subject:"Re\: Fwd\: Facing weird issue with DNS\-RPZ"

Re: Fwd: Facing weird issue with DNS-RPZ

2018-04-26 Thread Carl Byington

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

On Wed, 2018-04-25 at 19:30 +0530, Blason R wrote:
> I tried that couple of times on CentOS and it fails :(.

http://www.five-ten-sg.com/mapper/bind

I just updated the instructions. It looks like the built-in tests (that
are normally run as part of the build) require some IPv6. If you
disabled IPv6, you should be able to build with "--define 'test 0'"

Was there any other failure?


-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.14 (GNU/Linux)

iEYEAREKAAYFAlrgzpYACgkQL6j7milTFsGMiQCgijHwoOI9VMhatAhuI/sOarmy
izcAoIssuYMdqgGbsTit5crgq8SrKSWf
=jvJE
-END PGP SIGNATURE-


___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Fwd: Facing weird issue with DNS-RPZ

2018-04-25 Thread Blason R

I do not have IPv6 disable its just a plain CentOS where I am compiling.

Thanks for the info though.

On Thu, Apr 26, 2018 at 2:32 AM, Carl Byington  wrote:

> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA512
>
> On Wed, 2018-04-25 at 19:30 +0530, Blason R wrote:
> > I tried that couple of times on CentOS and it fails :(.
>
> http://www.five-ten-sg.com/mapper/bind
>
> I just updated the instructions. It looks like the built-in tests (that
> are normally run as part of the build) require some IPv6. If you
> disabled IPv6, you should be able to build with "--define 'test 0'"
>
> Was there any other failure?
>
>
> -BEGIN PGP SIGNATURE-
> Version: GnuPG v2.0.14 (GNU/Linux)
>
> iEYEAREKAAYFAlrgzpYACgkQL6j7milTFsGMiQCgijHwoOI9VMhatAhuI/sOarmy
> izcAoIssuYMdqgGbsTit5crgq8SrKSWf
> =jvJE
> -END PGP SIGNATURE-
>
>
>
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to
> unsubscribe from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
>
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Fwd: Facing weird issue with DNS-RPZ

2018-04-25 Thread Carl Byington

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

On Wed, 2018-04-25 at 19:30 +0530, Blason R wrote:
> I tried that couple of times on CentOS and it fails :(.

http://www.five-ten-sg.com/mapper/bind

I just updated the instructions. It looks like the built-in tests (that
are normally run as part of the build) require some IPv6. If you
disabled IPv6, you should be able to build with "--define 'test 0'"

Was there any other failure?


-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.14 (GNU/Linux)

iEYEAREKAAYFAlrgzpYACgkQL6j7milTFsGMiQCgijHwoOI9VMhatAhuI/sOarmy
izcAoIssuYMdqgGbsTit5crgq8SrKSWf
=jvJE
-END PGP SIGNATURE-



___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Fwd: Facing weird issue with DNS-RPZ

2018-04-25 Thread Blason R

Hey,

I tried that couple of times on CentOS and it fails :(.

I would really appreciate if someone has already compiled RPM and can share
it?

On Wed, Apr 25, 2018 at 11:52 AM, G.W. Haywood via bind-users <
bind-users@lists.isc.org> wrote:

> Hi there,
>
> On Wed, 25 Apr 2018, Blason R wrote:
>
> Unfortunately neither RHEL nor CentOS gives RPM for 9.10+ and really
>> compiling and building is really pain and time consuming.
>> Hence I decided to give a try with Ubuntu 16.04 and any ways within few
>> days 18.04 is coming out with 9.11.
>>
>
> Date: Wed, 17 Jan 2018 08:52:30 -0800
> From: Carl Byington 
> To: bind-users@lists.isc.org
> Subject: RHEL, Centos, Fedora rpm 9.11.2-P1
> Message-ID: <1516207950.16446.8.ca...@ns.five-ten-sg.com>
> Content-Type: text/plain; charset="UTF-8"
>
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA512
>
> http://www.five-ten-sg.com/mapper/bind contains links to the source
> rpms, and build instructions.
>
>
> -BEGIN PGP SIGNATURE-
> Version: GnuPG v2.0.14 (GNU/Linux)
>
> iEYEAREKAAYFAlnS18UACgkQL6j7milTFsGZfgCbBIUaYjY+AbTUz6X6xHJN4m1M
> tXgAniEvP2Nd/1IW+PBUXRSnJq716Whe
> =ILkA
> -END PGP SIGNATURE-
>
> --
>
> 73,
> Ged.
> ___
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to
> unsubscribe from this list
>
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
>
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Fwd: Facing weird issue with DNS-RPZ

2018-04-24 Thread G.W. Haywood via bind-users


Hi there,

On Wed, 25 Apr 2018, Blason R wrote:


Unfortunately neither RHEL nor CentOS gives RPM for 9.10+ and really
compiling and building is really pain and time consuming.
Hence I decided to give a try with Ubuntu 16.04 and any ways within few
days 18.04 is coming out with 9.11.


Date: Wed, 17 Jan 2018 08:52:30 -0800
From: Carl Byington 
To: bind-users@lists.isc.org
Subject: RHEL, Centos, Fedora rpm 9.11.2-P1
Message-ID: <1516207950.16446.8.ca...@ns.five-ten-sg.com>
Content-Type: text/plain; charset="UTF-8"

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

http://www.five-ten-sg.com/mapper/bind contains links to the source
rpms, and build instructions.


-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.14 (GNU/Linux)

iEYEAREKAAYFAlnS18UACgkQL6j7milTFsGZfgCbBIUaYjY+AbTUz6X6xHJN4m1M
tXgAniEvP2Nd/1IW+PBUXRSnJq716Whe
=ILkA
-END PGP SIGNATURE-

--

73,
Ged.
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Fwd: Facing weird issue with DNS-RPZ

2018-04-24 Thread Blason R

Ok got the issue and fixed it was long zone which was causing issue.

On Wed, Apr 25, 2018 at 10:28 AM, Blason R  wrote:

> Whoo..what is this all about guys? Is there any limit for zones?
>
>Active: active (running) since Wed 2018-04-25 10:25:27 IST; 2s ago
>  Docs: man:named(8)
>   Process: 4085 ExecStop=/usr/sbin/rndc stop (code=exited,
> status=0/SUCCESS)
>  Main PID: 4091 (named)
> Tasks: 7
>Memory: 146.1M
>   CPU: 1.527s
>CGroup: /system.slice/bind9.service
>└─4091 /usr/sbin/named -f -u bind
>
> Apr 25 10:25:27 dnsfw named[4091]: managed-keys-zone: loaded serial 13
> Apr 25 10:25:27 dnsfw named[4091]: zone 0.in-addr.arpa/IN: loaded serial 1
> Apr 25 10:25:27 dnsfw named[4091]: zone localhost/IN: loaded serial 2
> Apr 25 10:25:27 dnsfw named[4091]: zone 255.in-addr.arpa/IN: loaded serial
> 1
> Apr 25 10:25:27 dnsfw named[4091]: zone 127.in-addr.arpa/IN: loaded serial
> 1
> *Apr 25 10:25:28 dnsfw named[4091]: dns_master_load:
> /etc/bind/isnlab.in.db:345703: ran out of space*
> *Apr 25 10:25:28 dnsfw named[4091]: zone isnlab.in/IN
> : loading from master file /etc/bind/isnlab.in.db
> failed: ran out of space*
> *Apr 25 10:25:28 dnsfw named[4091]: zone isnlab.in/IN
> : not loaded due to errors.*
>
> *I have around 300+ zones*
>
> *root@dnsfw:/etc/bind# named -v*
> *BIND 9.10.3-P4-Ubuntu *
>
>
> On Wed, Apr 25, 2018 at 8:52 AM, Blason R  wrote:
>
>> Unfortunately neither RHEL nor CentOS gives RPM for 9.10+ and really
>> compiling and building is really pain and time consuming.
>> Hence I decided to give a try with Ubuntu 16.04 and any ways within few
>> days 18.04 is coming out with 9.11.
>>
>> BTW is 9.11 branch stable?
>>
>> On Wed, Apr 25, 2018 at 8:03 AM, Mukund Sivaraman  wrote:
>>
>>> On Tue, Apr 24, 2018 at 07:25:45PM -0700, Ray Van Dolson wrote:
>>> > On Tue, Apr 24, 2018 at 07:21:34PM -0700, Mukund Sivaraman wrote:
>>> > > On Tue, Apr 24, 2018 at 06:03:43PM +0530, Blason R wrote:
>>> > > > I am building DNS RPZ on named BIND 9.9.4-RedHat-9.9.4-51.el7_4.2
>>> > > > (Extended Support Version).
>>> > >
>>> > > RPZ in BIND 9.9 is experimental and unsupported (except for the
>>> > > subscription branch). Please use at least BIND 9.10 for RPZ.
>>> > >
>>> >
>>> > We've been using RPZ in RHEL6-provided BIND (based on BIND 9.8.2)
>>> > (based on BIND 9.8.2).
>>> >
>>> > No issues.  Unsure if Red Hat backports the "more stable" code?
>>>
>>> I doubt it. But speaking for ISC BIND, 9.10+ is the only RPZ code we
>>> bugfix and there have been a lot of bugs fixed.
>>>
>>> Mukund
>>>
>>
>>
>
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Fwd: Facing weird issue with DNS-RPZ

2018-04-24 Thread Blason R

Whoo..what is this all about guys? Is there any limit for zones?

   Active: active (running) since Wed 2018-04-25 10:25:27 IST; 2s ago
 Docs: man:named(8)
  Process: 4085 ExecStop=/usr/sbin/rndc stop (code=exited, status=0/SUCCESS)
 Main PID: 4091 (named)
Tasks: 7
   Memory: 146.1M
  CPU: 1.527s
   CGroup: /system.slice/bind9.service
   └─4091 /usr/sbin/named -f -u bind

Apr 25 10:25:27 dnsfw named[4091]: managed-keys-zone: loaded serial 13
Apr 25 10:25:27 dnsfw named[4091]: zone 0.in-addr.arpa/IN: loaded serial 1
Apr 25 10:25:27 dnsfw named[4091]: zone localhost/IN: loaded serial 2
Apr 25 10:25:27 dnsfw named[4091]: zone 255.in-addr.arpa/IN: loaded serial 1
Apr 25 10:25:27 dnsfw named[4091]: zone 127.in-addr.arpa/IN: loaded serial 1
*Apr 25 10:25:28 dnsfw named[4091]: dns_master_load:
/etc/bind/isnlab.in.db:345703: ran out of space*
*Apr 25 10:25:28 dnsfw named[4091]: zone isnlab.in/IN
: loading from master file /etc/bind/isnlab.in.db
failed: ran out of space*
*Apr 25 10:25:28 dnsfw named[4091]: zone isnlab.in/IN
: not loaded due to errors.*

*I have around 300+ zones*

*root@dnsfw:/etc/bind# named -v*
*BIND 9.10.3-P4-Ubuntu *


On Wed, Apr 25, 2018 at 8:52 AM, Blason R  wrote:

> Unfortunately neither RHEL nor CentOS gives RPM for 9.10+ and really
> compiling and building is really pain and time consuming.
> Hence I decided to give a try with Ubuntu 16.04 and any ways within few
> days 18.04 is coming out with 9.11.
>
> BTW is 9.11 branch stable?
>
> On Wed, Apr 25, 2018 at 8:03 AM, Mukund Sivaraman  wrote:
>
>> On Tue, Apr 24, 2018 at 07:25:45PM -0700, Ray Van Dolson wrote:
>> > On Tue, Apr 24, 2018 at 07:21:34PM -0700, Mukund Sivaraman wrote:
>> > > On Tue, Apr 24, 2018 at 06:03:43PM +0530, Blason R wrote:
>> > > > I am building DNS RPZ on named BIND 9.9.4-RedHat-9.9.4-51.el7_4.2
>> > > > (Extended Support Version).
>> > >
>> > > RPZ in BIND 9.9 is experimental and unsupported (except for the
>> > > subscription branch). Please use at least BIND 9.10 for RPZ.
>> > >
>> >
>> > We've been using RPZ in RHEL6-provided BIND (based on BIND 9.8.2)
>> > (based on BIND 9.8.2).
>> >
>> > No issues.  Unsure if Red Hat backports the "more stable" code?
>>
>> I doubt it. But speaking for ISC BIND, 9.10+ is the only RPZ code we
>> bugfix and there have been a lot of bugs fixed.
>>
>> Mukund
>>
>
>
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Fwd: Facing weird issue with DNS-RPZ

2018-04-24 Thread Blason R

Unfortunately neither RHEL nor CentOS gives RPM for 9.10+ and really
compiling and building is really pain and time consuming.
Hence I decided to give a try with Ubuntu 16.04 and any ways within few
days 18.04 is coming out with 9.11.

BTW is 9.11 branch stable?

On Wed, Apr 25, 2018 at 8:03 AM, Mukund Sivaraman  wrote:

> On Tue, Apr 24, 2018 at 07:25:45PM -0700, Ray Van Dolson wrote:
> > On Tue, Apr 24, 2018 at 07:21:34PM -0700, Mukund Sivaraman wrote:
> > > On Tue, Apr 24, 2018 at 06:03:43PM +0530, Blason R wrote:
> > > > I am building DNS RPZ on named BIND 9.9.4-RedHat-9.9.4-51.el7_4.2
> > > > (Extended Support Version).
> > >
> > > RPZ in BIND 9.9 is experimental and unsupported (except for the
> > > subscription branch). Please use at least BIND 9.10 for RPZ.
> > >
> >
> > We've been using RPZ in RHEL6-provided BIND (based on BIND 9.8.2)
> > (based on BIND 9.8.2).
> >
> > No issues.  Unsure if Red Hat backports the "more stable" code?
>
> I doubt it. But speaking for ISC BIND, 9.10+ is the only RPZ code we
> bugfix and there have been a lot of bugs fixed.
>
> Mukund
>
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Fwd: Facing weird issue with DNS-RPZ

2018-04-24 Thread Mukund Sivaraman

On Tue, Apr 24, 2018 at 07:25:45PM -0700, Ray Van Dolson wrote:
> On Tue, Apr 24, 2018 at 07:21:34PM -0700, Mukund Sivaraman wrote:
> > On Tue, Apr 24, 2018 at 06:03:43PM +0530, Blason R wrote:
> > > I am building DNS RPZ on named BIND 9.9.4-RedHat-9.9.4-51.el7_4.2
> > > (Extended Support Version).
> > 
> > RPZ in BIND 9.9 is experimental and unsupported (except for the
> > subscription branch). Please use at least BIND 9.10 for RPZ.
> > 
> 
> We've been using RPZ in RHEL6-provided BIND (based on BIND 9.8.2)
> (based on BIND 9.8.2).
> 
> No issues.  Unsure if Red Hat backports the "more stable" code?

I doubt it. But speaking for ISC BIND, 9.10+ is the only RPZ code we
bugfix and there have been a lot of bugs fixed.

Mukund
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Fwd: Facing weird issue with DNS-RPZ

2018-04-24 Thread Ray Van Dolson

On Tue, Apr 24, 2018 at 07:21:34PM -0700, Mukund Sivaraman wrote:
> On Tue, Apr 24, 2018 at 06:03:43PM +0530, Blason R wrote:
> > I am building DNS RPZ on named BIND 9.9.4-RedHat-9.9.4-51.el7_4.2
> > (Extended Support Version).
> 
> RPZ in BIND 9.9 is experimental and unsupported (except for the
> subscription branch). Please use at least BIND 9.10 for RPZ.
> 
>   Mukund

We've been using RPZ in RHEL6-provided BIND (based on BIND 9.8.2)
(based on BIND 9.8.2).

No issues.  Unsure if Red Hat backports the "more stable" code?

Ray
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Fwd: Facing weird issue with DNS-RPZ

2018-04-24 Thread Mukund Sivaraman

On Tue, Apr 24, 2018 at 06:03:43PM +0530, Blason R wrote:
> I am building DNS RPZ on named BIND 9.9.4-RedHat-9.9.4-51.el7_4.2
> (Extended Support Version).

RPZ in BIND 9.9 is experimental and unsupported (except for the
subscription branch). Please use at least BIND 9.10 for RPZ.

Mukund
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Fwd: Facing weird issue with DNS-RPZ

Re: Fwd: Facing weird issue with DNS-RPZ

Re: Fwd: Facing weird issue with DNS-RPZ

Re: Fwd: Facing weird issue with DNS-RPZ

Re: Fwd: Facing weird issue with DNS-RPZ

Re: Fwd: Facing weird issue with DNS-RPZ

Re: Fwd: Facing weird issue with DNS-RPZ

Re: Fwd: Facing weird issue with DNS-RPZ

Re: Fwd: Facing weird issue with DNS-RPZ

Re: Fwd: Facing weird issue with DNS-RPZ

Re: Fwd: Facing weird issue with DNS-RPZ

11 matches

Site Navigation

Mail list logo

Footer information