jonathan michaels wrote:
Doug, et al,
i for one appreciate this "over-engieered" responce because it has
given me (and those like me) a chance to get answers to questions that
we have asked for over a year in my case, about this whole bind setup
issue.
I have no idea what you mean by "questio
On Fri, 18 Jul 2008, Mark Andrews wrote:
> To: Matthew Seaman <[EMAIL PROTECTED]>
> > query-source is only ever used by recursive or stub resolvers --
> > instances of named that will go out and make queries on the net on your=20
> > behalf. Authoritative servers really don't need it.
>
>
> query-source is only ever used by recursive or stub resolvers --
> instances of named that will go out and make queries on the net on your=20
> behalf. Authoritative servers really don't need it.
Actually authoritative servers make queries to work out
where to send notify messa
On Wed, Jul 16, 2008 at 09:06:33PM -0700, Chuck Swiger wrote:
> >Isn't this common to have multiple aliases at an interface?
> >Sometimes only one of them should be used for all DNS traffic.
>
> About the only common reason to set up multiple aliases on an
> interface is when you're doing somet
On Wed, Jul 16, 2008 at 10:11:03PM -0700, Doug Barton wrote:
> Jeremy Chadwick wrote:
>
> > The config parms we use are necessary.
>
> That's all you had to say. :) I see a lot of people attempt to
> over-engineer stuff with named that leads to complications later. If
> you are doing things fo
On Wed, 16 Jul 2008, Chuck Swiger wrote:
On Jul 16, 2008, at 8:51 PM, Eugene Grosbein wrote:
On Wed, Jul 16, 2008 at 06:34:38PM +0100, Matthew Seaman wrote:
The 'query-source' options don't have to be specified: the system
will just choose some appropriate address according to the state of
the
--On July 16, 2008 9:06:33 PM -0700 Chuck Swiger <[EMAIL PROTECTED]> wrote:
On Jul 16, 2008, at 8:51 PM, Eugene Grosbein wrote:
On Wed, Jul 16, 2008 at 06:34:38PM +0100, Matthew Seaman wrote:
The 'query-source' options don't have to be specified: the system
will just choose some appropriate ad
Jeremy Chadwick wrote:
The config parms we use are necessary.
That's all you had to say. :) I see a lot of people attempt to
over-engineer stuff with named that leads to complications later. If
you are doing things for a good reason, keep doing them.
Doug
--
This .signature sanitized
On Wed, Jul 16, 2008 at 09:06:33PM -0700, Chuck Swiger wrote:
> On Jul 16, 2008, at 8:51 PM, Eugene Grosbein wrote:
>> On Wed, Jul 16, 2008 at 06:34:38PM +0100, Matthew Seaman wrote:
>>> The 'query-source' options don't have to be specified: the system
>>> will just choose some appropriate address
On Jul 16, 2008, at 8:51 PM, Eugene Grosbein wrote:
On Wed, Jul 16, 2008 at 06:34:38PM +0100, Matthew Seaman wrote:
The 'query-source' options don't have to be specified: the system
will just choose some appropriate address according to the state of
the routing table. 'query-source' to set the
On Wed, Jul 16, 2008 at 06:34:38PM +0100, Matthew Seaman wrote:
> The 'query-source' options don't have to be specified: the system
> will just choose some appropriate address according to the state of
> the routing table. 'query-source' to set the source /IP/ is really
> only useful in some spec
> We do such on our authoritative nameservers. The options we use:
>
> listen-on { 127.0.0.1; 72.20.106.4; };
> query-source address 72.20.106.4;
> transfer-source 72.20.106.4;
> notify-source 72.20.106.4;
> interface-interval 0;
> use-alt-transfer
Jeremy Chadwick wrote:
On Thu, Jul 17, 2008 at 12:20:42AM +0800, Eugene Grosbein wrote:
I fully understand and second efforts on educating people
how to configure BIND to be stong to attacks and keep them from using
"query-source address" with "port" option but how about
binding named to particu
On Wed, Jul 16, 2008 at 02:23:28PM -0700, Doug Barton wrote:
> Jeremy Chadwick wrote:
>> On Thu, Jul 17, 2008 at 12:20:42AM +0800, Eugene Grosbein wrote:
>>> I fully understand and second efforts on educating people
>>> how to configure BIND to be stong to attacks and keep them from using
>>> "quer
On Wed, 16 Jul 2008, Jeremy Chadwick wrote:
On Thu, Jul 17, 2008 at 12:20:42AM +0800, Eugene Grosbein wrote:
I fully understand and second efforts on educating people
how to configure BIND to be stong to attacks and keep them from using
"query-source address" with "port" option but how about
bi
On Thu, Jul 17, 2008 at 12:20:42AM +0800, Eugene Grosbein wrote:
> I fully understand and second efforts on educating people
> how to configure BIND to be stong to attacks and keep them from using
> "query-source address" with "port" option but how about
> binding named to particular IP address whe
Eugene Grosbein wrote:
I fully understand and second efforts on educating people
how to configure BIND to be stong to attacks and keep them from using
"query-source address" with "port" option but how about
binding named to particular IP address when host has many of them?
Using "query-source ad
17 matches
Mail list logo
