Thanks guys, sorry needed some down time to recharge my batteries - am
gona combine all answers into one lump mail :-)
Frank Pikelner wrote:
Do your bind logs give any clues as to what is going on? On the master
make sure you have read permission and the file is being loaded. On
the slave it
In article ,
Doug Barton wrote:
> gmspro wrote:
> > What's the main difference between zone and domain?
>
> In what context? Unfortunately both terms get used by various
> people/vendors in different ways. A little more detail is needed to
> answer your question (although if you're talking stri
In article ,
Joseph S D Yao wrote:
> On Tue, Dec 01, 2009 at 04:59:16PM -0800, Hans Jacobsen wrote:
> > If a.stanford.edu is a cname (say to b.stanford.edu)
> > can I delegate subdomain.a.stanford.edu? Are there documents that
> > point to this being an ok or bad practice?
> >
> > I know all
Hello!
I can't find in docs how disable answer (Refused), if recursion for IP
is not allowed?
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
I found answer for my feature request - simple C proxer:
http://www.wolfermann.org/dnsproxy.html
It can forward queries to auth or recursion server. Based on client IPs.
FreeBSD port /usr/ports/dns/dnsproxy/
___
bind-users mailing list
bind-users@list
On Wed, Dec 2, 2009 at 9:43 AM, Dmitry Rybin wrote:
> I found answer for my feature request - simple C proxer:
> http://www.wolfermann.org/dnsproxy.html
>
> It can forward queries to auth or recursion server. Based on client IPs.
>
What if one of your access customers is running their own DNS ser
Dmitry Rybin wrote:
I found answer for my feature request - simple C proxer:
http://www.wolfermann.org/dnsproxy.html
It can forward queries to auth or recursion server. Based on client IPs.
So, what does a dnsproxy approach accomplish, that can't be achieved
with less processes, and less listen
I apologise, I should have tested - I appear to have been laboring under
a misconception and false mental model. I will check my resources to
see why I thought this.
--
/*\
**
** Joe Yao j...@tux.or
On Wed, Dec 02, 2009 at 10:02:45AM +0200, Kaya Saman wrote:
...
> Joseph, yes definitely they are going to different files as I have 14
> different zone files 7 in each 'view' - with 13 files getting
> transferred..
...
This is good. But bad, in that would have been an easy solution.
This w
On Wed, Dec 02, 2009 at 12:47:08PM +, Sam Wilson wrote:
> In article ,
> Joseph S D Yao wrote:
[incorrectly]
> > No.
...
> Not true. CNAME chains - CNAMEs pointing to other CNAMEs - are
> inefficient and discouraged but the DNS spec is built to ensure that
> they work. Check out www.googl
In article ,
Joseph S D Yao wrote:
> On Wed, Dec 02, 2009 at 12:47:08PM +, Sam Wilson wrote:
> > In article ,
> > Joseph S D Yao wrote:
> [incorrectly]
> > > No.
> ...
> > Not true. CNAME chains - CNAMEs pointing to other CNAMEs - are
> > inefficient and discouraged but the DNS spec is b
In article ,
Dmitry Rybin wrote:
> Hello!
>
> I can't find in docs how disable answer (Refused), if recursion for IP
> is not allowed?
What do you expect it to do instead? Not respond at all?
--
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read
In article ,
Joseph S D Yao wrote:
> On Wed, Dec 02, 2009 at 12:47:08PM +, Sam Wilson wrote:
> > In article ,
> > Joseph S D Yao wrote:
> [incorrectly]
> > > No.
> ...
> > Not true. CNAME chains - CNAMEs pointing to other CNAMEs - are
> > inefficient and discouraged but the DNS spec is b
On Wed, Dec 02, 2009 at 12:52:01PM -0500, Barry Margolin wrote:
...
> I think he misunderstood you to be saying that the name that has a CNAME
> can never appear on the *righthand* side of a RR. This is true for
> records like MX and NS -- they mustn't point to aliases. CNAME chains
> are the
On Thu, Dec 03, 2009 at 12:59:51AM +0200, Kaya Saman wrote:
...
> I just hope this doesn't take up many CPU cycles and memory as the debug
> commands do in Cisco devices rendering them almost unusable in a fully
> setup network environment.
...
I'm glad the logging helped!
Query logging ca
Joseph S D Yao wrote:
On Thu, Dec 03, 2009 at 12:59:51AM +0200, Kaya Saman wrote:
...
I just hope this doesn't take up many CPU cycles and memory as the debug
commands do in Cisco devices rendering them almost unusable in a fully
setup network environment.
...
I'm glad the loggin
Major thanks Joseph
Added below:
// logging clause - who, what, where, why, when, how, how long?
logging {
channel querylog {
file "/var/log/named/query.log" versions 15 size 25m;
// severity debug;
severity info;
print-time yes;
print-category y
when I read the RFC1035, I noticed the opcode defination in the DNS message
head . It said that when opcode = 1 the message did Inverse query . but in the
packet I capatured when I used nslookup to do inverse query ,the inverse query
packet use the opcode = 0 and the question segment with RR
when I read the RFC1035, I noticed the opcode defination in the DNS message
head . It said that when opcode = 1 the message did Inverse query . but in the
packet I capatured when I used nslookup to do inverse query ,the inverse query
packet use the opcode = 0 and the question segment with RR
On Thu, Dec 03, 2009 at 10:42:38AM +0800, lipeng967 wrote:
> when I read the RFC1035, I noticed the opcode defination in the DNS message
> head . It said that when opcode = 1 the message did Inverse query . but in
> the packet I capatured when I used nslookup to do inverse query ,the inverse
In message <4591889.164031259808158905.javamail.corem...@app183.163.com>, lipen
g967 writes:
> when I read the RFC1035, I noticed the opcode defination in the DNS
> message head . It said that when opcode = 1 the message did Inverse query.
> but in the packet I capatured when I used nslookup to d
Thank you very much for your help and advice .___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Also I suggest that you get the BIND 9 source tarball and look at
doc/rfc. There are some 128 RFC's in there that impact on the
operations on DNS nameservers or DNS clients. Just reading RFC
1034 has not been enough for well over a decade now.
Mark
--
Mark Andrews, ISC
1 Seymour St., Dundas V
Barry Margolin wrote:
In article ,
Dmitry Rybin wrote:
Hello!
I can't find in docs how disable answer (Refused), if recursion for IP
is not allowed?
What do you expect it to do instead? Not respond at all?
Drop not allowed request.
___
bind-u
24 matches
Mail list logo
