify the cache

John, I want to override the IP address of NS, for I want to use other authority DNS which isn't registered. Regards, Guanghua Date: Fri, 14 Feb 2014 11:28:58 -0500 Subject: Re: how to modify the cache From: johnm...@brandeis.edu To: houguang...@hotmail.com CC: bind-users@lists.isc.org

Re: how to modify the cache

In article , Ben Croswell wrote: > What you say is true, but the OP wasn't clear in who owned the record he > wanted to override. I assumed it was someone else's or you would just > change authoritative source that you own. Of course. But it's still the case that you can configure your own re

Re: how to modify the cache

Are you trying to override the IP address locally, or are you just trying to get the correct value into cache? John On Fri, Feb 14, 2014 at 8:52 AM, houguanghua wrote: > Hi all, > Bind provides rndc tools to operate the cache. But how to change a record > in the cache. For example: > to modify

Re: how to modify the cache

What you say is true, but the OP wasn't clear in who owned the record he wanted to override. I assumed it was someone else's or you would just change authoritative source that you own. On Feb 14, 2014 10:20 AM, "Barry Margolin" wrote: > In article , > Ben Croswell wrote: > > > You can't modify

Re: how to modify the cache

In article , Ben Croswell wrote: > You can't modify cache. If that was allowed you could cache poison any > domain you wanted. "poisoning" refers to putting incorrect records into the cache of some *other* server. If you operate the server itself, you can put anything you want into its memor

Re: how to modify the cache

You can't modify cache. If that was allowed you could cache poison any domain you wanted. On Feb 14, 2014 8:52 AM, "houguanghua" wrote: > Hi all, > Bind provides rndc tools to operate the cache. But how to change a record > in the cache. For example: > to modify origin record " *www.abc.com*

Re: how to modify the cache

On 14 February 2014 13:52, houguanghua wrote: > Who can tell me how to do?Thanks. You can't and shouldn't need to edit the cache. All you can do is clear it. If you want to change the response back to the client then look into RPZ, however by doing so you may break DNSSEC validation and end up n