I'm Running Bind 9.7.3-P3 (Gentoo build)...
When does 'EDNS' get brought into the picture?
A 'dig' with '+dnssec' works just fine (more than 512 bytes over udp) -
but a dig without '+dnssec' and actually asking for the 'dnskey' records
for a domain - which is over 512 bytes - does a Truncated,
On 29/11/2011 14:36, Mark Elkins wrote:
Hi Mark,
When does 'EDNS' get brought into the picture?
A 'dig' with '+dnssec' works just fine (more than 512 bytes over udp) -
but a dig without '+dnssec' and actually asking for the 'dnskey' records
for a domain - which is over 512 bytes - does a
The dig tool does not use ENDS0 by default.
Minor addendum: in BIND 9.9, it will.
--
Evan Hunt -- e...@isc.org
Internet Systems Consortium, Inc.
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
In message 1322573807.4832.44.ca...@mje99.posix.co.za, Mark Elkins writes:
I'm Running Bind 9.7.3-P3 (Gentoo build)...
When does 'EDNS' get brought into the picture?
A 'dig' with '+dnssec' works just fine (more than 512 bytes over udp) -
but a dig without '+dnssec' and actually asking for
With a mixture of small and large zones, signed and unsigned, choosing
sensible values for max-journal-size can become rather tedious (unless
one is prepared to to say disc space is cheap, make them all BIGNUM).
What I would really like is an option that discards increments applied
sufficiently
On 11/29/2011 15:33, Chris Thompson wrote:
With a mixture of small and large zones, signed and unsigned, choosing
sensible values for max-journal-size can become rather tedious (unless
one is prepared to to say disc space is cheap, make them all BIGNUM).
I'm quite prepared to say that,
Thanks All. Will upgrade slave first.
Thiru
On Nov 25, 2011, at 4:47 PM, Doug Barton do...@dougbarton.us wrote:
On 11/25/2011 00:38, Matus UHLAR - fantomas wrote:
not mentioning new features (mostly DNSSEC related) that new servers have.
The OP explicitly excluded DNSSEC, but, yeah. :)
Hi All
I am trying to generate keys for signing vishesh.com domain using following
command (for testing purpose)
dnssec-keygen -a RSASHA1 -b 768 -n ZONE vishesh.com.
But its not responding , i waited around 30 minutes but there is no result
Operating system is RHEL6 on VirtualBox 4.1
Thanks
On 11/30/2011 12:15 AM, vishesh kumar wrote:
Hi All
I am trying to generate keys for signing vishesh.com
http://vishesh.com domain using following command (for testing purpose)
dnssec-keygen -a RSASHA1 -b 768 -n ZONE vishesh.com http://vishesh.com.
But its not responding , i waited
9 matches
Mail list logo