Eugen Konkov yandex.ru> writes:
> ...
> So in my vlan I have two DHCP servers. One is mine and
> second is on that router. Some users get wrong IPs from that router.
> ...
> Or s there any other method to prevent such ilegal DHCP servers on LAN?
http://www.tcpipguide.com/free/t_DHCPSecurityIs
Le Sun, 23 Dec 2012 14:17:47 +0200,
Eugen Konkov a écrit :
Hello,
> Or s there any other method to prevent such ilegal DHCP servers on
> LAN?
At work we use "dhcp_probe"
http://www.net.princeton.edu/software/dhcp_probe/
It works quite fine, when someone plug a dhcp server it is detected and
w
On 25 October 2012 18:55, Damien Fleuriot wrote:
> On 25 October 2012 18:33, Warren Block wrote:
>> On Thu, 25 Oct 2012, Damien Fleuriot wrote:
>>
>>> Anyone else experienced this problem today ?
>>>
>>> We slave the root zone and have received "signature expired" errors.
>>
>>
>> Found this:
>>
On 25 October 2012 18:33, Warren Block wrote:
> On Thu, 25 Oct 2012, Damien Fleuriot wrote:
>
>> Anyone else experienced this problem today ?
>>
>> We slave the root zone and have received "signature expired" errors.
>
>
> Found this:
>
> https://lists.dns-oarc.net/pipermail/dns-operations/2011-Ma
On Thu, 25 Oct 2012, Damien Fleuriot wrote:
Anyone else experienced this problem today ?
We slave the root zone and have received "signature expired" errors.
Found this:
https://lists.dns-oarc.net/pipermail/dns-operations/2011-March/007116.html
which leads to this:
http://in-addr-transitio
Hello, thanks for replying.
Regarding building BIND, are you sure the setting should go in
make.conf and not src.conf - here is the relevant text from the
src.conf man page:
"WITHOUT_BIND
Setting this variable will prevent any part of BIND from being
built. When set, it
On 12/7/11 8:15 PM, Kernel Panic wrote:
> Apologies if this is not the appropriate list but I can't seem to find
> one pertaining to the installation and configuration of BIND. I posted
> the following message on the FreeBSD forums a few weeks back but have
> had no replies, so I thought I'd try he
On 23/11/2011 14:01, Jerry wrote:
> On Wed, 23 Nov 2011 13:18:45 +
> Matthew Seaman articulated:
>
>> I've been using the attached patch with the dns/bind98 port and
>> openssl-1.0.x from ports for months. This disables using the GOST
>> cipher plugins -- which is no big deal as far as I'm co
On Wed, 23 Nov 2011 13:18:45 +
Matthew Seaman articulated:
> I've been using the attached patch with the dns/bind98 port and
> openssl-1.0.x from ports for months. This disables using the GOST
> cipher plugins -- which is no big deal as far as I'm concerned. GOST
> ciphers are only supplied
On Wed, November 23, 2011 08:18, Matthew Seaman wrote:
> I've been using the attached patch with the dns/bind98 port and
> openssl-1.0.x from ports for months. This disables using the GOST
> cipher plugins -- which is no big deal as far as I'm concerned. GOST
> ciphers are only supplied as plugi
On 23/11/2011 12:53, Howard Leadmon wrote:
> I just ran through on one of my older FreeBSD servers, and updated from
> BIND 9.8.1 to 9.8.1-P1 to get the security patches for BIND online, and
> after doing this bind crashes.
>
> I am seeing:
>
>
> Nov 23 06:35:19 named[24537]: starting BIND 9.8
Krad,
Thank you for the tip. I've changed the "." to the correct value.
Matthew
On 1 October 2010 21:16, CyberLeo Kitsana wrote:
On 10/01/2010 12:52 PM, Matthew wrote:
I would be grateful for any pointers on how to resolve this. I suspect
the error message may not be exactly descri
CyberLeo Kitsana,
Thank you so much for the history and evolution on Bind expected
directory structures. It enabled me to jump through that tough spot.
Thanks again,
Matthew
On 10/01/2010 12:52 PM, Matthew wrote:
I would be grateful for any pointers on how to resolve this. I suspect
the
On 1 October 2010 21:16, CyberLeo Kitsana wrote:
> On 10/01/2010 12:52 PM, Matthew wrote:
> > I would be grateful for any pointers on how to resolve this. I suspect
> > the error message may not be exactly descriptive of whats happening.
>
> Kinda.
>
> Here's a few points to keep in mind when wo
On 10/01/2010 12:52 PM, Matthew wrote:
> I would be grateful for any pointers on how to resolve this. I suspect
> the error message may not be exactly descriptive of whats happening.
Kinda.
Here's a few points to keep in mind when working with bind in FreeBSD:
* By default, named runs in a chro
In freebsd-questions Digest, Vol 317, Issue 13, Message: 14
On Sat, 3 Jul 2010 14:20:01 -0700 Chris Maness wrote:
> Ok, it is working for the local net now, but it is no longer working
> as an authoritative server for my zones.
>
> Here is the current config:
>
> // $FreeBSD: src/etc/name
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 03/07/2010 22:29:46, Chris Maness wrote:
> Ahhh, I see I need to add:
>
> allow-query { any; };
>
> to my authoritative zones.
>
> Thanks it all works now.
Great.
> p.s. So was this a change in the default behavior of BIND over the
> years? B
Ahhh, I see I need to add:
allow-query { any; };
to my authoritative zones.
Thanks it all works now.
Chris Maness
p.s. So was this a change in the default behavior of BIND over the
years? Because I don't think my named.conf has been changed, and this
used to work for any hosts.
Ok, it is working for the local net now, but it is no longer working
as an authoritative server for my zones.
Here is the current config:
// $FreeBSD: src/etc/namedb/named.conf,v 1.26.2.2.2.1 2008/11/25
02:59:29 kensmith Exp $
//
// Refer to the named.conf(5) and named(8) man pages, and the docum
On Sat, Jul 3, 2010 at 12:52 PM, Matthew Seaman
wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On 03/07/2010 20:28:27, Chris Maness wrote:
>> Including the line:
>>
>> acl public-nets { 127.0.0.1; ::1; }
> ^
> You need a semi-colon here __|
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 03/07/2010 20:28:27, Chris Maness wrote:
> Including the line:
>
> acl public-nets { 127.0.0.1; ::1; }
^
You need a semi-colon here __|
> for testing resulted in a failure to launch with the following e
On Thu, Jul 1, 2010 at 7:33 AM, Matthew Seaman
wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On 01/07/2010 15:05:37, Chris Maness wrote:
>> Can a sub block of IP address space be used, and if so, what is the
>> wild card?
>
> Yes. You can use lists of IPs or address-and-mask in BIN
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 01/07/2010 15:05:37, Chris Maness wrote:
> Can a sub block of IP address space be used, and if so, what is the
> wild card?
Yes. You can use lists of IPs or address-and-mask in BIND ACLs. See:
http://www.isc.org/files/arm96.html#address_match_li
Can a sub block of IP address space be used, and if so, what is the wild card?
Chris
On Wed, Jun 30, 2010 at 7:34 AM, Chris Maness wrote:
> On Wed, Jun 30, 2010 at 1:49 AM, krad wrote:
>>
>>
>> On 29 June 2010 07:20, Chris Maness wrote:
>>>
>>> My named server used to resolve for external host
On 30 June 2010 15:34, Chris Maness wrote:
> On Wed, Jun 30, 2010 at 1:49 AM, krad wrote:
> >
> >
> > On 29 June 2010 07:20, Chris Maness wrote:
> >>
> >> My named server used to resolve for external hosts. Recently I have
> >> noticed that it no longer resolves names for resolvers not on the
On Wed, Jun 30, 2010 at 1:49 AM, krad wrote:
>
>
> On 29 June 2010 07:20, Chris Maness wrote:
>>
>> My named server used to resolve for external hosts. Recently I have
>> noticed that it no longer resolves names for resolvers not on the
>> local host. It works just fine for dig on the dns serve
On 29 June 2010 07:20, Chris Maness wrote:
> My named server used to resolve for external hosts. Recently I have
> noticed that it no longer resolves names for resolvers not on the
> local host. It works just fine for dig on the dns server itself. It
> also works for domains that it has author
uhm here's my named.conf (it's a bit lightwight) but it works...
// $FreeBSD: src/etc/namedb/named.conf,v 1.26.2.2.4.1 2009/04/15 03:14:26
> kensmith Exp $
> options {
> directory"/etc/namedb/namedwritable"; //made dir writable to bind
> user
> pid-file"/var/run/named/pid";
> d
On Wed, 28 Oct 2009 15:49:15 -0700 (PDT), Aflatoon Aflatooni
wrote:
> Hi,
> I have a Freebsd 7.2 installation and using Sendmail for the SMTP
> service. This server has two public interfaces and different IP
> addresses.
>
> I need to have sendmail configured so that the outbound emails are
> sen
On Mon, Oct 26, 2009 at 6:42 PM, Steve Bertrand wrote:
> Ray Still wrote:
>> Ok,
>> tell me just how nuts this idea is.
>
> imho, your thought-process is not nuts. I can see what you are trying to
> do, so kudos given for trying to work it out with what you have.
>
>> To recap, two pipes, one dest
Ray Still wrote:
> Ok,
> tell me just how nuts this idea is.
In addition to my other post:
I like your mentality of trying to do whatever you can to create redundancy.
I've often tried to think of ways to use DNS to make things redundant
and resilient.
Keep up trying new ways to stretch things
Ray Still wrote:
> Ok,
> tell me just how nuts this idea is.
imho, your thought-process is not nuts. I can see what you are trying to
do, so kudos given for trying to work it out with what you have.
> To recap, two pipes, one destination.
> I set up second DNS server.
> ns1.example.com at 70.65.
How will the client side resolvers know what dns server to use to resolve
example.com?
- Original Message -
From: Gary Gatten
To: 'rstil...@gmail.com' ; 'freebsd-questions@freebsd.org'
Sent: Mon Oct 26 18:24:38 2009
Subject: Re: bind configuration issues
Yes, yo
Yes, your missing something. I don't think your solution will work very well.
- Original Message -
From: owner-freebsd-questi...@freebsd.org
To: freebsd-questions@freebsd.org
Sent: Mon Oct 26 18:13:47 2009
Subject: Re: bind configuration issues
Ok,
tell me just how nuts this id
-Original Message-
> From: owner-freebsd-questi...@freebsd.org
> [mailto:owner-freebsd-questi...@freebsd.org] On Behalf Of Gary Gatten
> Sent: Monday, October 26, 2009 2:07 PM
> To: Ray Still; freebsd-questions@freebsd.org
> Subject: RE: bind configuration issues
>
> I'
r-freebsd-questi...@freebsd.org] On Behalf Of Gary Gatten
Sent: Monday, October 26, 2009 2:07 PM
To: Ray Still; freebsd-questions@freebsd.org
Subject: RE: bind configuration issues
I'm not intimate with bind, or anything/one actually - but that's another
story...
Anyway, the gist is you n
r-freebsd-questi...@freebsd.org] On Behalf Of Ray Still
Sent: Monday, October 26, 2009 1:56 PM
To: freebsd-questions@freebsd.org
Subject: Re: bind configuration issues
On Mon, Oct 26, 2009 at 11:55 AM, Gary Gatten wrote:
>
> You certainly don't "need" BGP for this, the DNS thing wil
> - Original Message -
> From: owner-freebsd-questi...@freebsd.org
>
> To: Ray Still
> Cc: freebsd-questions@freebsd.org
> Sent: Mon Oct 26 12:50:56 2009
> Subject: Re: bind configuration issues
>
> On Oct 26, 2009, at 10:03 AM, Ray Still wrote:
> > Hello,
&
y Still
Cc: freebsd-questions@freebsd.org
Sent: Mon Oct 26 12:50:56 2009
Subject: Re: bind configuration issues
On Oct 26, 2009, at 10:03 AM, Ray Still wrote:
> Hello,
> I am adding a redundant Internet connection to my current hosting
> setup and
> I need to figure out how to set up
On Oct 26, 2009, at 10:03 AM, Ray Still wrote:
Hello,
I am adding a redundant Internet connection to my current hosting
setup and
I need to figure out how to set up the DNS to make this work.
The two issues normally aren't related.
If both connections are from the same provider, talk to the
On Mon, Jul 27, 2009 at 07:37:26PM -0800, Mel Flynn wrote:
> On Monday 27 July 2009 18:35:17 Marc G. Fournier wrote:
> > --On Monday, July 27, 2009 14:07:44 -0800 Mel Flynn
> >
> > wrote:
> > > On Monday 27 July 2009 13:17:51 Anton Shterenlikht wrote:
> > >> On ia64 8.0-beta1 SMP, running bsdstats
On Monday 27 July 2009 18:35:17 Marc G. Fournier wrote:
> --On Monday, July 27, 2009 14:07:44 -0800 Mel Flynn
>
> wrote:
> > On Monday 27 July 2009 13:17:51 Anton Shterenlikht wrote:
> >> On ia64 8.0-beta1 SMP, running bsdstats-5.4_2,
> >> I get this error:
> >>
> >> # /usr/local/etc/periodic/mont
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- --On Monday, July 27, 2009 14:07:44 -0800 Mel Flynn
wrote:
> On Monday 27 July 2009 13:17:51 Anton Shterenlikht wrote:
>> On ia64 8.0-beta1 SMP, running bsdstats-5.4_2,
>> I get this error:
>>
>> # /usr/local/etc/periodic/monthly/300.statistics
On Monday 27 July 2009 13:17:51 Anton Shterenlikht wrote:
> On ia64 8.0-beta1 SMP, running bsdstats-5.4_2,
> I get this error:
>
> # /usr/local/etc/periodic/monthly/300.statistics
> /usr/src/lib/bind/isc/../../../contrib/bind9/lib/isc/task.c:1023: fatal
> error: RUNTIME_CHECK(((pthread_mutex_destro
Jack Raats wrote:
This morning I tried to install BIND, the DNS server.
I downloaded the handbook (English version) and tried to follow the
instructions giving in the handbook.
But the handbook is outdated OR FreeBSD 7.2-RELEASE-p2 is not correct.
I'm missing make-localhost in /etc/namedb.
Can
On Fri, Mar 13, 2009 at 12:59 PM, Dave wrote:
> Hi all,
>
> I'm trying to get cPanel installed on my host, and to run it from jail.
> The
> installer script that cPanel provides, however, seems to be confused by the
> fact that it cannot test the daemons it has installed by checking if they
> ar
On Sun, Oct 19, 2008 at 06:22:27AM -0700, Kevin wrote:
> I installed bind 9.3.5 on my new FreeBSD 6.3 server. I copied
> named.conf directly from my old server (originally from the Internet),
Since you've done this, you should use mergemaster to interactively
merge the changes in the system defaul
Grant Peel wrote:
Hi all,
Thanks to Lars I have come up with the following (to upgrade BIND for
the DNS caching issue)...(short of updateing all source).
Download the latest port BIND95.9.5.x (p2 I think),
9.5.0.2 -- correct.
Extract it to the ports directory,
make -DWITH_REPLACE_BASE
correct?
Also,
Will the installation leave all my current (BIND) configs alone?
-Grant
- Original Message -
From: "Lars Kristiansen" <[EMAIL PROTECTED]>
To: "gpeel" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Friday, August 29, 2008 8:38 PM
Subj
rttest.dns-oarc.net TXT
will hopefully now give a result that includes the word GREAT.
Lars
- Original Message - From: "Lars Kristiansen" <[EMAIL PROTECTED]>
To: "gpeel" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Friday, August 29, 2008 8:
-
From: "Lars Kristiansen" <[EMAIL PROTECTED]>
To: "gpeel" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Friday, August 29, 2008 8:38 PM
Subject: Re: BIND DNS Patching on 6.1, 6.2
gpeel skrev:
I was thinking I would try the BIND959.5.0 port, but i
gpeel skrev:
I was thinking I would try the BIND959.5.0 port, but it apprears that this
version is still vulneralbe.
The port dns/bind95 is patched:
$ named -version
BIND 9.5.0-P2
Easily installed with the option WITH_REPLACE_BASE.
Regards,
Lars
_
Hi Again,
When I posted this question originally, I had forgotten that I had a devel
server running FreeBSD 6.2-RELEASE. I tried the 6.3 patch, and it would not
make properly.
I was thinking I would try the BIND959.5.0 port, but it apprears that this
version is still vulneralbe.
So I suppose
At 05:41 AM 8/9/2008, Redd Vinylene wrote:
I got this FreeBSD server called mother (80.252.2.2). On it, I've made
two jails, camel (80.252.2.3) and box (80.252.2.4 through to
80.252.2.127). The problem is that reverse lookups for any of the IPs
preceding .4 on box fails. If I connect to IRC with
At 06:55 AM 8/9/2008, Redd Vinylene wrote:
I'm pretty sure I do, though my apologies if I'm wrong, did you check my
pastie?
On Sat, Aug 9, 2008 at 1:48 PM, Derek Ragona
<[EMAIL PROTECTED]> wrote:
> At 05:41 AM 8/9/2008, Redd Vinylene wrote:
>
> I got this FreeBSD server called mother (80.252.2.
I'm pretty sure I do, though my apologies if I'm wrong, did you check my pastie?
On Sat, Aug 9, 2008 at 1:48 PM, Derek Ragona
<[EMAIL PROTECTED]> wrote:
> At 05:41 AM 8/9/2008, Redd Vinylene wrote:
>
> I got this FreeBSD server called mother (80.252.2.2). On it, I've made
> two jails, camel (80.25
Maybe mother's /etc/pf.conf could also be of relevance?
-
camel="80.252.2.3"
box="80.252.2.4"
ext_if="rl0"
set block-policy return
set skip on { lo0 }
scrub in
pass out keep state
block in
pass in on $ext_if inet proto tcp from any to any port { 22 } keep state
pass in on $ext_if inet pr
Ok, I got it
zone "domain.com" {
type master;
database "ldap
ldap://192.168.0.2/ou=domain.com,ou=dns,o=domain,dc=com 172800";
};
works fine.
by the way, what does mean this number? 172800?
rvenne a écrit :
Hi list,
I'm trying to use [EMAIL PROTECTED] 7.0_releng on a
openldap
On May 22, 2008, at 9:10 PM, Ruel Luchavez wrote:
Hi ALL,
Is it possible in BIND DNS to block images in a certain sites? like
for
example the popular friends site ( friendster),
i want to block most images in that site so that client will be
irritated
that their images don't load perfectl
At 09:07 AM 5/23/2008, Steve Bertrand wrote:
Derek Ragona wrote:
At 09:10 PM 5/22/2008, Ruel Luchavez wrote:
Hi ALL,
Is it possible in BIND DNS to block images in a certain sites? like for
example the popular friends site ( friendster),
i want to block most images in that site so that client w
Derek Ragona wrote:
At 09:10 PM 5/22/2008, Ruel Luchavez wrote:
Hi ALL,
Is it possible in BIND DNS to block images in a certain sites? like for
example the popular friends site ( friendster),
i want to block most images in that site so that client will be irritated
that their images don't load
At 09:10 PM 5/22/2008, Ruel Luchavez wrote:
Hi ALL,
Is it possible in BIND DNS to block images in a certain sites? like for
example the popular friends site ( friendster),
i want to block most images in that site so that client will be irritated
that their images don't load perfectly. but s till
are images on different serwer than rest of site?
On Fri, 23 May 2008, Ruel Luchavez wrote:
Hi ALL,
Is it possible in BIND DNS to block images in a certain sites? like for
example the popular friends site ( friendster),
i want to block most images in that site so that client will be irritated
Is it possible in BIND DNS to block images in a certain sites? like for
example the popular friends site ( friendster),
i want to block most images in that site so that client will be irritated
that their images don't load perfectly. but s till
they can visit their site?
Any idea guys?
DNS is a
> > $ ssh -X -N -L 127.0.0.3:13390:192.168.1.44:3390 [EMAIL PROTECTED]
> > [EMAIL PROTECTED]'s password:
> > bind: Can't assign requested address
> > channel_setup_fwd_listener: cannot listen to port: 13390
> > Could not request local forwarding.
>
> Ofcourse it fails, you are trying to bind to add
On Monday 21 January 2008 22:00:33 perlcat wrote:
> Trying to access a vpn using ssh on 6.2 - STABLE. Haven't found an
> answer anywhere, and so I must be totally missing the right questions to
> ask or configurations to look at.
>
> This problem is consistent regardless of port chosen or access me
On Fri, Oct 05, 2007 at 05:29:39PM +0500, Narek Gharibyan wrote:
> Hi,
Please don't top-post.
> I as know default version (without port upgrading) is Bind 9.3.3 in Freebsd
> 6.2. You can see the version, executing named -v command. Do a
> ps -ax | grep named
> -Original Message-
> Fro
Hi,
I as know default version (without port upgrading) is Bind 9.3.3 in Freebsd
6.2. You can see the version, executing named -v command. Do a
ps -ax | grep named
and see whether named is running or not. Also you can find the Bind logs in
/var/named/var/log directory (chrooted directory), if it
You need to enable the service:
$ sudo vi /etc/rc.conf
>>
named_enable="YES"
:wq
$ sudo /etc/rc.d/named restart
The bind in-tree is 9.3.4 and the chroot is already setup for you by
default. You don't want to go installing a bitrot version from Ports.
~BAS
On Fri, 2007-10-05 at 12:08 +,
On Tue, Jul 03, 2007, Nejc Škoberne wrote:
> I also tried to specify the ADSL IP address in named.conf (it is static),
> but it is
> still a no go. I don't have such problems with other daemons! Any ideas?
Is the interface already up when you are starting BIND? I guess it is
not. I haven't teste
On Wed, Jul 04, 2007 at 03:14:28PM +1000, Mikhail Goriachev wrote:
> Nejc Škoberne wrote:
> > Hello,
> >
> > I am running BIND (from base system) on my FreeBSD 5.3 machine. The box is
> > connected to outer world via ADSL connection (tun0 device). If the named is
> > started when the machine is co
Nejc Škoberne wrote:
> Hello,
>
> I am running BIND (from base system) on my FreeBSD 5.3 machine. The box is
> connected to outer world via ADSL connection (tun0 device). If the named is
> started when the machine is connected to the internet, then everything is OK,
> I get this by saying netstat
On Tue, 2007-02-13 at 10:00 -0600, Derek Ragona wrote:
> I run multiple FreeBSD versions with Bind and have not had a problem with
> records being updated. Are you properly setting the new serial numbers in
> the master record files?
>
Thanks. Do you mean the master zone files where the BSD se
I run multiple FreeBSD versions with Bind and have not had a problem with
records being updated. Are you properly setting the new serial numbers in
the master record files?
-Derek
At 09:47 AM 2/13/2007, Robert Fitzpatrick wrote:
I'm not a member of any bind list, so I was hoping to
On Friday 26 January 2007 10:50, Robert Fitzpatrick wrote:
> I am not a member of a BIND list, so I thought I'd ask here first if
> anyone knows of a script tool that will query a primary name server and
> setup secondary records on another BIND server? Or any other solution
> for doing mass entrie
Did you run it in foregroun debug mode or ktrace(1) it yet? Turn on
querylog and see if you're getting worked?
~BAS
On Tue, 2 Jan 2007, patrick wrote:
I'm running BIND 9.3.2 on FreeBSD 6.1, and am noticing that it gets
out of control after running for a while.
PIDUID THR PR
Hi Robin,
On Tuesday 10 October 2006 16:22, Robin Tiwari wrote:
> i've configured dns server in freeBSD 6.1 but when i query the server it
> wont resolve my domain name. i've added in resolv.conf also and my bind
> daemon is also running without any errors. i couldnt figure out the
> problem. if a
right value for the program.
-Derek
At 04:34 PM 7/10/2006, Lisa Casey wrote:
- Original Message - From: "Jonathan Chen" <[EMAIL PROTECTED]>
To: "Lisa Casey" <[EMAIL PROTECTED]>
Cc:
Sent: Monday, July 10, 2006 3:43 PM
Subject: Re: Bi
Chen" <[EMAIL PROTECTED]>
To: "Lisa Casey" <[EMAIL PROTECTED]>
Cc:
Sent: Monday, July 10, 2006 3:43 PM
Subject: Re: Bind problem
Did you remember to add:
named_program="/usr/local/sbin/named"
to /etc/rc.conf?
Yes. /etc/rc.conf has the following lines for name
t; <[EMAIL PROTECTED]>
To: "Lisa Casey" <[EMAIL PROTECTED]>
Cc:
Sent: Monday, July 10, 2006 3:43 PM
Subject: Re: Bind problem
Did you remember to add:
named_program="/usr/local/sbin/named"
to /etc/rc.conf?
Yes. /etc/rc.conf has the following lines for named:
na
On Monday 10 July 2006 13:34, Lisa Casey wrote:
> - Original Message -
> From: "Jonathan Chen" <[EMAIL PROTECTED]>
> To: "Lisa Casey" <[EMAIL PROTECTED]>
> Cc:
> Sent: Monday, July 10, 2006 3:43 PM
> Subject: Re: Bind problem
>
> &
- Original Message -
From: "Jonathan Chen" <[EMAIL PROTECTED]>
To: "Lisa Casey" <[EMAIL PROTECTED]>
Cc:
Sent: Monday, July 10, 2006 3:43 PM
Subject: Re: Bind problem
Did you remember to add:
named_program="/usr/local/sbin/named"
to
On Mon, Jul 10, 2006 at 03:11:41PM -0400, Lisa Casey wrote:
> Hi All,
>
> I seem to have a bit of a problem with my Bind installation on FreeBSD 5.3.
> When I first setup this box, I installed the Bind 8.4 from the ports. Soon
> afterwards, I decided to go with Bind 9 so I installed that from th
Thanks, that did the trick. I'm not running this in a jail because I'm
paranoid or anything -- I just need a test environment, and I don't
have an extra machine kicking around. :)
Patrick
On 5/1/06, David Robillard <[EMAIL PROTECTED]> wrote:
BIND is trying to setup a chroot(8) before it starts
On May 1, 2006, at 7:11 AM, David Robillard wrote:
BIND is trying to setup a chroot(8) before it starts. If you're
already inside a jail, then IMHO it is a little overkill (i.e. Running
BIND in a chroot inside a jail).
Check the BIND related values in rc.conf(5). The chroot(8) startup is
trigg
--
Message: 23
Date: Fri, 28 Apr 2006 19:36:22 -0600
From: "Chad Leigh -- Shire.Net LLC" <[EMAIL PROTECTED]>
Subject: Re: BIND inside a jail on FreeBSD 6.0
To: patrick <[EMAIL PROTECTED]>
Cc: freebsd-questions@freebsd.org
Message-ID: <[EMAIL
On Apr 28, 2006, at 6:57 PM, patrick wrote:
I'm trying to run BIND inside a jail on FreeBSD 6.0, and I'm
encountering the following problem:
[EMAIL PROTECTED] /var/named]# /etc/rc.d/named start
mount_devfs: Operation not permitted
/etc/rc.d/named: WARNING: devfs_domount(): Unable to mount devf
Denis R. wrote:
http://cr.yp.to/djbdns/guarantee.html
Richard, besides simple you want a _secure_ caching name server. Yes, you
can type "named_enable" in rc.conf and be done with it, just don't forget
to periodically check the security updates web page for BIND exploits.
Thanks for the advice
AND make sure that either /etc/resolv.conf doesn't exist or that it
contains a single nameserver line like this:
nameserver 127.0.0.1
otherwise your local nameserver isn't queried.
You see, there's really nothing else to do on a standard installation of
freebsd...
1- named_enable="YES" in /etc/
http://cr.yp.to/djbdns/guarantee.html
Richard, besides simple you want a _secure_ caching name server. Yes, you
can type "named_enable" in rc.conf and be done with it, just don't forget
to periodically check the security updates web page for BIND exploits.
Regards!
Richard Collyer wrote:
> Hello
Richard Collyer wrote:
Hello,
I've recently been getting a lot of trouble with SpamAssassin performing
a lot of rDNS lookups which is causing network issues (timeouts etc to
DNS servers).
I am trying to install BIND (or djbdns) as a simple caching nameserver.
Just to take some of the load o
On Wed, Apr 26, 2006 at 09:27:27AM +0100, Richard Collyer wrote:
> Yep I've set the named.conf up correctly but when I do "ndc start" it
> tells me that it is not found.
With BIND 9.3.1, you'd probably want 'rndc', but even then,
'/etc/rc.d/named start' would do it for you, if you have
named_enabl
On Wed, April 26, 2006 8:05 am, Martin Hepworth wrote:
> Richard
>
> just set the forwarders to another nameserver in the named.conf and that's
> it..
>
> this will speed up SA massively.
>
> --
Yep I've set the named.conf up correctly but when I do "ndc start" it
tells me that it is not found.
Richard
just set the forwarders to another nameserver in the named.conf and that's
it..
this will speed up SA massively.
--
martin
On 4/25/06, Richard Collyer <[EMAIL PROTECTED]> wrote:
>
> Hello,
>
> I've recently been getting a lot of trouble with SpamAssassin performing
> a lot of rDNS looku
> Hello,
>
> I've recently been getting a lot of trouble with SpamAssassin performing
> a lot of rDNS lookups which is causing network issues (timeouts etc to
> DNS servers).
>
> I am trying to install BIND (or djbdns) as a simple caching nameserver.
> Just to take some of the load off the networks
For a caching nameserver simply follow the instructions in
named.conf. Enable named in rc.conf, and start the daemon.
-Derek
At 05:50 PM 4/25/2006, Richard Collyer wrote:
Hello,
I've recently been getting a lot of trouble with SpamAssassin performing a
lot of rDNS lookups which is
On 23/4/06 07:24, "Chad Leigh -- Shire.Net LLC" <[EMAIL PROTECTED]> wrote:
> On FreeBSD 6.0 with bind9, if I define a host to have multiple A
> records, such that some IP addresses are listed more than once, for
> example:
>
> .
> .
> .
> www 600 IN A 192.168.1.1
> 600 IN A 192.168.1.2
> 60
On Apr 23, 2006, at 10:21 AM, Chuck Swiger wrote:
Chad Leigh -- Shire.Net LLC wrote:
On FreeBSD 6.0 with bind9, if I define a host to have multiple A
records, such that some IP addresses are listed more than once,
for example:
[ ... ]
Will those addresses listed more than once show up more
Chad Leigh -- Shire.Net LLC wrote:
On FreeBSD 6.0 with bind9, if I define a host to have multiple A
records, such that some IP addresses are listed more than once, for
example:
[ ... ]
Will those addresses listed more than once show up more often as the
"answer" to name server requests (or mor
> On Wed, Feb 08, 2006 at 12:45:02PM -, [EMAIL PROTECTED] wrote:
>> Under FreeBSD 4.8 BIND was making zone transfers normally. In my
>> network,
>> Windows 2000 is the master and bind is the salve. Recently, the server
>> was upgraded to FreeBSD 6.0, and suddenly BIND stopped making zone
>> t
1 - 100 of 229 matches
Mail list logo
