In message <05883710-136f-4dc2-8079-e29a68fed...@me.com>, Bryan Harris writes:
> Hi everyone,
>
> Thanks for all the detailed responses, I think I have a better
> understanding of things now. I was completely and totally confused about
> UDP/TCP. I am just going to take a wild guess that doing i
On 2013.06.05 10.02, Bryan Harris wrote:
> Hi all,
>
> I think I may be confused about a very basic DNS concept. Sorry if this has
> been asked before.
>
> 1. I have a master and two slaves.
> 2. The master server is the SOA for my zone. The SOA record points to the
> master server.
> 3. Each o
Bryan Harris wrote:
>
> After reading everything it looks to me like our hidden master configuration
> is basically okay, but by some of the best practices described, it could be
> better and easier to work with if we had a separate caching layer.
Note that the caches live on the client side of D
Hi Bryan,
At 09:52 05-06-2013, Bryan Harris wrote:
Regarding if we need a hidden master in the first place, I wish I
could remember. :-) It's been that way since I came here and I
suspect it's a requirement we will simply have to keep using.
Sometimes it is better to ask or else you can end u
Hi everyone,Thanks for all the detailed responses, I think I have a better understanding of things now. I was completely and totally confused about UDP/TCP. I am just going to take a wild guess that doing iptables the way I described would've caused a bunch of problems...After reading everything
The 'hidden master' setup is a very good strategy for a number of reasons.
I think the original description only derails a bit when using the term
'authoritative':
> I'm being told "our authoritative DNS
>> servers should not receive any queries", as well as "DNS slaves
>> respond to quer
On Jun 5, 2013, at 9:02 AM, Bryan Harris wrote:
> Hi all,
>
> I think I may be confused about a very basic DNS concept.
Many people are, but most don't a: know or B: admit it :-P
> Sorry if this has been asked before.
>
> 1. I have a master and two slaves.
> 2. The master server is the SOA
Everything you listed is pretty close to accurate.
A couple points of clarification.
8) The master needs UDP/TCP 53 open to the slaves. Before a zone transfer
can happen the slave needs to get the SOA RR from the master to see if the
serial number has changed. This normally happens over UDP 53(s
8 matches
Mail list logo
