Dnf is not available. Therefore using yum
Linux Red Hat 7.9 virtual machine on VMware, has internet connectivity
Set up local repository in
/etc/yum.repos.d/download.copr.fedorainfracloud.org_results_isc_bind_epel-8-_.repo:
[copr:copr.fedorainfracloud.org:isc:bind]
name=Copr repo for bind owned
On 28/04/2022 16:52, DeCaro, James John (Jim) CIV DISA FE (USA) via
bind-users wrote:
Dnf is not available. Therefore using yum
Linux Red Hat 7.9 virtual machine on VMware, has internet connectivity
Set up local repository in
/etc/yum.repos.d/download.copr.fedorainfracloud.org_results_isc_bi
OK I tried that and got the same results but I will try again.
Thank you
V/R
Jim DeCaro
DISA
Systems Administrator
Windows and Unix/Linux Server Operations
FE222/DoDNet Service Section
Defense Enclave Services Directorate
Defense Information Systems Agency
☎ 301-225-8180
☎ 301-375-8180
james.j.
On 4/27/22 9:19 AM, Petr Špaček wrote:
On 27. 04. 22 16:04, Matt Corallo wrote:
I run a number of BIND9 (9.16-27-1~deb11u1 - Debian Stable) secondaries with some large zones (10s
of DNSSEC-signed zones with ~100k records, not counting signatures, with a smattering of other
zones). Somewhat to
On 28/04/2022 16:52, DeCaro, James John (Jim) CIV DISA FE (USA) via
bind-users wrote:
Dnf is not available. Therefore using yum
Linux Red Hat 7.9 virtual machine on VMware, has internet connectivity
Set up local repository in
/etc/yum.repos.d/download.copr.fedorainfracloud.org_results_isc_bind
From top of my head - try setting the max-cache-size to infinite. The internal
views might still pre-allocate some stuff based on available memory.
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
My working hours and your working hours may be different. Please do not feel
obligated to reply outs
Hmm, they all have max-cache-size set to 8M (see config snippets in OP) but still show the divergent
memory usage.
That said, I tried bumping one to 1024M on one of the smaller hosts and usage increased from ~270MB
to ~437MB.
Matt
On 4/28/22 8:44 AM, Ondřej Surý wrote:
From top of my head
And then I restarted it with the original setting and it jumped right up to ~300M, a bit higher than
it was before (though before it had been running for a bit). In any case it does look like the
max-cache-size setting drives memory usage up a little bit, but there's quite some noise.
FWIW, Hap
Gah, I'm a blind fool. The original and post-config-restoration number quoted here are correct, the
1024M stat was looking at the wrong process. Apologies about that, it appears the max-cache-size
knob does *not* change the total memory usage of the process after a restart, it is ~300M on the
ho
# yum-config-manager --add-repo
https://download.copr.fedorainfracloud.org/results/isc/bind/epel-7-$basearch/
--Results in the file:
/etc/yum.repos.d/download.copr.fedorainfracloud.org_results_isc_bind_epel-7-_.repo
Content of the repo file is:
[download.copr.fedorainfracloud.org_results_isc
Pull the memory stats from the statschannel (json or xml). Also make sure you
run 9.18 with jemalloc (you can use jemalloc with 9.16, but it needs to be
linked explicitly with LDFLAGS or pre-loaded).
Ondřej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different.
On 28/04/2022 19:38, DeCaro, James John (Jim) CIV DISA FE (USA) via
bind-users wrote:
# yum-config-manager --add-repo
https://download.copr.fedorainfracloud.org/results/isc/bind/epel-7-$basearch/
Sigh. What do they teach at system administration school these days?
You see the variable calle
I tried it both ways and got the same result. The $basearch variable will
parse the directory. But just in case I modified the baseurl to -7-x86_64/
which is the directory . Made no difference in the result. Modified the repo
file as follows:
[Copr:copr.fedorainfracloud.org:isc:bind]
Modified the repo file to mimic the repo data provided from the isc web site
verbatim:
[copr:copr.fedorainfracloud.org:isc:bind]
name=Copr repo for bind owned by isc
baseurl=https://download.copr.fedorainfracloud.org/results/isc/bind/epel-7-$basearch/
type=rpm-md
skip_if_unavailable=True
gpgcheck
> Dnf is not available. Therefore using yum
>
> Linux Red Hat 7.9 virtual machine on VMware, has internet connectivity
>
> Set up local repository in
> /etc/yum.repos.d/download.copr.fedorainfracloud.org_results_isc_bind_epel-8-_.repo:
Is something (e.g. policy) forcing you to set this reposito
I am actually thinking the similar thing that the COPR is being filtered from
where you are. Try gnutls-cli to connect to the site whether it gives you the
correct cert and everything.
Ondrej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not f
Hi,
I am configuring an RPZ for a validating resolver. I read in the BIND
9.18.2 ARM that there is a boolean option for RPZ zones called:
break-dnssec.
The ARM states:
...In that case, RPZ actions are applied regardless of DNSSEC.
The name of the clause option reflects the fact that
break-dnssec is about if the client could detect the re-write or not using
DNSSEC. If the client has DO=1 in the request and the normal response is
signed then rewrites can be detected. If break-dnssec is ’no’ the rewrite will
be prevented. If break-dnssec is ‘yes’ then the rewrite will occur.
18 matches
Mail list logo
