The rule of thumb is: BIND instances need access to a root zone. Either
a) you forward for it, or
b) you are authoritative (master or slave) for it, or
c) you're set up as a "stub" for it,
d) you prime it via the contents of an explicitly-configured "hints"
zone, or
e) you use the compiled-in In
In message <20130521140821.gb11...@h.detebe.org>, "Elmar K. Bins" writes:
> Re Mark,
>
> > > Oh, I forgot to mention that all master zones have "notify explicit;" set.
> > > (Is there a global setting for that?)
> >
> > What about the slave zones? They also send notify messages.
>
> Which slav
Re Mark,
> > Oh, I forgot to mention that all master zones have "notify explicit;" set.
> > (Is there a global setting for that?)
>
> What about the slave zones? They also send notify messages.
Which slave zones? This server is auth-only, master-only. That's it.
No slaves, no recursion, no look
In message <20130521134214.ga11...@h.detebe.org>, "Elmar K. Bins" writes:
> Re Mark,
>
> thanks for your answer (and good morning!),
>
> ma...@isc.org (Mark Andrews) wrote:
>
>
> > > Recursion is off, and the root hints file has been removed from the local
> > > zone config. No effect.
> >
>
Re Mark,
thanks for your answer (and good morning!),
ma...@isc.org (Mark Andrews) wrote:
> > Recursion is off, and the root hints file has been removed from the local
> > zone config. No effect.
>
> Authoritative nameservers still need to lookup address of nameservers
> to send NOTIFY messages
In message <20130521085732.gh23...@h.detebe.org>, "Elmar K. Bins" writes:
> ... these annoying root lookups:
> error (host unreachable) resolving './DNSKEY/IN': 192.112.36.4#53
> error (host unreachable) resolving './NS/IN': 192.36.148.17#53
> ...
>
>
> Hi guys,
>
> I guess a few of you have se
Re Bryan,
bryanlhar...@me.com (Bryan Harris) wrote:
>> Recursion is off, and the root hints file has been removed from the local
>> zone config. No effect.
>
> Do you have a line like this? Hope it helps.
> allow-recursion { none; };
Would that help more than options { recursion no; } ?
Any
On May 21, 2013, at 03:57 AM, "Elmar K. Bins" wrote: Recursion is off, and the root hints file has been removed from the local zone config. No effect. Do you have a line like this? Hope it helps.allow-recursion { none; };Bryan
___
Please visit https:/
On 2013-05-21 04:57, Elmar K. Bins wrote:
... these annoying root lookups:
error (host unreachable) resolving './DNSKEY/IN': 192.112.36.4#53
error (host unreachable) resolving './NS/IN': 192.36.148.17#53
...
Hi guys,
I guess a few of you have seen and mitigated this before. We're
running
a fe
9 matches
Mail list logo
