In message , "M. Meadows" writes:
> We've noticed that the following command gets a variable result:
>
> dig -t txt exacttarget.com @ns2.exacttarget.com +short
>
> We get 2 results from this. Seems to be somewhat random. They are:
>
> "v=3Dspf1 a mx ip4:207.250.79.101 ip4:207.67.98.192/27 ip4:7
Alan wrote on 03/09/2012 02:38:25 PM:
> Don't base anything on RRset ordering.
>
> Be sure that the application is able to handle the "random" order -- you
> never know who owns the intermediate caching servers, so you will never
> know the order even if you "fix" it on the authoritative.
That p
On 3/9/2012 2:24 PM, M. Meadows wrote:
> Thanks to both of you for your feedback.
> I see the rrset ordering explanation in the arm.
> Good information.
Don't base anything on RRset ordering.
Be sure that the application is able to handle the "random" order -- you
never know who owns the interme
Thanks to both of you for your feedback.
I see the rrset ordering explanation in the arm.
Good information.
> To: sun-g...@live.com
> CC: bind-users@lists.isc.org
> Subject: Re: dig -t txt output variation
> From: wbr...@e1b.org
> Date: Fri, 9 Mar 2012 13:54:47 -0500
>
> sun-guru wrote on 03
On 3/9/12 7:58 AM, "Romgo" wrote:
> Even if I use a VIP I can reproduce the issue :
> If the first VIP (so the nameserver 1) is down, I'll have the same
> drawbacks. As the resolver will timeout before falling back to the second
> nameserver.
Sure, we don't live in a perfect world. You can estab
so the script would run on the LTM, it will periodically check each physical
DNS node, if one cannot resolve then takes it out of the pool; it will also
check the VIP, if the VIP cannot resolve, pool is empty or LTM issue, stop the
advertising?
From: David Kle
On 3/9/12 8:39 AM, "Phil Mayers" wrote:
> On 09/03/12 16:23, Matthew Huff wrote:
>> Anyone have any suggestions/best practices/config examples for DNS load
>> balancing for internal use on CISCO ACE blades?
>>
>> I¹ve got the standard example working, but wondered about keepalive
>> frequency, t
sun-guru wrote on 03/09/2012 01:45:33 PM:
> Is this a BIND bug?
Check ARM for RRSet Ordering.
Confidentiality Notice:
This electronic message and any attachments may contain confidential or
privileged information, and is intended only for the individual or entity
identified above as the
We've noticed that the following command gets a variable result:
dig -t txt exacttarget.com @ns2.exacttarget.com +short
We get 2 results from this. Seems to be somewhat random. They are:
"v=spf1 a mx ip4:207.250.79.101 ip4:207.67.98.192/27 ip4:72.18.216.98
include:cust-spf.exacttarget.com inc
On 09/03/12 16:23, Matthew Huff wrote:
Anyone have any suggestions/best practices/config examples for DNS load
balancing for internal use on CISCO ACE blades?
I’ve got the standard example working, but wondered about keepalive
frequency, timeouts, fragments, etc…
Anyone got any examples they us
Anyone have any suggestions/best practices/config examples for DNS load
balancing for internal use on CISCO ACE blades?
I've got the standard example working, but wondered about keepalive
frequency, timeouts, fragments, etc.
Anyone got any examples they use that they could share?
Hello,
I know that I can use VIP with any software (corosync, Linux HA...) But
this will not explain the origin of the issue I am facing :)
Even if I use a VIP I can reproduce the issue :
If the first VIP (so the nameserver 1) is down, I'll have the same
drawbacks. As the resolver will timeout b
All,
I am (we all are (?)) interested in techniques for mitigating DNS amplification
attacks for both recursive and authoritative BIND servers (versions 9.x).
Google found http://www.secureworks.com/research/threats/dns-amplification/ and
http://www.publicsafety.gc.ca/prg/em/ccirc/2009/av09-
Hi all,
I have just upgraded from Bind 9.7 to Bind 9.8.1 Patch 1 and is noticing that
the occupied physical memory is increasing to values larger than usual. Whilst
in the former release the occupied physical memory stabilises at a value of
approximately 4GB, I am now noticing that the occupie
于 2012-3-9 17:20, Cathy Almond 写道:
Many ISP's caching DNS servers do this stuff.
> AFAIK there is not such an option for that, but you can do it from
> BIND's source.
max-cache-ttl ?
Thanks Cathy for pointing out that.
From what googled:
http://www.menandmice.com/knowled
On 09/03/12 08:22, Jeff Peng wrote:
> 于 2012-3-9 16:11, Drunkard Zhang 写道:
>> I got some bind servers doing iteration resolution, and return the
>> results to users. But I found that some names got too big TTLs, whose
>> RRs can not be replaced correctly by new RRs in time. This leads to
>> user‘s
On 03/08/2012 06:26 PM, michoski wrote:
Meant to add one thing... In our configuration, we actually have two
recursive VIPs per site, and even considered three (internal IPs are cheap).
We do this.
We also make the two different VIPs use different underlying tech - one
is an anycast route a
于 2012-3-9 16:11, Drunkard Zhang 写道:
I got some bind servers doing iteration resolution, and return the
results to users. But I found that some names got too big TTLs, whose
RRs can not be replaced correctly by new RRs in time. This leads to
user‘s blame, we have to flush the caches by hand, and
I got some bind servers doing iteration resolution, and return the
results to users. But I found that some names got too big TTLs, whose
RRs can not be replaced correctly by new RRs in time. This leads to
user‘s blame, we have to flush the caches by hand, and restart the
SOHO router to resolve the
On 05.03.12 22:19, hugo hugoo wrote:
But if only some IP have e reverse..what about the other server who
have received an IP in the range? Ip that can be changed every x
hours. IF no reverse, it can be blacklisted for some reasons or
having some problems with services asking a reverse dns res
20 matches
Mail list logo
