Re: Response Rate Limiting Patch
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Fri, 2013-05-10 at 11:41 -0500, Wilson, Lesley-Anne wrote: Has anyone here implemented Response Rate Limiting? Yes. If so have you experienced any bugs with the RRL Patch for BIND 9.9.2? No. Can the feature be implemented successfully without implementing the patch that includes DNSRPZ as well? I am not sure - I picked the rpz+rl-9.9.2-P2.patch, md5sum rpz+rl-9.9.2-P2.patch ec4097a09e91afaa5f9b43e026e4c1b1 rpz+rl-9.9.2-P2.patch It is working nicely here in production. http://www.five-ten-sg.com/mapper/bind -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.14 (GNU/Linux) iEYEARECAAYFAlGNJfwACgkQL6j7milTFsGD9ACfaNabdRSwyV5ZhvIBc4oeB8QM OPwAnAkSPRmmoFfvhycfuBkbS8x35A4R =nvmN -END PGP SIGNATURE- ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Response Rate Limiting Patch
On 10/05/13 17:41, Wilson, Lesley-Anne wrote: Hello, Has anyone here implemented Response Rate Limiting? If so have you Yes, recently. experienced any bugs with the RRL Patch for BIND 9.9.2? Can the feature No bugs. I'm not a huge fan of the logging categories, but that's a personal thing ;o) be implemented successfully without implementing the patch that includes DNSRPZ as well? No idea. RPZ is already in bind 9.9. All the patch does it improve performance in some cases, AIUI. If you don't want RPZ, don't turn it on. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Response Rate Limiting Patch
Thanks for the quick responses guys. Regards, Lesley-Anne Wilson On 10 May 2013 11:41, Wilson, Lesley-Anne lesley-anne.wil...@time4lime.comwrote: Hello, Has anyone here implemented Response Rate Limiting? If so have you experienced any bugs with the RRL Patch for BIND 9.9.2? Can the feature be implemented successfully without implementing the patch that includes DNSRPZ as well? Regards, Lesley-Anne Wilson -- * * -- *Attention:* This e-mail message has been scanned for viruses and content. The information contained in this e-mail is confidential and may also be subject to legal privilege. It is intended only for the recipient(s) named above. If you are not named above as a recipient, you must not read, copy, disclose, forward or otherwise use the information contained in this e-mail. If you have received this e-mail in error, please notify the sender (whose contact details are above) immediately by reply e-mail and delete the message and any attachments without retaining any copies. -- ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users