update with no effect

2009-03-30 Thread Lars Hecking 

 I have started seeing these entries in named.log:

29-Mar-2009 05:02:35.467 general: warning: update with no effect
29-Mar-2009 05:02:35.468 general: warning: update with no effect
29-Mar-2009 05:02:35.469 general: warning: update with no effect
29-Mar-2009 05:02:35.470 general: warning: update with no effect
29-Mar-2009 05:02:35.471 general: warning: update with no effect
29-Mar-2009 05:02:35.472 general: warning: update with no effect
29-Mar-2009 05:02:35.478 general: warning: update with no effect
29-Mar-2009 05:02:35.479 general: warning: update with no effect
29-Mar-2009 05:02:35.480 general: warning: update with no effect
29-Mar-2009 05:02:35.481 general: warning: update with no effect
29-Mar-2009 05:02:35.482 general: warning: update with no effect
29-Mar-2009 05:02:35.483 general: warning: update with no effect
29-Mar-2009 05:02:35.484 general: warning: update with no effect

 What is that about? This is bind 9.4.2-P2 on Solaris 8.


___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: NOTIFY from masters when slave provides several views

2009-03-30 Thread terry+bindusers 
Let me clarify - for a zone in more than one of the views, that zone's
  data doesn't vary by zone. The internal view has some zones not found
  in the customer or external views.

 This sounds like a job for the allow-query option in the zone statements.

  I should have mentioned that I tried that, but got:
option 'allow-query' is not allowed in 'forward' zone 'xxx.yyy.com'

  In fact, that's what forced me into views in the first place.

 
Also, the external view doesn't provide recursion, while the customer
  and internal ones do.

 And this is a job for allow-query and allow-query-cache.

  What's the deal with allow-query? I did some lookups from a host on an
outside net (not in either the internal or customer views) and the server
answered queries for the zones it hosted regardless of whether it was set
to allow-query { internal; customer; }; or allow-query { any; };.

Terry Kennedy http://www.tmk.com
te...@tmk.com New York, NY USA
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

dhcp options 226 and 227

2009-03-30 Thread dhottinger 
Im trying to figure out how to add options 226 and 227 to my dhcp  
server.  I have not been able to find much about this through google.   
Has anyone implemented these options for their dhcp server?  I added  
the following to my dhcpd.conf (main file)


option option-226 code 226 = array of integer 8;
option option-227 code 227 = ip-address;


option option-226   10,40,0,29;
option option-227   10.40.0.29;

Im not sure what the array of integer 8 is at all, but the only  
example I could find had that in the main options area.


thanks,
ddh


--
Dwayne Hottinger
Network Administrator
Harrisonburg City Public Schools

Everything should be made as simple as possible, but not simpler.
-- Albert Einstein

The hottest places in Hell are reserved for those who, in times of moral
crisis, preserved their neutrality.
-- Dante

___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Max. Number of char in a TXT Record

2009-03-30 Thread Michael Milligan 
Darvin Denmian wrote:
 Hello,
 
 I have some questions:
 
 1) Anybody know the maximum number of characters allowed in a TXT field?

255 for each string.  E.g.,

@  TXT  v=spf1 mx ip4:216.208.1.1 a:mail01.mydomain.com
a:mail02.mydomain.com   a:mail03.mydomain.com
include:something.else.com -all

Notice there are two sets of quoted text here to simulate the entire TXT
string being longer than 255 chars.  You'd just split it up into
multiple quoted strings that each are not longer than 255 chars.

Note that there is a leading space in the second string.  For SPF
processing, these TXT strings are concatenated together as-is and
without the leading space in the second string, it would generate a
syntax error.

 
 2) What is the maximum number of includes inside a SFP field?
 

Don't chain them more than 2 or 3 times, you'll run into SPF processing
limits.  If you have to use more than that, then you need to rethink
you're matching approach.

The RFCs on the subject limit DNS lookups to 10, that includes the TXT
record itself, any A, MX and PTR records that have to be looked up by
name, and any further include: lookups and associated records.  A
Permanent Error will be returned if you exceed the 10 lookup limit.

See http://www.openspf.org/, there are tools, tips and tricks to help you.

Regards,
Mike

-- 
Michael Milligan   - mi...@acmeps.com
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: dhcp options 226 and 227

2009-03-30 Thread Andy Shellam 

ddh,

You're on the BIND list.  Try dhcp-users 
(https://lists.isc.org/mailman/listinfo/dhcp-users) instead.


Regards.
Andy

dhottin...@harrisonburg.k12.va.us wrote:
Im trying to figure out how to add options 226 and 227 to my dhcp 
server.  I have not been able to find much about this through google.  
Has anyone implemented these options for their dhcp server?  I added 
the following to my dhcpd.conf (main file)


option option-226 code 226 = array of integer 8;
option option-227 code 227 = ip-address;


option option-226   10,40,0,29;
option option-227   10.40.0.29;

Im not sure what the array of integer 8 is at all, but the only 
example I could find had that in the main options area.


thanks,
ddh



___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: dhcp options 226 and 227

2009-03-30 Thread Mark Andrews 

Try the next list over, dhcp-us...@isc.org.

Also see https://www.isc.org/software/dhcp/documentation

In message 20090330124035.7mp9s88srossk...@mail.harrisonburg.k12.va.us, 
dhottin...@harrisonburg.k12.va.us writes:
 Im trying to figure out how to add options 226 and 227 to my dhcp  
 server.  I have not been able to find much about this through google.   
 Has anyone implemented these options for their dhcp server?  I added  
 the following to my dhcpd.conf (main file)
 
 option option-226 code 226 = array of integer 8;
 option option-227 code 227 = ip-address;
 
 
  option option-226   10,40,0,29;
  option option-227   10.40.0.29;
 
 Im not sure what the array of integer 8 is at all, but the only  
 example I could find had that in the main options area.
 
 thanks,
 ddh
 
 
 -- 
 Dwayne Hottinger
 Network Administrator
 Harrisonburg City Public Schools
 
 Everything should be made as simple as possible, but not simpler.
 -- Albert Einstein
 
 The hottest places in Hell are reserved for those who, in times of moral
 crisis, preserved their neutrality.
 -- Dante
 
 ___
 bind-users mailing list
 bind-users@lists.isc.org
 https://lists.isc.org/mailman/listinfo/bind-users
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: mark_andr...@isc.org
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: dhcp options 226 and 227

2009-03-30 Thread dhottinger 

Oops,
Sorry.

Quoting Andy Shellam andy-li...@networkmail.eu:


ddh,

You're on the BIND list.  Try dhcp-users
(https://lists.isc.org/mailman/listinfo/dhcp-users) instead.

Regards.
Andy

dhottin...@harrisonburg.k12.va.us wrote:
Im trying to figure out how to add options 226 and 227 to my dhcp   
server.  I have not been able to find much about this through   
google.  Has anyone implemented these options for their dhcp   
server?  I added the following to my dhcpd.conf (main file)


option option-226 code 226 = array of integer 8;
option option-227 code 227 = ip-address;


   option option-226   10,40,0,29;
   option option-227   10.40.0.29;

Im not sure what the array of integer 8 is at all, but the only   
example I could find had that in the main options area.


thanks,
ddh






--
Dwayne Hottinger
Network Administrator
Harrisonburg City Public Schools

Everything should be made as simple as possible, but not simpler.
-- Albert Einstein

The hottest places in Hell are reserved for those who, in times of moral
crisis, preserved their neutrality.
-- Dante

___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: update with no effect

2009-03-30 Thread Kevin Darcy 

Lars Hecking wrote:

 I have started seeing these entries in named.log:

29-Mar-2009 05:02:35.467 general: warning: update with no effect
29-Mar-2009 05:02:35.468 general: warning: update with no effect
29-Mar-2009 05:02:35.469 general: warning: update with no effect
29-Mar-2009 05:02:35.470 general: warning: update with no effect
29-Mar-2009 05:02:35.471 general: warning: update with no effect
29-Mar-2009 05:02:35.472 general: warning: update with no effect
29-Mar-2009 05:02:35.478 general: warning: update with no effect
29-Mar-2009 05:02:35.479 general: warning: update with no effect
29-Mar-2009 05:02:35.480 general: warning: update with no effect
29-Mar-2009 05:02:35.481 general: warning: update with no effect
29-Mar-2009 05:02:35.482 general: warning: update with no effect
29-Mar-2009 05:02:35.483 general: warning: update with no effect
29-Mar-2009 05:02:35.484 general: warning: update with no effect

 What is that about? This is bind 9.4.2-P2 on Solaris 8.
  
If I had to guess, I'd say it's probably a broken IXFR implementation on 
the other end:


if (result == DNS_R_UNCHANGED) {
/*
* This will not happen when executing a
* dynamic update, because that code will
* generate strictly minimal diffs.
* It may happen when receiving an IXFR
* from a server that is not as careful.
* Issue a warning and continue.
*/
if (warn)
isc_log_write(DIFF_COMMON_LOGARGS,
ISC_LOG_WARNING,
update with no effect);

It would be nice to have the zone name and/or master server name in the 
error message. Maybe that was added in a later version (too lazy to 
check right now :-)


- Kevin


___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: NOTIFY from masters when slave provides several views

2009-03-30 Thread Barry Margolin 
In article gqq1nm$2tc...@sf1.isc.org, terry+bindus...@tmk.com wrote:

 Let me clarify - for a zone in more than one of the views, that zone's
   data doesn't vary by zone. The internal view has some zones not found
   in the customer or external views.
 
  This sounds like a job for the allow-query option in the zone statements.
 
   I should have mentioned that I tried that, but got:
 option 'allow-query' is not allowed in 'forward' zone 'xxx.yyy.com'
 
   In fact, that's what forced me into views in the first place.

Since forwarding is part of recursion, this will be handled by the 
allow-recursion global option.

 
  
 Also, the external view doesn't provide recursion, while the customer
   and internal ones do.
 
  And this is a job for allow-query and allow-query-cache.

Sorry, I meant allow-recursion there.

   What's the deal with allow-query? I did some lookups from a host on an
 outside net (not in either the internal or customer views) and the server
 answered queries for the zones it hosted regardless of whether it was set
 to allow-query { internal; customer; }; or allow-query { any; };.

Do you still have views configured?  I think the view options override 
the global options.

-- 
Barry Margolin, bar...@alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users