Re: Caching-only Name server does Zone Updates

In article gm8o6b$1va...@sf1.isc.org, Ashish ashish@wipro.com wrote: Thank you Mark, Doupdate is followed by lot of statements like Db_update Match Please see the content below. = Doupdate(zone 0, savens x,

Fragment Flags Invalid

I installed fresh installation of solaris 10 on sparc machine with latest bind v9,this server is behind the hardware Firewall(policy from out to in is udp53from in to out is any). But my cisco IDS always announces this alarm from my server to other external clients or servers: Fragment Flags

RE: Caching-only Name server does Zone Updates

Hi Barry, Thank you for your reply. There was a reverse lookup done as per the Debug content. We have 4 Name servers so there should be 4 response containing NS records in the Authority Section and the corresponding A records in the Additional Section. But we have thousands of statement like

Re: DDOS prevention - how to restrict queries to hint (root) zones?

In message 1233658532.12933.42.ca...@muccalla.uninsubria.it, MAtteo HCE Valsa sna writes: hi all, We run BIND 9.3.4-P1.1 on Debian GNU/Linux 4.0 (using the distribution's package), that do both recursive queries for internal clients (with proper allow-recursion clause) and authoritative

Re: DDOS prevention - how to restrict queries to hint (root) zones?

On Tue, 3 Feb 2009, Mark Andrews wrote: In message 1233658532.12933.42.ca...@muccalla.uninsubria.it, MAtteo HCE Valsa sna writes: hi all, We run BIND 9.3.4-P1.1 on Debian GNU/Linux 4.0 (using the distribution's package), that do both recursive queries for internal clients (with proper

DDOS prevention - how to restrict queries to hint (root) zones?

hi all, We run BIND 9.3.4-P1.1 on Debian GNU/Linux 4.0 (using the distribution's package), that do both recursive queries for internal clients (with proper allow-recursion clause) and authoritative servers for the institution's domain. There are reports of DDOS attacks based on DNS requests for

Re: Dynamic update of TXT record?

On Mon, Jan 5, 2009 at 5:03 PM, JINMEI Tatuya / 神明達哉 jinmei_tat...@isc.orgwrote: At Thu, 1 Jan 2009 12:23:02 +0100, Michelle Konzack linux4miche...@tamay-dogan.net wrote: Q 1:Which setting is missing? Q2: Can someone tell me how to update a TXT record? Please show named.conf of

Split DNS, internal/external

Hi all, Having a problem setting up split DNS for the purpose of separating internal, recursive, caching responses vs external, non caching, non recusrive responses. First off, can views be used to do this? If yes, here are the relevant (I hope) portions of named.conf, which I've set up based