On Thu, 11 Oct 2018 15:39:55 -0400
Barry Margolin wrote:
> In article ,
> Dennis Clarke wrote:
>
> > On 10/11/2018 03:21 PM, Leonardo Rodrigues wrote:
> > > Em 11/10/18 16:13, Barry Margolin escreveu:
> > >>
> > >> If you accidentally, or someone else intentionally, create a
> > >> link to
we started using the dns firewall part of it and they actually
really liked it. any ideas for domain blacklisting? via some sort of
feed etc? what is everyone doing for that sort of thing?
thanks
-N6Ghost
___
Please visit https://lists.isc.org/mailman/lis
On Thu, 25 Oct 2018 15:57:48 -0600
Grant Taylor via bind-users wrote:
> On 10/25/18 2:34 PM, N6Ghost wrote:
> > I want to move a core namespace to the load balancer but i want
> > them to let me assign them a new zone thats internally
> > authoritative and use it as the LB d
On Thu, 25 Oct 2018 15:57:48 -0600
Grant Taylor via bind-users wrote:
> On 10/25/18 2:34 PM, N6Ghost wrote:
> > I want to move a core namespace to the load balancer but i want
> > them to let me assign them a new zone thats internally
> > authoritative and use it as the LB d
On Fri, 26 Oct 2018 09:50:31 -0600
Grant Taylor via bind-users wrote:
> On 10/26/2018 08:52 AM, Kevin Darcy wrote:
> > My basic rule of thumb is: use forwarding when connectivity
> > constraints require it. Those constraints may be architectural,
> > e.g. a multi-tiered, multi-layer network for s
On Fri, 26 Oct 2018 09:46:39 -0600
Grant Taylor via bind-users wrote:
> On 10/26/2018 01:08 AM, N6Ghost wrote:
> > maybe its just old habits,
>
> Fair enough. I know that I have plenty of my own old (¿bad?) habits
> too.
>
> > i think its a bad idea to build your
On Fri, 26 Oct 2018 10:40:40 -0400
Bob Harold wrote:
> On Thu, Oct 25, 2018 at 4:34 PM N6Ghost wrote:
>
> > Hi All,
> >
> > have two questions first, I am not a huge fan of using forwarding
> > zones and our "load balancing" team, has there zone dele
uthoritative zone. so, building critical
name spaces with it should be avoid unless you have to. it not
something you plan upfront with. thats just silly.
>
> On Fri, Oct 26, 2018 at 10:41 AM Bob Harold
> wrote:
>
> >
> > On Thu, Oct 25, 2018 at 4:34 PM N6Ghost wro
On Fri, 26 Oct 2018 17:37:47 +
Joe Dahlquist wrote:
> N6Ghost,
>
> Re: DNS Firewall options on bind, a shameless plug for Threatstop.com
> and the first you should investigate.
>
> Other sources of RPZ with quality data you can look at: Farsight,
> SURBL, Spamhau
iews are great for splitting IP or fwd zones between internal hosts
and ext hosts. but you still need to own the zones.
i would say have a conversation with the ISP about the reverse zone, and ask
specifically how its setup and why. and if you own the IP space or not and
what the dele
ide AND
> >>to call ISP to change it, something is broken, or at least
> >>inefficiently implemented.
> >
> >I don't know if "broken" is how I'd describe this. I think the OP is
> >still in the early set up phase. Thus why it's normal that
re forcing
you to secondary it ask they why. thats very hacky if there is no reason to
do it.
-N6Ghost
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
> >> addresses it is unlikely to happen
> >
> > Agreed.
> >
> > But I will still ask the ISP to delegate the IPs to me as that's what I
> > prefer
>
> nobody out there will delegate single /255 ip's
> ____
On Monday, December 30, 2019 1:15:48 PM PST Grant Taylor via bind-users wrote:
> On 12/30/19 1:42 PM, N6Ghost wrote:
> > delegations are always by block... ie /20, /24, /25 etc
>
> I feel like there is term conflation.
>
> To me:
> · Delegations are DNS and are
On 12/30/19 1:13 PM, Grant Taylor via bind-users wrote:
On 12/30/19 1:34 PM, N6Ghost wrote:
1: is the IP space delegated or not?
What is delegated IP space in this context?
Are you referring to a separate prefix that is routed to the customer?
This ref to the IP space that you OWN. In
On 12/30/19 7:26 PM, Grant Taylor via bind-users wrote:
On 12/30/19 6:22 PM, N6Ghost wrote:
but generally you acquire IP space in blocks not single address's.
and those blocks are what you use to build your internal and external
reverse zone files.
Agreed.
But you wouldn't be
16 matches
Mail list logo
