Re: Telling rndc Which IP Address to Use
On 01/19/11 15:21, Jay Ford wrote:
On Wed, 19 Jan 2011, Barry Finkel wrote:
I have a master DNS server that has two IP addresses - one used for
DNS and one used for non-DNS. On that master I run rndc to load
zones on slave servers. On the slave servers I have
controls{
inet a.b.c.d port 953
allow {127.0.0.1; e.f.g.h; } keys { rndc-key';};
}
Where e.f.g.h is the DNS address for the master server. Is there a
way on the master to run rndc and tell rndc which IP address to use?
Or do I have to put the non-DNS address of the master in the controls
directive on the slaves. I am running 9.7.2-P3. Thanks.
Does the -b option not suffice?
Jay Ford, Network Engineering Group, Information Technology Services
University of Iowa, Iowa City, IA 52242
email: jay-f...@uiowa.edu, phone: 319-335-, fax: 319-335-2951
I forgot about the -b option.
--
--
Barry S. Finkel
Computing and Information Systems Division
Argonne National Laboratory Phone:+1 (630) 252-7277
9700 South Cass Avenue Facsimile:+1 (630) 252-4601
Building 240, Room 5.B.8 Internet: bsfin...@anl.gov
Argonne, IL 60439-4828 IBMMAIL: I1004994
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: Telling rndc Which IP Address to Use
Or one can not worry about the IP address being used. The addresses
are still there for backwards compatibilty with BIND 8 where only
the IP address is used. TSIG is really so much stronger than any
IP based authentication. It's like putting a screen door on a bank
vault.
In message 4d38633e.3040...@anl.gov, Barry Finkel writes:
On 01/19/11 15:21, Jay Ford wrote:
On Wed, 19 Jan 2011, Barry Finkel wrote:
I have a master DNS server that has two IP addresses - one used for
DNS and one used for non-DNS. On that master I run rndc to load
zones on slave servers. On the slave servers I have
controls{
inet a.b.c.d port 953
allow {127.0.0.1; e.f.g.h; } keys { rndc-key';};
}
Where e.f.g.h is the DNS address for the master server. Is there a
way on the master to run rndc and tell rndc which IP address to use?
Or do I have to put the non-DNS address of the master in the controls
directive on the slaves. I am running 9.7.2-P3. Thanks.
Does the -b option not suffice?
Jay Ford, Network Engineering Group, Information Technology Services
University of Iowa, Iowa City, IA 52242
email: jay-f...@uiowa.edu, phone: 319-335-, fax: 319-335-2951
I forgot about the -b option.
--
--
Barry S. Finkel
Computing and Information Systems Division
Argonne National Laboratory Phone:+1 (630) 252-7277
9700 South Cass Avenue Facsimile:+1 (630) 252-4601
Building 240, Room 5.B.8 Internet: bsfin...@anl.gov
Argonne, IL 60439-4828 IBMMAIL: I1004994
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Telling rndc Which IP Address to Use
I have a master DNS server that has two IP addresses - one used for
DNS and one used for non-DNS. On that master I run rndc to load
zones on slave servers. On the slave servers I have
controls{
inet a.b.c.d port 953
allow {127.0.0.1; e.f.g.h; } keys { rndc-key';};
}
Where e.f.g.h is the DNS address for the master server. Is there a
way on the master to run rndc and tell rndc which IP address to use?
Or do I have to put the non-DNS address of the master in the controls
directive on the slaves. I am running 9.7.2-P3. Thanks.
--
--
Barry S. Finkel
Computing and Information Systems Division
Argonne National Laboratory Phone:+1 (630) 252-7277
9700 South Cass Avenue Facsimile:+1 (630) 252-4601
Building 240, Room 5.B.8 Internet: bsfin...@anl.gov
Argonne, IL 60439-4828 IBMMAIL: I1004994
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: Telling rndc Which IP Address to Use
On Wed, 19 Jan 2011, Barry Finkel wrote:
I have a master DNS server that has two IP addresses - one used for
DNS and one used for non-DNS. On that master I run rndc to load
zones on slave servers. On the slave servers I have
controls{
inet a.b.c.d port 953
allow {127.0.0.1; e.f.g.h; } keys { rndc-key';};
}
Where e.f.g.h is the DNS address for the master server. Is there a
way on the master to run rndc and tell rndc which IP address to use?
Or do I have to put the non-DNS address of the master in the controls
directive on the slaves. I am running 9.7.2-P3. Thanks.
Does the -b option not suffice?
Jay Ford, Network Engineering Group, Information Technology Services
University of Iowa, Iowa City, IA 52242
email: jay-f...@uiowa.edu, phone: 319-335-, fax: 319-335-2951
___
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: Telling rndc Which IP Address to Use
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 19.01.2011 22:13, Barry Finkel wrote: Is there a way on the master to run rndc and tell rndc which IP address to use? rndc -h doesn't show it. The option is apparently only documented in the man page: -b source-address Use source-address as the source address for the connection to the server. Multiple instances are permitted to allow setting of both the IPv4 and IPv6 source addresses. Hauke -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAk03VrUACgkQKIgAG9lfHFO6SgCfSP8jGQi4vPqGG6nHxUSL/MAm w2UAnjnRwCs9mEiedzQ+tHE9oSj7Ghlx =TmFX -END PGP SIGNATURE- ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
