Running an awk or perl script along with checkzones should be able
to do this site-specific check (and others you might find helpful)
quite easily.
On Dec 30, 2008, at 7:51 PM, Mark Andrews wrote:
In message
<7227c6c70812300937s7a4be464h16db91c6ead84...@mail.gmail.com>, "Mike
Zupan" write
As you suspect, this is a bad idea.
Those who cannot query the server cannot poison the cache
using the loopholes in the DNS protocol, i.e. put false data in
your nameserver for names like www.google.com, www.yahoo.com, etc.
There can be other impediments to poisoning the cache in this manner,
bu
server enough to get some confusing "hits" of matching port, ID, and
server of outstanding queries? Even if you
block recursive error returns, would an attack using valid
authoritative answers be equally harmful to the victim?
John
___
Disabling the cache makes sense if the purpose of your
nameserver is to provide your authoritative zone data and you
have a different nameserver to handle your site's general
DNS queries.
TTL settings are part of authoritative zone data, which is
completely independent of whether you disable cach
I am looking to set up DHCP in an environment that does not support
Dynamic DNS. There are many servers that will not be using DHCP in this
environment. Ideally, I would like to do collision detection both by
ping (which I know can be done) and reverse DNS lookup.
I know that ping collision
Hello All,
Sorry for the bad subject but i wasn't really sure how i could best
describe my circumstances. I would like to ask anyone out there if
something im proposing to implment is incorrect or just plain stupid.
Ok so the situation is that we have one set of developers who like to
call there
On Sat, Jan 24, 2009 at 4:06 AM, Barry Margolin wrote:
> Why don't you just use normal reverse DNS:
>
> zone for 1.1.1.in-addr.arpa
>
> 1 IN PTR metis.local.
> IN PTR bob-www-sol-l01.local.
I read there were problems having 2 PTR records for the same ip. I
know its in the RFC but thought MTA's
On Sat, Jan 24, 2009 at 9:21 PM, Matus UHLAR - fantomas
wrote:
>
> if metis.local is a CNAME, the PTR shouldn't point to it.
> --
could you please explain this. When i tried this host did not resolve
the cname. i.e a host 1.1.1.1 returned metis.local. it did not know
to resolve metis.local as b
On Sun, Jan 25, 2009 at 6:39 PM, Matus UHLAR - fantomas
wrote:
>> When i tried this host did not resolve
>> the cname. i.e a host 1.1.1.1 returned metis.local. it did not know
>> to resolve metis.local as bob
>
> the host 1.1.1.1 returned that 1.1.1.1.in-addr.arpa is a CNAME to
> metis.loc
I am looking to set up DHCP in an environment that does not support
Dynamic DNS. There are many servers that will not be using DHCP in
this environment. Ideally, I would like to do collision detection
both by ping (which I know can be done) and reverse DNS lookup.
I know that ping collision dete
detection is possible. How about reverse DNS
lookup?
Thanks for your thoughts!
John
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
tool, package, or
approach?
Thanks for your thoughts!
John
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
local clients could be unable to resolve names
of local servers, etc.
Any especially good or bad practices? Things that have worked well
or poorly? Right now, I'm leaning toward having the caching server
transfer key zones.
John Wobus
___
bind-use
e RFC process so they can easily look up what the rules are.
However, some folks do promote and make use of these sorts of
Internet improvements without bothering to do that.
John
On Feb 24, 2009, at 2:24 AM, David Ford wrote:
Here's a question. Are we incapable of dealing with things like
NS records must point to an A record. ns1 and ns2 .nsdomain.com do
not have A records defined for them according to the zone file.
-- John
On 10/1/2010 12:14 AM, rams wrote:
Hi,
I have configured records as follows in bind. When we start the bind
9.7, bind is not starting.
But bind is
Simply set the "file" option to the same name on the slave server.
On 10/2/2010 2:59 PM, Doug Barton wrote:
On 10/2/2010 11:16 AM, online-reg wrote:
Hi All: I’m building a new Bind 9.7.1-P2 slave server and am taking an
opportunity to review my conf files.
I have a number of zones on the prim
Doesn't support it? Since when does named not allow you to use the
same file name for more then one zone? I've been doing that for several
years.
-- John Wingenbach
On 10/2/2010 6:49 PM, Mark Andrews wrote:
In message<58f2f2eb90f24743a050575c87c7c...@nyoffice.enigmedia.lo
in a supported
fashion despite that it has been working this way. :)
-- John
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
, RFC 1035.
-- John
On 10/22/2010 8:39 AM, Stephane Bortzmeyer wrote:
On Fri, Oct 22, 2010 at 06:01:22PM +0530,
rams wrote
a message of 42 lines which said:
I have a record in BIND as follows:
mxdomain.com. 86400 IN MX 65536 gmail.com.
I don't think you tell us the truth. Because
y use a legal number
instead, or it simply leave out that record. RFCs merely say 65535
is the maximum allowed. Specifying what to do when reading a
zone file that exceeds this maximum is one of an infinite
number of possible input errors that RFCs have nothing specifi
I'm being told there is an RSA verification failure on the .US domain. I''m
getting details from the following; http://dnsviz.net/d/us/dnssec/ I have a
signed zone under us. How does this affect my domain and other signed zones
under .US?
___
I can guarantee that ns1.nameserver.net was not provided to this user by anyone
in a position to do so authoritatively.
On Dec 7, 2010, at 10:23 AM, Greg Whynott wrote:
> i'm wondering if domain.net and ns1.nameserver.net are defaults which haven't
> been configured yet. but he is a senior
If I have a Linux host with multiple IP's, is there a way to utilize the DIG
command such that the query appears like it's coming from different IP
addresses?
So If I have 10 virtual IP's, is there a way to control the source IP of the
query?
I've referenced the DIG man page and it doesn't app
It might not be your bug. It might be other sites.
As was said, bind can log info that would help
explain it.
Or if the number is rising continuously, you can capture a
bunch of dns queries with tcpdump or a similar program
and look over a sample of the rejected queries.
On Jan 18, 2011, at 9:
To add to the story, I added a rule to our DNS administration
system that we'll only allow hostnames that include
at least one alphabetic.
John
On Feb 4, 2011, at 11:26 AM, John Wobus wrote:
So 10.14.22.11 is a legal hostname, right?
We had a recent experience where our DNS administr
www.example.com just fine.
John Wobus
Cornell
On Jan 30, 2011, at 7:30 AM, p...@mail.nsbeta.info wrote:
From RFC 1123
One aspect of host name syntax is hereby changed: the
restriction on the first character is relaxed to allow either a
letter or a digit. Host software MUST support
ice that always resolves to something or other. We also have
an incentive to get rid of that app, tell others about its weaknesses,
etc.
John
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
ad balancers allow configuration of a server D to
be used only if C is down as well. Address C or D could be configured
to be 0.0.0.0 and configured with no test for "up-ness".
(Not that I'm completely happy with 0.0.0.0 or any other address that
local folks could conce
ven't
done much.
John Wobus
Cornell
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
How sure are we that 9.7.3 fixes CVE-2011-0414?
Because we are seeing behaviour that looks like CVE-2011-0414
on our 9.7.3 server...
Thanks,
John
---
John Hascall, j...@iastate.edu
Team Lead, NIADS (Network
is an IXFR and then boom no answering queries.
We did an emergency upgrade to 9.8 so we won't have any
more details about 9.7.3, sorry.
John
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
;assume" anything about subdomains: it's
just a convenience for abbreviating the
file.
If you need a consistent format for
some purpose, you could use the output
of named-compilezone.
John
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
On Mar 10, 2011, at 4:24 PM, Matt Rae wrote:
Thanks guys, sounds like a solution would be to transfer the zone
files outside of bind. I'll give some of the suggestions a try.
Matt
I can't help but be curious. What problem would be solved by
transferring the zone files outside of b
de two top-level PTR
domains for IPV6: one for full records, and the other for
subnet-wide wildcards.)
John
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
, the
pattern should shift, i.e., it wouldn't always be that this
one IP gets most of the load. If the clients are daemons
that stick to a server for months based upon a single
DNS lookup, then this time might be very long.
If you're dealing with typical web hits, such
he form whatever.com
match the * A record.
DNS's rules for wildcarding have been known to trip
up a lot of people, so look for a full explanation.
John
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
an A record in the zone file, but perhaps my
memory is playing tricks on me.
John W
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
$tail) =
map { join '', map { sprintf '%04s',$_; } split /:/,$_; }
split /::/, $addr . '::', 3;
my $hex32 = '0' x 32;
substr( $hex32, 0, length($head) ) = $head;
substr( $hex32, 32, -length($tail) ) = $tail;
On 4/18/11 2:17 PM, hostmas...@g-net.be wrote:
>
> and when I configure my zone like this in named.conf.local :
>
> zone "zone.be" {
> type master;
> file "/dnszones/db.zone.be.signed";
> auto-dnssec maintain;
> key-directory "/dnskeys/";
> sig-validity-in
>From my signed domain when I query www.isc.org (w/ +dnssec) I get the ad flag
>as expected. I don't see that flag when I query whitehouse.gov (w/ +dnssec)
>and I know that zone is signed.
Is anyone else seeing this behavior? Also, is there a link that addresses
troubleshooting or diagnosing
s which expire in the next 24 hours" ${EMAIL}
==
Regards
John
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
ren't happening long before
the expiration, and if the zone is pretty static (e.g. a single
www.example.com address), you don't have to jump very fast to
address things if the expire interval is weeks. If folks are
depending upon records that are dynamic, you want to respond
pretty quick
everything else to go to 10.10.10.5
*.project A 10.10.10.5
Is this possible?
Thanks,
John
--
John Kennedy
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
That worked. Thanks guys.
John
On Tue, May 24, 2011 at 10:25, Matus UHLAR - fantomas wrote:
> On 24.05.11 09:55, John Kennedy wrote:
> > I tried to google this but could not hit the right keywords (been a long
> > week)...
> >
> > I have 3 hosts on a d
Has the newsgroup gateway been switched off or is it just broken? The
most recent post for this newsgroup in Google groups is 15-Feb-2011.
--
John Marshall
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo
real-world problem cases?
John Wobus
Cornell University
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
ware of and I'm wrong.
John
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
, etc. If your spam filter retrieves
its data via dns records, that could push up your
query rate and cache size.
John Wobus
On Jun 15, 2011, at 5:52 PM, Mark K. Pettit wrote:
One of the things that got us is we didn't know BIND 8 automatically
created delegation records in a zon
On 7/28/11 9:43 AM, Stephane Bortzmeyer wrote:
> Did you try to obtain an independent confirmation from a reliable
> source? (I do not know this product, but I distrust private black
> boxes.) I recommend:
NeXpose is a good vulnerability auditor, it is a product by Rapid7 the
owners of metasploit.
My company (as many) run Microsoft Active Directory internally and we use BIND
for our Internet DNS presence. We have had our domain singed for some time.
Now I've been tasked to look into Signing our AD implementation. MS has their
own version of DNSSEC for their DNS but my question is would
--- On Tue, 8/9/11, Chris Buxton wrote:
> From: Chris Buxton
> Subject: Re: DNSSEC and MS AD
> To: "John Williams"
> Cc: bind-users@lists.isc.org
> Date: Tuesday, August 9, 2011, 5:00 PM
> On Aug 9, 2011, at 9:13 AM, John
> Williams wrote:
>
> > M
On Sep 14, 2011, at 4:35 PM, Ronald F. Guilmette wrote:
> Is there a rule that says how a resolver should behave in cases where
> there is both an A record and also a CNAME record for the same FQDN?
> Which one should take precedence, the A or the CNAME?
RFC 1034, Section 3.6.2: "If a CNAME RR
Is it possible that your DNS performance issue isn't a
cache issue? For example, does your system need to
invoke bind with -4?
John
On Sep 21, 2011, at 5:00 PM, TMK wrote:
I have couple of questions.
bind cache memory limit is 4GB. can I increase it. or this is hard-
coded limit.
in, building
a kluge to work around such a thing wouldn't be a good strategy.
John
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
clamoring for?
Yes.
I'm a BIND user who is clamoring to keep such a feature out of BIND.
John
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
htt
create a
subsequent, more obscure crash. I assume the fact
that bad data triggered an abort is due to a bug.
That said, in this case they might be changing this
specific abort to a warning, fixing up what state
they can and crossing their fingers.
John
On Nov 16, 2011, at 7:35 AM, David Ford
ce to
confirm that some site knows their crash happened that way.
John
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo
A record?
You can't.
nameservice SRV record? :)
John
P.S. I'm fully aware that no DNS record is of any use if
clients don't look it up.
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this l
ans of doing lookups independent of your
client's dns-related behavior and configuration. It's the one
widely-distributed tool with that property. Such a tool
is invaluable when trying to determine or confirm specific server
behavior.
John Wobus
Cornell U
__
also gets an IP of its own.
With the latter solution, depending on the situation, you might
figure out some short cuts. But TSIG looks awfully attractive
in comparison.
The book DNS & BIND Cookbook addresses the issue.
John Wobus
Cornell U
___
Pl
x27;d have to know what you're trying to accomplish.
John Wobus
Cornell U
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
in their customer interface or store in their
zone-file-equivalent is arbitrary.
Makes DNSSEC interesting.
It's always helpful to be able to tell your customer "yes, we gave
you a CNAME, just like you asked for. We do it even if our competitors
say no!"
John Wobus
P.S. Hm, I wonde
pace. This also
gives
you some of the risk advantages you'd get from running separate
instances.
John Wobus
Cornell University
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-user
line includes the concept of 'unreachable'? I
seem to recall
the definition 'delegation target that answers without aa'.
However, given the '(network unreachable)' comment, I agree with your
diagnosis.
John Wobus
Cornell
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
different client IPs,
Bind "views" configured on the server could cause such a different.
John Wobus
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
;t look up and use such DNS records.
_http._tcp.mydomain.com. SRV 1 1 80 mydomain.myshopify.com.
_http._tcp.www.mydomain.com. SRV 1 1 80 mydomain.myshopify.com.
John Wobus
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubsc
ay to implement
policy, e.g.
to make it less likely to reach known phishing sites.
John Wobus
Cornell
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
Hi guys,
I've looked hard but can't find any reference to using wildcards inside
an include directive. Does this feature exist in 9?
I've found this setup quite useful for other services like Apache etc.
What I want to do is be able to configure multiple zones by something
like:
include "/etc/
Hi Mark,
On Tue, Jan 24, 2012 at 07:48:25PM +1100, Mark Andrews wrote:
> Named supports adding and removing zones via rndc.
>
> rndc addzone
> rndc delzone
Thanks for the pointer. I didn't know about the rndc commands (the man
pages say nothing). However, looking at the onl
Hi SM,
On Tue, Jan 24, 2012 at 12:55:25AM -0800, SM wrote:
> At 00:29 24-01-2012, Alfie John wrote:
> >I've looked hard but can't find any reference to using wildcards inside
> >an include directive. Does this feature exist in 9?
>
> http://ftp.isc.org/isc/bind9/c
Hi Jan-Piet,
On Tue, Jan 24, 2012 at 09:58:49AM +0100, Jan-Piet Mens wrote:
> What you could do though is to create the content of the file you're
> including, which ought to solve your problem.
>
> cd /var/path
> ls > /etc/bind/sites-enabled.include
>
> And then in named.conf [
You "copied over the zone files". However, the bind 9 server is
responding with NXDOMAIN. It appears to me that the server does not
believe it is authoritative for the zone. Verify that the server indeed
believes it is (look at the logs on startup). Take a look at your named
configuration t
purged, I would have to run addzone again?
>
> No. Zones are added to / removed from a .nzf "cache" which is created
> dynamically by named. I've got a tiny writeup at [1].
Cool. Thanks for the link.
Alfie
--
Alfie John
http://h4c.kr
__
e, both servers would be listed in the authoritative data as
well as the delegation records
within the delegating zone, and if one server were down, the other
server could be found
and queried.
John
On Mar 20, 2009, at 7:51 AM, Dennis J. wrote:
Hi,
This morning the slave in our nameserver setu
On Mar 25, 2009, at 5:20 AM, Ram Akuka wrote:
Is there’s any way I can encrypt the zone files in the slave server,
that way no one can have access to the actual zone data beside the
master server.
(if for example someone will hack to the slave DNS he won’t have the
zones data).
No.
__
ur design creativity and your self-discipline in always adding a
record for each zone are your only limitations.
If you wish to get really fancy, you could script the rebuilding of
your named.conf file to do so using data
gathered with this dig command.
John
On Apr 3, 2009, at 9:15 AM, Sandy M
On Apr 7, 2009, at 5:36 PM, Michelle Konzack wrote:
Hmmm, my own DNS is working, but HOW can I test a foreign DNS stup?
If your own DNS works at your own site, you can see what the rest of the
world is getting by any of the following:
-To do a quick check to see that the world is getting the ri
. Some simple tests would
answer the questions for the pieces under your control, but
if you need to serve clients across the Internet, you might be taking
your chances regarding the world's caching nameservers.
Also, depending upon specfics, it may be that you want to use a
short, non-zero TTL.
On Apr 20, 2009, at 2:55 AM, Ken Lai wrote:
let's take an example. my DNS server called SrvA, the outer DNS server
called SrvB.
normally, the client sent the query to SrvA, and SrvA forwards it to
SrvB. and SrvA return a result which came from SrvB to the client.
unfortunately the SrvB sometime
ht
not be able to do that).
If your first server can't talk to the other (delegated zone's)
NS's (say because of a firewall issue) you can get something
that matches what you seem to be getting.
John
---
Joh
ne files on the same name server.
Thanks much for the assistance,
jc
___
JOHN C. COLE | Technical Product Management Specialist
DIGITAL REEF
85 Swanson Road | Boxborough, MA 01719 | 978-893-1023
www.digitalreefinc.com<h
;t want to do the delegation (like I'm now doing
for the other zone!)
John
-Original Message-
From: Matthew Pounsett [mailto:m...@conundrum.com]
Sent: Wednesday, May 20, 2009 7:58 PM
To: John Cole
Cc: bind-users@lists.isc.org
Subject: Re: Delegation of DHCP blocks within same serv
As per the other answers I've seen posted,
such a delay is often caused by notifies not reaching the
slave from the master. In such a case, you would not
expect a delay of a fixed time, but rather delays over a
limited range of times, e.g. up to 15 minutes.
A notify is a kind of DNS query, norma
ed-keys section of the configuration.
I'd be glad to be referred to any troubleshooting tips.
Thank you.
--
John Marshall
pgpNYJ8zqRzOX.pgp
Description: PGP signature
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/m
On Sun, 16 Aug 2009, 23:39 -0400, Paul Wouters wrote:
> On Mon, 17 Aug 2009, John Marshall wrote:
>
> >named[204]: no valid RRSIG resolving 'cvsup.au.freebsd.org/A/IN':
> >123.136.33.242#53
>
> >What should I do to troubleshoot this if it happens again?
>
The problem recurred. This time I decided to add the .org key to my
trusted-keys and see what would happen. I added the key, reloaded the
configuration (rndc reconfig), and queries are resolving properly again.
--
John Marshall
pgppUbJIgQaVZ.pgp
Description: PGP signature
.
I:the test case caused exception 6
R:UNRESOLVED
What does this test for, & what is the issue here?
Thanks.
-John
--
John Center
Villanova University
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
te of stats by accident, but can't seem to
find stats from other root servers. Anyone know if there are other stats
available?
Thanks,
John.
--
---
John Horne, University of Plymouth, UK Tel: +44 (0)1752 587287
it might be useful to set up a separate nameserver
dedicated to the
demanding app.)
The age of the queries can also be revealing.
John
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
On Sat, 2009-08-29 at 13:24 +1000, Mark Andrews wrote:
> In message , "Bill Larson" writes:
> > John Horne said:
> >
> > > Hello,
> > >
> > > I noticed one of the root servers stats
> > > ( http://stats.l.root-servers.org/cgi-bi
LD unless it had only one
NS and that was changed).
John.
--
--
John Horne, University of Plymouth, UK
Tel: +44 (0)1752 587287Fax: +44 (0)1752 587001
___
bind-users mailing list
bind-users@lists.isc.
y (cache) 'ATP.villanova.edu/A/IN' denied
Is this a known problem? It's an issue for us because we restrict DNS
queries to particular interfaces. If it isn't a known bug, I'd be glad
to help troubleshoot this problem.
Thanks.
-John
--
John Center
Villanova Uni
Of course, right after hitting enter on this message, I came across a
message from last year about localhost mapping to all interfaces, not
just 127.0.0.1. I created a "loopback" acl & used it instead that
worked. Sorry for the noise.
-John
On 09/09/2009 03:04 P
On Wed, 2009-09-23 at 15:17 -0700, Linda W wrote:
>
> In my main config it's in the section:
> root "." IN {
> type hint;
> file "root.hint";
> };
>
I don't have the BIND book to hand, but that should be:
zone "." I
How can observer the query count? Is there a command or table or
something or is it just how many hits the systems gets on port 53
identified from some form of logging software?
BIND logs hit statistics periodically to syslog, and you can use "rndc
stats" to append statistics immediately to a fi
.uk
internet address = 141.163.177.1
www.plymouth.ac.uk canonical name = extranet.plymouth.ac.uk.
Name: extranet.plymouth.ac.uk
Address: 141.163.163.185
>
==
How can I see the TTL value using nslookup?
Thanks,
John.
On Thu, 2009-10-15 at 10:47 +0200, Adam Tkac wrote:
> On Thu, Oct 15, 2009 at 09:06:56AM +0100, John Horne wrote:
> >
> > How can I see the TTL value using nslookup?
>
> I'm not sure how force nslookup to show TTL but the `dig` utility is
> far more better tool for g
ot;.)
Don't get me wrong here - I've been using dig for years, and only use
nslookup if I have to on my Windows laptop at work, on the Linux/UNIX
systems dig is only used. If nslookup was no longer present in the BIND
distribution then that doesn't bother me at all.
John.
--
Jo
Hello,
Using BIND 9.5.1, is it possible to configure split view logging - that
is, a separate logging channel/category for different views? I'm trying
to separate out the queries of our local clients from the external ones.
Thanks,
John.
--
John Horne, University of Plymouth, UK
Tel
On Thu, 2009-11-19 at 14:55 -0800, Gregory Hicks wrote:
> > From: Chris Buxton
> > Date: Tue, 17 Nov 2009 08:16:18 -0800
> >
> > On Nov 17, 2009, at 7:02 AM, John Horne wrote:
> >
> > > Hello,
> > >
> > > Using BIND 9.5.1, is it po
401 - 500 of 823 matches
Mail list logo
