Re: Choosing A records based on hosts' load?
On 18/01/2021 09:20, Matus UHLAR - fantomas wrote: This is not problem for BIND nor for DNS. Due to DNS caching it won't work properly and if you shorten the TTLs, at first DNS issue it will fail globally. Sometimes, rather than explain all the issues (and there are many!) that you will encounter trying this method, I think it is better to just give someone the tools (with a warning), and let them discover all the problems for themselves. People are often set in their ways to trying to achieve something, and the only way to convince them that it is not good practice is to give them the tools to attempt it, and let them discover why it doesn't work as they expected. Install some load balancers in front of those servers. Yes - that is the best option. -- Giles Coochey ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Choosing A records based on hosts' load?
On 18/01/2021 09:04, Marek Kozlowski wrote: The problem is: I'm supervising the BIND. I'm NOT supervising the other servers. Their admins requested such a solution. Personally I agree with your opinion but... The question is: is there such a ready solution as I described? As others mentioned, this often will not work unless all your clients are directly accessing the DNS server for their requests (e.g. an internal authoritative server). I don't know how this can be achieved with Bind, but you can achieve it with LUA in PowerDNS. https://doc.powerdns.com/authoritative/lua-records/ -- Giles Coochey ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Question about swupdl.adobe.com
On 09/10/2014 12:24, IDS Submit wrote: Good morning, I have BIND 9.10.1 x86 and I have error on query swupdl.adobe.com -- swupdl.adobe.com Server: dns1.ids.it Address: 81.174.15.142 *** dns1.ids.it non รจ in grado di trovare swupdl.adobe.com: Non-existent domain -- See below... ;; ANSWER SECTION: swupdl.adobe.com. 5274IN CNAME swupdl.wip4.adobe.com. swupdl.wip4.adobe.com. 67 IN CNAME swupdl.adobe.com.edgesuite.net. swupdl.adobe.com.edgesuite.net. 794 IN CNAME a1577.d.akamai.net. a1577.d.akamai.net. 19 IN A 2.18.240.203 a1577.d.akamai.net. 19 IN A 2.18.240.210 It looks like adobe are entertaining use of a CNAME chain (a CNAME to a CNAME which points to a CNAME which points to a CNAME which eventually points to an A record). I expect that the upstream server to dns1.ids.it doesn't implement this level of recursion and as such doesn't return the full details. Thanks -- Regards, Giles Coochey, CCNP, CCNA, CCNAS NetSecSpec Ltd +44 (0) 8444 780677 +44 (0) 7584 634135 http://www.coochey.net http://www.netsecspec.co.uk gi...@coochey.net smime.p7s Description: S/MIME Cryptographic Signature ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: How can I migrate my Domain from ISP hosted to my own BIND server?
On 14/12/2012 09:55, Manish Rane wrote: Hi Team, I need to migrate my domain which is hosted at my ISP on to my own internal BIND server and have my own NS record. Does anyone steps I need to take care of or complete procedure? You need to consider some things: Do you have the infrastructure to host your own domain. i.e. If the place where one of your name servers was located was obliterated off the planet would you still be able to serve your DNS records? Does your infrastructure have the resiliency and necessary uptime to provide your for your requirements now and in the future? Are you prepared to assign resources maintaining that uptime? If it is just you, and you're in the bar when your server(s) go down, are you going to be prepared to go and fix it or wait until the morning? If you wait until the morning are you going to be prepared to deal with the application fallout that your DNS being unavailable caused (e.g. not receiving emails for up to 4 days, finding that your users have all been unsubscribed from mailinglists etc...) Having said that, just assign a external static IPs to your name servers and contact your registrar of your domain to update their DNS records. -- Regards, Giles Coochey, CCNA, CCNAS NetSecSpec Ltd +44 (0) 7983 877438 http://www.coochey.net http://www.netsecspec.co.uk gi...@coochey.net smime.p7s Description: S/MIME Cryptographic Signature ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: logging to syslog on another host?
On 30/05/2012 11:16, Sten Carlsen wrote: Hi I was considering to use the syslog on a different host for logging from bind. The purpose was to collect logs from various places into one repository. This is not a busy installation so performance is not expected to be a problem. I looked in the arm but could not see where I could put the IP/hostname of the host to receive the syslog. Question: Can bind send its logging output to an external syslog? If it can, what is needed in terms of version etc.? How to put this into log statement? Thanks in advance. The normal way to achieve this is to log to syslog as normal. Then configure syslog daemon to log remotely. -- Regards, Giles Coochey, CCNA, CCNAS NetSecSpec Ltd +44 (0) 7983 877438 http://www.coochey.net http://www.netsecspec.co.uk gi...@coochey.net smime.p7s Description: S/MIME Cryptographic Signature ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Is bind support conditionally resolution?
On Tue, January 10, 2012 08:04, Drunkard Zhang wrote: I am designing a big deploy system, which will implement via DNS. The demond is misc, one of them is conditionally resolve, which means that if one CDN node near unavailable, or latency increased significantly, no matter why, I want bind to give another second best result, which located in distant places. Is bind support this natively? Or I have to write external program? If bind doesn't support, is there any other DNS impletions I can try? ___ F5 have an entire product range of Load Balancers, which with a combination of Link Controllers, Global Traffic Managers as well as standard Local Traffic load-balancing can control traffic in a particularly fine-grained way. Their product range is utlised by quite a few big-players in conjunction with CDNs such as Akamai etc... I suspect their pricing will turn out to be quite expensive, but if you need specific 'dynamic' DNS resolution, based on latency, client IP geo-location etc... then they are the commercial solution I would consider. I am sure that many other companies have similar product offerings (so as not to make this a specific plug for a commercial product on a non-commercial mailing list). ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
