Hi Eivind Olsen,
The command to did test is
/usr/local/nom/bin/resperf -d
/usr/local/nom/examples/dnsperf/queryfile-example-100thousand -s localhost -P
result.txt
queryfile-example-100thousand or queryfile-example-3million are provided by
Nominum. Each line on file is a input to query so each
> >> I wonder, what are expected usages for this kinds of zones?
> >> Maybe blacklists, if we have local mirrors and traffic so high that
> >> we'd get blocked imediately?
> On Jan 24, 2011, at 5:59 AM, Cathy Almond wrote:
> > One use case is for testing new servers that aren't yet part of the mai
On Dec 24 2010, Mark Andrews wrote:
I've extracted the CHANGES files for BIND 9.6.3b1, BIND 9.7.3b1 and
BIND 9.8.0a1 and put them in relevant directories on ftp.isc.org.
Thanks, but ...
It would be helpful if this happened for all new versions.
--
Chris Thompson
Email: c...@cam.ac.uk
___
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
W dniu 2011-01-24 17:47, Kalman Feher pisze:
> This appears to be the problem.
> I copied your NSEC3PARAM (opt out clear, 12 iterations) details but could
> not replicate it. Try turning up the logging to get more information about
> why the nsec3param
On 25/01/11 2:34 PM, "Zbigniew Jasiński" wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> W dniu 2011-01-24 17:47, Kalman Feher pisze:
>> This appears to be the problem.
>> I copied your NSEC3PARAM (opt out clear, 12 iterations) details but could
>> not replicate it. Try turning u
On 1/25/2011 9:51 AM, Kalman Feher wrote:
> If the nsec3param has been removed, the automated signing will be weird if
> you are using nsec3 keys. I havent tested this scenario, since it isnt
> really a working scenario.
There is no such thing as an "nsec3 key".
If you auto-sign a zone that does
My apologies if this gets to the list twice. I tried to post it through
the web interface but it seems to have been dropped by whatever
screening gets applied.
I'm not sure if I've misunderstood the use of CNAME or if I've simply
done something wrong.
I have two domains that I want to forwar
Henry Hartley wrote:
My apologies if this gets to the list twice. I tried to post it through
the web interface but it seems to have been dropped by whatever
screening gets applied.
I'm not sure if I've misunderstood the use of CNAME or if I've simply
done something wrong.
I have two domains
Gary Wallis wrote:
Henry Hartley wrote:
...
In the second case, which is NOT working, I have a similar CNAME
record but instead of web.me.com, it's on tumblr.com. So, I have this
(this is the actual domain):
www.ioanamorosan.com. CNAME ioanamorosan.tumblr.com.
If you go directly to ioa
> www.example.com. CNAME web.me.com.
> When you point your browser to www.example.com (obviously not
> "example") the page on web.me.com loads properly but www.example.com is
> still displayed in the address bar.
What happens in this case is: the web browser you use will connect to the
address
Dnia 2011-01-25 10:18 Henry Hartley napisał(a):
>My apologies if this gets to the list twice. I tried to post it through
>the web interface but it seems to have been dropped by whatever
>screening gets applied.
>
>I'm not sure if I've misunderstood the use of CNAME or if I've simply
>done some
On 25/01/11 4:10 PM, "Alan Clegg" wrote:
> On 1/25/2011 9:51 AM, Kalman Feher wrote:
>
>> If the nsec3param has been removed, the automated signing will be weird if
>> you are using nsec3 keys. I havent tested this scenario, since it isnt
>> really a working scenario.
>
> There is no such th
: dig mta.news.getaroomgetadeal.com +noall +answer @4.2.2.1
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 <<>>
mta.news.getaroomgetadeal.com +noall +answer @4.2.2.1
;; global options: printcmd
: dig news.getaroomgetadeal.com +nssearch @4.2.2.1
SOA ns1.exacttarget.com. hostmaster.exacttarget.
On Sun, Jan 23, 2011 at 10:30 PM, wrote:
> Is there a document for dns & bind best practices?
> I googled but found nothing valueable.
>
NIST SP 800-81 Rev. 1:
http://csrc.nist.gov/publications/nistpubs/800-81r1/sp-800-81r1.pdf
Casey
___
bind-users m
On Tue, 25 Jan 2011, M. Meadows wrote:
>
> Any thoughts on why this might happen?
Invalid CNAME at zone apex.
; <<>> DiG 9.6.2-P2 <<>> any getaroomgetadeal.com @ns1.slicehost.com.
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 15830
;; flags: qr aa rd;
Thank you Tony.
I see a cname pointing to another cname in this output. Is that the invalid
cname?
I thought that sort of record was discouraged but not against the rules.
When I do a query on these cnames I get answers that seem meaningful.
I wonder why this would cause the odd results we a
On 1/25/2011 10:40 AM, Torinthiel wrote:
Dnia 2011-01-25 10:18 Henry Hartley napisał(a):
In the second case, which is NOT working, I have a similar CNAME record
but instead of web.me.com, it's on tumblr.com. So, I have this (this is
the actual domain):
www.ioanamorosan.com. CNAME ioanamoros
On 25.01.11 13:14, M. Meadows wrote:
> From: "M. Meadows"
> Date: Tue, 25 Jan 2011 13:14:45 -0500
> Subject: RE: odd dig results for fqdn
> To: d...@dotat.at
> Cc: bind-users
>
>
> Thank you Tony.
>
> I see a cname pointing to another cname in this output. Is that the invalid
> cname?
> I
Hi all
New to bind or any form of DNS.
Is it possible to globally set (override) the default TTL for all zones
and their subsequent records?
Regards
Fred
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind
In message , Kalman Feher write
s:
>
>
>
> On 25/01/11 4:10 PM, "Alan Clegg" wrote:
>
> > On 1/25/2011 9:51 AM, Kalman Feher wrote:
> >
> >> If the nsec3param has been removed, the automated signing will be weird if
> >> you are using nsec3 keys. I havent tested this scenario, since it isnt
> Is it possible to globally set (override) the default TTL for all zones
> and their subsequent records?
You're thinking about the authoritative zones you host? I am not aware of
any such setting, but it might be possible to use $INCLUDE in the
zonefiles and include a file which contains "$TTL 86
On 26-Jan-2011, at 3:09 AM, Fred Zinsli wrote:
> Hi all
>
> New to bind or any form of DNS.
>
> Is it possible to globally set (override) the default TTL for all zones
> and their subsequent records?
Only can be configured in zone file, don't think there is something which can
configure globa
Gary Wallis writes:
Do not confuse your "forwarding" with HTTP rewriting.
One is just about DNS records (CNAME, A or otherwise.) The other happens
on the server side (see Apache rewrite engine docs.)
This is nothing about rewrite, but webserver's virtual host stuff.
Regards.
___
Casey Deccio writes:
On Sun, Jan 23, 2011 at 10:30 PM, wrote:
Is there a document for dns & bind best practices?
I googled but found nothing valueable.
NIST SP 800-81 Rev. 1:
http://csrc.nist.gov/publications/nistpubs/800-81r1/sp-800-81r1.pdf
Thanks. looks great, will learn from it.
I'm reading the document "Secure DNS Deployment Guide" got from the URL a
poster gave in the list.
The document said:
When a user types the URL www.example.com into a Web browser, the browser
program contacts a type of resolver called a stub resolver that then
contacts a local name server
Hello,
From what version of bind we won't include the root hints file in
named.conf? Since the bind server has been including it inherently.
Thanks in advance.
Regards.
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/m
On Wed, 26 Jan 2011, p...@mail.nsbeta.info wrote:
Casey Deccio writes:
On Sun, Jan 23, 2011 at 10:30 PM, wrote:
Is there a document for dns & bind best practices?
I googled but found nothing valueable.
NIST SP 800-81 Rev. 1:
http://csrc.nist.gov/publications/nistpubs/800-81r1/sp-800-81r1
On Wed, Jan 26, 2011 at 11:20:18AM +0800, p...@mail.nsbeta.info wrote:
>
> Hello,
>
> From what version of bind we won't include the root hints file in
> named.conf? Since the bind server has been including it inherently.
I could be wrong, but I think that all V9 and even all V8 had this
"f
On Fri, Jan 21, 2011 at 12:50:18PM -0500, Barry Margolin wrote:
> In article ,
> Dave Knight wrote:
>
> > I guess the tool just always assumes that there's probably a www worthy
> > asking about
>
> That's what I assumed at first, too. But the report for his domain also
> included NS records
In article ,
p...@mail.nsbeta.info wrote:
> I'm reading the document "Secure DNS Deployment Guide" got from the URL a
> poster gave in the list.
>
> The document said:
>
> When a user types the URL www.example.com into a Web browser, the browser
> program contacts a type of resolver called
30 matches
Mail list logo
