PPA for Raspbian distros

Greetings. Per chance, is there a repo of pre-built bind code for the Raspberry Pi platform? I tried using the PPA specified at https://launchpad.net/~isc/+archive/ubuntu/bind but it didn't support the release on my DNS server host (buster). I received the error Ign:2 https://ppa.launchpadcon

Re: latency and response time

Personally, I would consider response time to be the duration between the arrival of a request at the DNS server and when the server spits the response for the request out its local network interface, and latency to be the additional time the request and response spend traversing the network bet

How to selectively skip DNSSEC validation?

Greetings, all. I'm having an odd problem, and I can't seem to figure out how to get Bind to behave the way I need it to. I have a computer with a caching-only Bind instance (version 9.11.24-RedHat-9.11.24-2.fc32), which is used both to access the regular Internet and to access the Amateur Rad

How does query denial actually work?

Greetings, all. I was curious about one of the features in BIND. Per the Best Practices, my on-site primary nameserver for my public domains (the secondaries being with a large public DNS provider) is configured to only allow queries from within my LAN and transfers in the LAN and to the design

Re: SRV Record Server Availability

Isn't this sort of dynamic functionality (real-time presence or absence of SRV records) what mDNS and the avahi daemon are for? From: bind-users on behalf of Matus UHLAR - fantomas Sent: Wednesday, January 6, 2021 8:51 AM To: bind-users@lists.isc.org Su

Re: Millions of './ANY/IN' queries denied

So why isn't there a way to tell BIND not to respond to queries for which it clearly is not authoritative (such as these attack vectors)? Since no legitimate resolver would be asking a non-authoritative server for information, why should his (or my) public BIND server respond to these even with

Re: Millions of './ANY/IN' queries denied

_ From: bind-users on behalf of Reindl Harald Sent: Thursday, December 16, 2021 8:14 AM To: bind-users@lists.isc.org Subject: Re: Millions of './ANY/IN' queries denied Am 16.12.21 um 14:04 schrieb Andrew P.: > So you're claiming that legitimate resolvers would st

Re: Millions of './ANY/IN' queries denied

Reindl Harald writes: Am 16.12.21 um 14:22 schrieb Andrew P.: >> You don't understand what kind of blacklist I want; I want to blacklist the >> domain name >> being asked for, so I don't answer for it. I'm not looking to blacklist >> forged IP addres

Re: Millions of './ANY/IN' queries denied

Reindl Harald writes: >Am 16.12.21 um 14:56 schrieb Andrew P.: >> Reindl Harald writes: >> Am 16.12.21 um 14:22 schrieb Andrew P.: >>>> You don't understand what kind of blacklist I want; I want to blacklist >>>> the domain name >>>> being

Why did my DNS bill go up?

Greetings, all. I had a surprise on the bill from my secondary DNS provider after I turned on DNSSEC. The number of record queries on my domains increased by a factor of about 5, compared to the number of record queries when I didn't have DNSSEC. Is this normal for DNSSEC? It's been a consisten