Re: Root servers
On 16/08/2014 04:55, Bill Christensen wrote: > Interesting. I'm running BIND 9.10.0-P2. Apparently the package system > I'm using (MacPorts) isn't updating the root servers file though. > > I'll report the problem there. Meantime, I'll download the recent one > and see if that makes a difference. I'd advise packagers to stop shipping a root hints file with BIND. It's perfectly capable of using its built-in list to do a priming query. The built-in list is kept up-to-date by ISC, so you'll always have the latest copy when you update BIND. I generate pull requests for the BIND port in Homebrew, and I fixed it some time ago by deleting the root hints file. Anand ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Root servers
On 8/15/14 9:42 AM, /dev/rob0 wrote: On Fri, Aug 15, 2014 at 10:14:09AM -0400, Thomas Schulz wrote: I wrote: On Thu, Aug 14, 2014 at 02:26:54PM -0500, Bill Christensen wrote: It looks like my root pointers are horribly out of date. Seems to me this is something which should automatically update... Not much, and yes. ; This file is made available by InterNIC ; under anonymous FTP as ; file/domain/named.root ; on server FTP.INTERNIC.NET ; -OR-RS.INTERNIC.NET ; ; last update:Feb 04, 2008 ; related version of root zone: 2008020400 That's old, but not so old as to prevent you from reaching an actual root server. Of course it was 2 years before the root was signed. I will add my $0.02. The named executable has the root information built in so that it can start up if there is no named.root file available. So, if you had no named.root file but did have the latest release of Bind then you would have the current data. If you do not update Bind the moment that a new version is released then you need a current named.root file. Not really. There are enough valid servers from 2008020400 to be able to resolve ./IN/NS now. In fact I bet you could turn on an ancient BIND 4 today and still be able to resolve the root. Just go get a new one from the server listed at the top of the old file. Sure, that's good advice, which is why I left it in the posted message. But probably better advice is to upgrade to a supported BIND version. If the OS is so old to be have a 2008020400 hint file, it probably means no updates have been done along the way. Interesting. I'm running BIND 9.10.0-P2. Apparently the package system I'm using (MacPorts) isn't updating the root servers file though. I'll report the problem there. Meantime, I'll download the recent one and see if that makes a difference. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Root servers
In article , sch...@adi.com (Thomas Schulz) wrote: > I will add my $0.02. The named executable has the root information built > in so that it can start up if there is no named.root file available. > So, if you had no named.root file but did have the latest release of > Bind then you would have the current data. If you do not update Bind > the moment that a new version is released then you need a current > named.root file. Just go get a new one from the server listed at the > top of the old file. One of the first things that BIND does after startup is contact one of the root servers that it knows about, either from its named.root file or the ones hard-coded into the executable, and ask it for the current list of root servers. So you only really need to a named.root file if the executable is so old that none of the hard-coded IPs still work (that's unlikely to ever happen), or some of the IPs have been reassigned to untrusted servers (I expect that IANA takes care not to allow this). -- Barry Margolin Arlington, MA ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Root servers
On Fri, Aug 15, 2014 at 10:14:09AM -0400, Thomas Schulz wrote: I wrote: > > On Thu, Aug 14, 2014 at 02:26:54PM -0500, Bill Christensen wrote: > > > It looks like my root pointers are horribly out of date. Seems > > > to me this is something which should automatically update... > > > > Not much, and yes. > > > > > ; This file is made available by InterNIC > > > ; under anonymous FTP as > > > ; file/domain/named.root > > > ; on server FTP.INTERNIC.NET > > > ; -OR-RS.INTERNIC.NET > > > ; > > > ; last update:Feb 04, 2008 > > > ; related version of root zone: 2008020400 > > > > That's old, but not so old as to prevent you from reaching an > > actual root server. Of course it was 2 years before the root > > was signed. > > I will add my $0.02. The named executable has the root information > built in so that it can start up if there is no named.root file > available. So, if you had no named.root file but did have the > latest release of Bind then you would have the current data. If you > do not update Bind the moment that a new version is released then > you need a current named.root file. Not really. There are enough valid servers from 2008020400 to be able to resolve ./IN/NS now. In fact I bet you could turn on an ancient BIND 4 today and still be able to resolve the root. > Just go get a new one from the > server listed at the top of the old file. Sure, that's good advice, which is why I left it in the posted message. But probably better advice is to upgrade to a supported BIND version. If the OS is so old to be have a 2008020400 hint file, it probably means no updates have been done along the way. -- http://rob0.nodns4.us/ Offlist GMX mail is seen only if "/dev/rob0" is in the Subject: ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Root servers
> On Thu, Aug 14, 2014 at 02:26:54PM -0500, Bill Christensen wrote: > > I'm seeing some root server errors on startup: > > > > 14-Aug-2014 13:14:08.142 info: host unreachable resolving > > 'd.gtld-servers.net//IN': 2001:503:ba3e::2:30#53 > > 14-Aug-2014 13:14:08.215 info: host unreachable resolving > > 'b.gtld-servers.net/A/IN': 2001:503:231d::2:30#53 > > 14-Aug-2014 13:14:08.220 info: host unreachable resolving > > 'c.gtld-servers.net/A/IN': 2001:503:231d::2:30#53 > > 14-Aug-2014 13:14:08.522 info: host unreachable resolving > > 'd.gtld-servers.net//IN': 2001:503:83eb::2:31#53 > > 14-Aug-2014 13:14:08.595 info: host unreachable resolving > > 'c.gtld-servers.net/A/IN': 2001:503:a83e::2:31#53 > > 14-Aug-2014 13:14:08.793 info: host unreachable resolving > > 'b.gtld-servers.net//IN': 2001:503:c27::2:30#53 > > 14-Aug-2014 13:14:08.794 info: host unreachable resolving > > 'b.gtld-servers.net//IN': 2001:dc3::35#53 > > 14-Aug-2014 13:14:08.795 info: host unreachable resolving > > 'c.gtld-servers.net//IN': 2001:503:c27::2:30#53 > > 14-Aug-2014 13:14:08.796 info: host unreachable resolving > > 'c.gtld-servers.net//IN': 2001:dc3::35#53 > > > > > > How do I correct that? > > It looks like your system thinks it has IPv6 connectivity, but it > doesn't really have it. You can disable IPv6 at the OS level or: > "named -4". > > > It looks like my root pointers are horribly out of date. Seems > > to me this is something which should automatically update... > > Not much, and yes. > > > ; This file is made available by InterNIC > > ; under anonymous FTP as > > ; file/domain/named.root > > ; on server FTP.INTERNIC.NET > > ; -OR-RS.INTERNIC.NET > > ; > > ; last update:Feb 04, 2008 > > ; related version of root zone: 2008020400 > > That's old, but not so old as to prevent you from reaching an actual > root server. Of course it was 2 years before the root was signed. > -- > http://rob0.nodns4.us/ > Offlist GMX mail is seen only if "/dev/rob0" is in the Subject: I will add my $0.02. The named executable has the root information built in so that it can start up if there is no named.root file available. So, if you had no named.root file but did have the latest release of Bind then you would have the current data. If you do not update Bind the moment that a new version is released then you need a current named.root file. Just go get a new one from the server listed at the top of the old file. Tom Schulz Applied Dynamics Intl. sch...@adi.com ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Root servers
On Thu, Aug 14, 2014 at 02:26:54PM -0500, Bill Christensen wrote: > I'm seeing some root server errors on startup: > > 14-Aug-2014 13:14:08.142 info: host unreachable resolving > 'd.gtld-servers.net//IN': 2001:503:ba3e::2:30#53 > 14-Aug-2014 13:14:08.215 info: host unreachable resolving > 'b.gtld-servers.net/A/IN': 2001:503:231d::2:30#53 > 14-Aug-2014 13:14:08.220 info: host unreachable resolving > 'c.gtld-servers.net/A/IN': 2001:503:231d::2:30#53 > 14-Aug-2014 13:14:08.522 info: host unreachable resolving > 'd.gtld-servers.net//IN': 2001:503:83eb::2:31#53 > 14-Aug-2014 13:14:08.595 info: host unreachable resolving > 'c.gtld-servers.net/A/IN': 2001:503:a83e::2:31#53 > 14-Aug-2014 13:14:08.793 info: host unreachable resolving > 'b.gtld-servers.net//IN': 2001:503:c27::2:30#53 > 14-Aug-2014 13:14:08.794 info: host unreachable resolving > 'b.gtld-servers.net//IN': 2001:dc3::35#53 > 14-Aug-2014 13:14:08.795 info: host unreachable resolving > 'c.gtld-servers.net//IN': 2001:503:c27::2:30#53 > 14-Aug-2014 13:14:08.796 info: host unreachable resolving > 'c.gtld-servers.net//IN': 2001:dc3::35#53 > > > How do I correct that? It looks like your system thinks it has IPv6 connectivity, but it doesn't really have it. You can disable IPv6 at the OS level or: "named -4". > It looks like my root pointers are horribly out of date. Seems > to me this is something which should automatically update... Not much, and yes. > ; This file is made available by InterNIC > ; under anonymous FTP as > ; file/domain/named.root > ; on server FTP.INTERNIC.NET > ; -OR-RS.INTERNIC.NET > ; > ; last update:Feb 04, 2008 > ; related version of root zone: 2008020400 That's old, but not so old as to prevent you from reaching an actual root server. Of course it was 2 years before the root was signed. -- http://rob0.nodns4.us/ Offlist GMX mail is seen only if "/dev/rob0" is in the Subject: ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users