Hi List! I'm experimenting with a chain of hidden masters.
PDNS (hidden master) --NOTIFY--> OPENDNSSEC (hidden master) --NOTIFY--> PUBLIC PRIMARY (AXFRs the other way round) Problem is: PDNS notifies only hosts it finds in the NS records of the changed zone. I don't know how to loop-in a second hidden master. In BIND there's a configuration option for this: options { also-notify { [opendnssecip]; }; // all zones notify explicit; }; (See http://www.zytrax.com/books/dns/ch7/xfer.html#notify) You can achieve a similar behaviour with PDNS by calling "pdns_control notify- host" (http://doc.powerdns.com/master.html). This ignores the NS records from zone and only notifies the explicit IP. Is there a way to get automatic explicit notifies? I send the same mail to pdns-dev with an rough idea on how to change pdns to allow explicit notifies. But maybe someone here in pdns-users has an idea for an alternative setup. Please see also the blog entry from Jan-Piet Mens: http://blog.fupps.com/2010/09/15/hints-on-getting-powerdns-to-use-opendnssec- for-signing-zones/ Regards, Markus Lauer. _______________________________________________ Pdns-users mailing list Pdns-users@mailman.powerdns.com http://mailman.powerdns.com/mailman/listinfo/pdns-users