Re: Configuring the location of named .jnl files
zone example {
…;
journal ;
};
> On 26 Apr 2021, at 09:38, Ivan Avery Frey wrote:
>
> I'm trying to obtain certificates from Let's Encrypt using the DNS-01
> challenge method.
>
> I just want to confirm that there is no option to configure the
> directory for the .jnl files independently of the zone files.
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> ISC funds the development of this software with paid support subscriptions.
> Contact us at https://www.isc.org/contact/ for more information.
>
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
ISC funds the development of this software with paid support subscriptions.
Contact us at https://www.isc.org/contact/ for more information.
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Configuring the location of named .jnl files
I'm trying to obtain certificates from Let's Encrypt using the DNS-01 challenge method. I just want to confirm that there is no option to configure the directory for the .jnl files independently of the zone files. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: GeoIP ACL
On Sun, Apr 25, 2021 at 01:47:31PM +0530, Sachchidanand Upadhyay via bind-users
wrote:
> I am using geoip based ACL to restrict traffic. Now I want to allow all
> country traffic except two or three, like i want to allow all traffic
> except country A, B and C.
>
> Can anyone give an example to achieve the same?
match-clients { !geoip country A; !geoip country B; !geoip country C; any; };
--
Evan Hunt -- e...@isc.org
Internet Systems Consortium, Inc.
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
ISC funds the development of this software with paid support subscriptions.
Contact us at https://www.isc.org/contact/ for more information.
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: nsupdate and zone files, was Re: Using RNDC to control remote access to my BIND server
Paul Kosinski via bind-users wrote: > A couple of years ago, I tried using nsupdate to modify a dynamic (DHCP) > IP address for my very simple domain. It worked, except that it totally > messed up the organization of the zone file. Since the file only has 44 > active lines (which are organized logically), I maintain it by hand. > After nsupdate made the one line change, the zone file became > unmaintainable. > > Was this a bug in nsupdate, or does nobody try to understand their zone > files. When you have a zone that accepts dynamic updates, then its zone file is owned by `named`, and `named` will rewrite the file to incorporate updates, which (as you saw) also strips out comments and canonicalized the formatting. This is often surprising and upsetting to people who are new to dynamic updates - you are not alone! Basically, if you are doing dynamic updates, then the source of truth for your zone needs to be somewhere else, not the zone file used by `named`. (For example, at my work our zones are stored in a database and edited with a web front end.) I have some scripts which allow you to maintain your zone file however you want, and push any differences into `named` using `nsupdate`, so you never need to touch the zone files that it owns. https://dotat.at/prog/nsdiff/ Tony. -- f.anthony.n.finchhttps://dotat.at/ Lyme Regis to Lands End including the Isles of Scilly: Easterly or northeasterly 5 to 7, occasionally 4 in east. Moderate or rough. Fair. Good. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
GeoIP ACL
Hi, I am using geoip based ACL to restrict traffic. Now I want to allow all country traffic except two or three, like i want to allow all traffic except country A, B and C. Can anyone give an example to achieve the same? BR, Sachchidanand ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
