er {
IP address;
};
};
I am clueless what is going wrong. Any help is greatly appreciated
your nameserver does not update secondary(slave) zones, therefore
allow-update does not make sense.
you should remove it or replace with allow-update-forwarding so all received
updates are forwarded to
ch service are we
using - if there are multiple IP's for _anything_, return topologically
closer first.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT ak
e
authorized domain server?
I have looked onto it manually, so far found nothing.
rndc dumpdb could generate named output where you should be able to find out
the culprit.
the difference between current version of zone between ns1.gov.sk and
ns2.gov.sk could affectg this problem.
--
Matus
168.56.157;};
also-notify {192.168.56.157;};
notify explicit;"
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
"One World. One Web. On
in a doc that the < * > can only be the leftmost label in the name.
correct.
Is there an other way to simplify or does I have to add each entry individually?
no, but the question is if you really need this.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning:
or server1.example.com.
Simply, wildcarding is not for case like this.
-Message d'origine-
De : bind-users De la part de Matus UHLAR -
fantomas
Envoyé : mardi 14 mai 2024 15:58
À : bind-users@lists.isc.org
Objet : Re: SRV on multiple subdomains
On 14.05.24 13:08, DEMBLANS Mathieu w
missed?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
The early bird may get the worm, but the second mouse gets the cheese.
--
Visit
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Honk if you love peace and quiet.
--
Visit https://lists.isc.org/mailman/listinfo/bin
nd PMTUD.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Windows 2000: 640 MB ought to be enough for anybody
--
Visit https://lists.isc.org/m
TION:
epi.es. 259200 IN NS ns3.epi.es.
epi.es. 180 IN NS ns1.epi.es.
epi.es. 300 IN NS ns1.epi.es.
epi.es. 300 IN NS ns2.epi.es.
epi.es. 3600IN NS ns2.epi.es
key.mg-esp-prod-eu-eu.mallorcazeitung.es SOA ns1.epi.es
I therefore suspect that the delay will be even greater tomorrow again
when the newsletter arrives, so that the "communication error" will
occur again.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I
many queries.
is it possible to disable query minimisation for particular domains?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Athe
On 15 Jul 2024, at 23:27, Matus UHLAR - fantomas wrote:
I have noticed that especially DNS blocklist cause errors like:
Jul 14 01:41:28 fantomas named[1854]: success resolving
'D.C.B.A.zen.spamhaus.org/A' after disabling qname minimization due to 'ncache
nxdomain'
quot; zone, named started working,
I just needed to add
validate-except { "local"; };
guess I understand why.
From the history I remember that defining zone (example.local) with no
delegation in the parent zone (local) does not cause issues (locally).
Is "type forward" spec
have NS in the root ( or closest enclosing
authoritative zone).
Thanks, this worked.
I created ".local" zone (copied from db.empty) with dummy NS for
"example.local" and forwarding works, just as ".local" is resolved locally.
On Fri, Aug 16, 2024, 7:13 AM Matus UH
an't see the link
(at least the "BIND 9.5" isn't a link while "BIND 9.4" is).
- Why were HTML versions of previous ARM's removed?
--
Matus UHLAR - fantomas, [EMAIL PROTECTED] ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising t
l"
>
> ; http website base
> ;@ IN A 64.84.37.x
> ;wwwIN A 64.84.37.x
> ;ftpIN A 64.84.37.x
those @'s are useless most of the time, if you don't provide name, the RR
applies for the last name provided. Move
s of it... search for entropy gathering daemons, or look if your
CPU/motherboard has hardware random number generator...
--
Matus UHLAR - fantomas, [EMAIL PROTECTED] ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAV
lv.conf ) a firewall problem and
maybe something even different.
--
Matus UHLAR - fantomas, [EMAIL PROTECTED] ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
WinError #98652:
and use the Bind that comes
> with it for this experiment.
what kind of records do you want to store?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek
t; >> Fedora 10 x86_64 on a 32GB RAM machine and use the Bind that comes
> >> with it for this experiment.
> 2008/12/13 Matus UHLAR - fantomas :
> > what kind of records do you want to store?
On 13.12.08 19:01, Vinay Y S wrote:
> Mostly A, CNAME, MX and TXT records.
so they&
rd types and values have
> significant effect on the result of this experiment?
for example, rbldnsd supports only a few types of records, but can store
them very effectively, e.g. IP addresses.
For all types of DNS records and values, it's apparently not useful
--
Matus UHLAR - fantoma
NS some.other.name.server.
[...]
> That has no NS server defined for the zone, just the ranges of the zone.
> Is that valid?
it is, but may cause problems. NS records for the zone itself should be
defined.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I
> Chris Buxton says what?:
> > /etc/default/sysklogd
On 21.12.08 07:59, billious wrote:
> Would that not be:
> /etc/default/syslogd ?
in debian, the package's name is sysklogd (although klogd was already split
into another package).
--
Matus UHLAR - fantomas, uh..
rce (for AA records) or cache.
> > That has no NS server defined for the zone, just the ranges of the zone.
> > Is that valid?
>
> it is, but may cause problems. NS records for the zone itself should be
> defined.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.f
any port on your server
must be allowed.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Linux IS user friendly, it's just s
record of ns1.dns.com==137.161.0.1 and
> oranges.com with a NS record of ns1.dns.com=137.161.0.2
I think only the registrar of dns.com should provide glue records for
anything below dns.com. If it happend this way, it's imho broken.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fan
ssible)
should check if the glue belongs under registered domain. If not, the glue
should not be accepted.
If I register example.com, it's OK to register _anything_.example.com as
glue. However, registering _anything_.example.net should not be accepted.
I wonder how is it possible that anyone ac
his
> be the reason for failure?
yes
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I just got lost in thought. It was unfam
valid PTR is important when sending mail - many servers will refuse
connections from IP's without valid PTR and A records.
The contents of the record is not that much important (unless using SPF),
although some servers refuse mail from generic-looking names
(e.g. a-b-c-d.anything.example
> On Jan 16, 2009, at 7:13 AM, Matus UHLAR - fantomas wrote:
> >Actually, it doesn't matter which PTR record will remain, unless there
> >will be any SPF record pointing to it.
On 16.01.09 10:12, Chris Buxton wrote:
> That is a common misconception.
No, it is not.
>
> > On 20.01.09 12:49, Dmitry Rybin wrote:
> >> How to disable cache in bind-9.6? ttl=0 - bad idea.
> Matus UHLAR - fantomas wrote:
> > if you know that setting TTL to 0 is a bad idea, why do yuo think that
> > disabling a cache in BIND is not a bad idea?
On 20.0
rent nameserver to handle your site's general
> DNS queries.
in such case it's much better to disable recursion and not use such server
for resolution, unless it's a MUST (e.g. firewalls).
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish
ifically:
>
> blackhole {
> // Deny anything from the bogon networks as
> // detailed in the "bogon" ACL.
> bogon;
> };
>
> Note that isprime is suggesting an ACL on your firewall or router.
Especially when in the article above they ask for NOT blac
> >>> On 20.01.09 12:49, Dmitry Rybin wrote:
> >>>> How to disable cache in bind-9.6? ttl=0 - bad idea.
> >> Matus UHLAR - fantomas wrote:
> >>> if you know that setting TTL to 0 is a bad idea, why do yuo think that
> >>> disablin
> Matus UHLAR - fantomas wrote:
> > This is _NOT_ a problem of BIND. This is a problem of its admin who can't
> > read the docs and set up max-cache-size, which does exactly what is needed
> > in this case.
On 21.01.09 17:38, Dmitry Rybin wrote:
> Hmm... And why bi
Hello,
I see that logs of EDNS problems show the RR which was successfully resolved
after changind packet size or disabling EDNS, but shouldn't they lot the IP
which has this problem?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e
sol-l01
> >
> > zone for 1.1.1
> >
> > 1 IN CNAME metis.local.
On 23.01.09 23:06, Barry Margolin wrote:
> Why don't you just use normal reverse DNS:
>
> zone for 1.1.1.in-addr.arpa
>
> 1 IN PTR metis.local.
> IN PTR bob-www-sol-l01.loca
> On Sat, Jan 24, 2009 at 9:21 PM, Matus UHLAR - fantomas
> wrote:
> >
> > if metis.local is a CNAME, the PTR shouldn't point to it.
On 25.01.09 10:14, John Bond wrote:
> could you please explain this.
Although it's good to remove irelevant part of the text you
ource record, or part of the
value of a MX resource record must not be an alias."
"It can also have other RRs, but never a CNAME RR."
"Additional section processing does not include CNAME records"...
"Thus, if an alias is used as the value of an NS or MX record, no ad
specification
> that forbids it?
RFC 2181 sect. 10.2. mentions that
"...the relevant section of RFC1034 (section 3.6.2) indicates that the value of
a PTR record should be a canonical name."
"Note that while the value of a PTR record must not be an alias"...
I kno
cause any problems along the way?
yes, authority "overrides" delegation. However they should match because
mismatch could lead to strange results.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this addr
an A, it would be returned in the
first query. Since it's a CNAME, the IP is not returned in the MX query.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek
the response to the MX record include the A
> record. It's nice if it does, since it saves a query, but this is just
> an optimization.
exactly. That's what I was trying to explain.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.
e too.
I'm afraid they won't eat the same memory, but each view its own memory.
Can anyone confirm, and if I'm right, tell me that it will be better in next
BIND releases?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail
;any" or "cname", the bind won't return
that. If the question was "A", it should be returned, unless you have
allow-recursion or allow-query-cache turned off
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail
FC.
> Yes other DNS implementations do return both the A and CNAME.
It depends on the query sent.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
ed below by Mark Andrews.
I strongly recommend you upgrading the BIND first. Later versions issue that
message much less often.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAV
't set ttl to 0. It didn't work. Recursive query
> fails, and authoritative query back to clients with ttl 0 :(
Yes, that is what "Setting TTL to 0" means.
> ~50 views,
can't you really lower the views count?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantom
On 29.01.09 22:33, Al Stu wrote:
> Analyze this.
Why?
> Query MX dns.com
>
> Response MX nullmx.domainmanager.com
>
>
>
> Query A nullmx.domainmanager.com
>
> Response CNAME mta.dewile.net, A 64.40.103.249
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http
ut where the sun is shining and exposed to the light of day.
>
> Once upon a time the world was 'flat'. For some of you, apparently is
> still is 'flat'.
Don Quijote
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to r
sible.
Zone updates work only if the zone is configured on the nameserver.
Do you have any zones configured (other than ".")?
How do you know that it's performing zone updates?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive
> At Wed, 28 Jan 2009 08:59:42 +0100,
> Matus UHLAR - fantomas wrote:
>
> > > >Of course I could just copy and paste all the zones also in 'custom'
> > > >view
> > > >but it doubles the configuration size.
> >
> > On 27.01.
> >> ~50 views,
> Matus UHLAR - fantomas wrote:
> > can't you really lower the views count?
On 04.02.09 11:23, Dmitry Rybin wrote:
> It's impossible, :-( over 500'000 client use bind and we must use views
> to split load on another services.
Pardon
On 04.02.09 11:51, Dmitry Rybin wrote:
> Matus UHLAR - fantomas wrote:
>
> >
> > On 04.02.09 11:23, Dmitry Rybin wrote:
> >> It's impossible, :-( over 500'000 client use bind and we must use views
> >> to split load on another services.
>
>
of this before?
it probably means that ns1.mtcnet.net did not have its WHOIS record.
Is does now. Some registrars require nameservers to have WHOIS records if
you want to use them for registering domains.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to
t for the answer. It really helped understanding this process. But
> just a simple question. What happens if the
> "ns1.testing.server.com<http://ns1.testing.server.com/>A
> 192.123.123.23" doesn't responds? will it try to get the others?
yes, if it's able
one.
> Is this possible?
Yes, it's possible. They will reply with
www.example.test.com CNAME ts.example.test2.com
If they have recursion or query-cache enabled, they may also respond with
ts.example.test2.com A in answer section and example.test.com NS info in
authority/additional sections
--
Matu
t release please upgrade
> to see if it is fixed, then if it still there please log a
> bug report. Sending things to bind-users then hoping a
> developer will see the report and log the bug is not the
> optimal way to do things.
It apparently didn't seem obviously
nes:
$ORIGIN c1.b1.a1.in-addr.arpa.
d1 PTR ws.myzone.
$ORIGIN c2.b2.a2.in-addr.arpa.
d2 PTR ws.myzone.
$ORIGIN c3.b3.a3.in-addr.arpa.
d3 PTR ws.myzone.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mai
), so maybe it /is/ time
> to update the naming standards.
and maybe it is not. If people can't behave, adjusting standards may be the
worst solution.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this addre
severity info;
print-category yes;
print-severity yes;
};
category default {
nextra_syslog;
default_debug;
};
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-
reading what was sent.
> While it is certainly not usual to do it for an email (especially to a
> list like this) I see no reason to chide someone for doing it.
What about irony? Hello is shorter, simpler and more common on the net,
expecially in mailing lists...
and he
--
Matus UHLAR - fant
by second?
> That's will be a huge problem for some dynamic dns I may think.
seems so. If you need to do that faster, you should try update or
different mechanism
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
War
it, the server must also allow transfer from the
client you are transferring from. Check allow-transfer directive, globally
for the nameserver and locally for the configured zone. I think the default
is "none" (check the docs for sure)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; ht
iirc assumed that one name with multiple
IPs is one multihomed host, which could lead to assumption that it's enough
to query one of those IP's.
I believe it's not true.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advert
ot, but it's alwayt better to have it.
However, the builtin default zone name is "127.in-addr.arpa" and I prefer
creating this one.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na
2308 is not clear.
I think RFC 2181 (which 2308 refers to) is clear enough.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklam
redirect any browser when the
> > computer is in a captive IP space like a zone receiving a guest before
> > authenticating itself through a web site.
This problem should not be solved at DNS level - maybe on the HTTP proxy
level, or solve user authentication using WPA or similar methods on
only, will clients fall into one view if recursive and into
another when asking for configured zone? Does the order of views matter
here?
Thank you
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovani
> On May 19, 2009, at 9:45 AM, Matus UHLAR - fantomas wrote:
>> I'd like to know how does match-recurtsive-only view interact with
>> configured zones.
On 19.05.09 10:25, Chris Buxton wrote:
> The order of views matters. The first one matched, wins.
>
> Let's sup
d]
> ; 192.52.178.30 [srtt 9] [flags ] [ttl 1793]
>
> If any RFC or related documents, please let me know.
I'm not sure if any rfc requires
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
t; };
Do you have NS records for slaves in the zone? Do you have corerect "master"
set up in the SOA?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOST
thing like "publish a server". You must delegate the
test.midomain.com to your server in the midomain.com, which means, that a
midomain.com maintainer must put there NS records for "test.midomain.com"
pointing to your server.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http
answer, the classic resolution
will be used.
I guess the configured forwarders have one of these problems
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek rek
via your linux server and no mail coming from waterinvoice.com via
your exchange server...
I assume
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukol
s IP and waterinvoice.com should
> have your linux servers' IP. Watch out if there is really no email going
> from water.com via your linux server and no mail coming from
> waterinvoice.com via your exchange server...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.
ny strange reasons.
But I don't recommend playing with spf2 just to get mail to hotmail, I think
there are better ways to get your mail anywhere.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varova
'
>
> What category does this fall under?
If in doubts and docs won't tell you, just enable "print-category yes;"
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tu
y "ns.domain.example." as a NS, or will they require other NS
record?
- if they require other NS record, will they accept "ns.isp.example." with
the same set of A records?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to re
On 30.06.09 01:08, Mark Andrews wrote:
> In message <20090629101834.ga31...@fantomas.sk>, Matus UHLAR - fantomas
> writes:
> > I am planning to change NS records in our and our customers' zones.
> >
> > I'll have four nameservers on different networks, a
> In message <20090629200938.ga6...@fantomas.sk>, Matus UHLAR - fantomas writes:
> > On 30.06.09 01:08, Mark Andrews wrote:
> > > In message <20090629101834.ga31...@fantomas.sk>, Matus UHLAR - fantomas
> > > wri
> > tes:
> > > > I am plan
On 01.07.09 16:53, fake...@fakessh.eu wrote:
> it would be possible to add this server bitsy.mit.edu.
> in / etc / resolv.conf to increase the speed of propagation
- /etc/resolv.conf can only contain IPs.
- /etc/resolv.conf is not a BIND issue.
- propagation of what?
--
Matus UHLAR - fa
ly one/few of them?
So, I think that the recommendation above is good.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
My mind is lik
uld require nor benefit of them, and I don't recommend using them.
With most of applications doing reverse resolution and using its result
anyhow it's still better to have always the same name...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to
he order they came in. That
may be problem in some libraries, some time ago I've been having similar
problems, it seemed that nss_lwres was responsible for that.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to t
card record
returning localhost IP. However be very careful not to provide those to your
own recursive clients. I ocasionally use that on biggest abusers.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovan
> > In message <8401907190740j6e04pc23316827fe0b...@mail.gmail.com>,
> > Bradle
> > y Caricofe writes:
> [...]
> > > 19-Jul-2009 10:34:29.635 client 84.235.6.53#1276: query (cache) '
> > > 6q6vszqgm.w8n08fo0.taha.com/A/IN' denied
&
ntil M$ fixes that one (I doubt so), new BIND won't be compatible with w2k.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
We are but p
On 30.07.09 10:35, Matthew Huff wrote:
> Is there any way to disable BIND from loading the automatic empty zones
> (D.F.IP6.APRA, etc...). They are being generated even with the -4 command
> line.
have you looked at the disable-empty-zone configuration directive?
--
Matus UHLAR - fan
l routes will allow named to immediately detect
> that a IPv6 site is not reachable. "default" is over used.
oh, although it should work, it's a bit dirty workaround...
it needs a statefull firewall allowing only replies to go out...
--
Matus UHLAR - fantomas, uh...@fantom
> server ::/0 { bogus yes; };
>
> work?
no, it would prevent server from replying v6 requests
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolv
Many people consider that a bad idea. the DNS is used by many applications
in many manners and providing false answers can break them in many ways.
You won't get different answer on this list, i guess.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish
Or only correct external domain?
if those records are meant to be used in NS records, yes, they must be
changed.
> This happen with your bind server?
this happens with dns servers.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail
in case of a
> negative answer and the zone domain name is not "test.es", I want to try
> another server. Is that possible?
you can configure zone "test.es" to be forwarded to different server. There
is no functionality in BIND that would continue searching fo
You can download current version from ftp.internic.net:/domain/named.root if
you want, but that is not required for working DNS server.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adre
.3.4, but you apparently did
not move the ns2 to new IP so it still tries to fetch zone(s) from old IP.
Move ns2 to 5.6.7.8 and it will ask fot transfers from that IP.
allow-transfer only configures who (which IP) will be allowed to transfer
a zone, but it has nothing to do with who will
On 11.08.09 13:27, Nelson Serafica wrote:
> I need to set bind to listen to all address. I'm using AMAZON EC2
no, you don't. you configure listening IPs/ports by using listen-on and
listen-on-v6.
query-source only configures from which IP/port will your requests come
from.
--
ll. It would take code changes to make
> it work well.
... but it would require some tuning of forwarding code e.g. to set up
maximum timeout for a forwarding server and to allow sending of
non-recursive queries to a forwarding server.
I think it would be interesting to know if this beh
ernet connection in
DNS. That should be done by DHCP and similar servers but microsoft had a
"genial" idea so they ask by themselves.
it can be turned off but the default is on...
sorry, I don't know about the rest...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www
1 - 100 of 1048 matches
Mail list logo
