Hi, all,
thank you very much for discussion. It was interesting and very useful.
You can pretty well imagine that I am not much dns involved,
I am rather unix and unix HW guy.
Unfortunately I saw dns cache poisoning attack and although it could be
provoked by side effects it's better to get rid o
Hi Alan,
Thanks for your kind response. I enabled statistics channel and in
that i can see
Resolver Statistics for View _default
and
Resolver Statistics for View _bind
what is the difference between these two views which also same in
named_Statistics file.
BR
Ben
On Fri, Dec 28, 2012 at 5:56
On Dec 27, 2012, at 1:05 PM, benjamin fernandis wrote:
> cat /var/named/chroot/var/named/data/named_stats.txt
While this may present what you want, I think you may be happier parsing the
Statistics Channel...
http://ftp.isc.org/isc/bind9/cur/9.9/doc/arm/Bv9ARM.ch06.html#statschannels
While t
In message <50dcd454.2070...@dougbarton.us>, Doug Barton writes:
> On 12/27/2012 11:18 AM, Mark Andrews wrote:
> > zone "241.Z.X.Y.IN-ADDR.ARPA" {
> > type master;
> > file "241.Z.X.Y.IN-ADDR.ARPA";
> > };
>
> That's great locally, but it doesn't match the 2317 delegation from the
> upst
On 12/27/2012 11:18 AM, Mark Andrews wrote:
zone "241.Z.X.Y.IN-ADDR.ARPA" {
type master;
file "241.Z.X.Y.IN-ADDR.ARPA";
};
That's great locally, but it doesn't match the 2317 delegation from the
upstream, and usually it's not possible to change what they send you.
Or are you
On 12/27/2012 03:05 AM, Dmitri Tarkhov wrote:
But this small subzone cannot be used for direct reverse resolving right
at my dns. It can only be done at class C (or B, or A) granularity.
So to achieve exactly what I want I need to pull somehow this class C
zone "z.y.x.in-addr.arpa" to my dns.
T
In message <50dc2b79.1040...@dionaholding.ru>, Dmitri Tarkhov writes:
> Well, it's Ok with that. I indeed am the owner of small reverse
> zone "255-241.z.y.x.in-addr.arpa" IN { type master;
> named with accordance with rfc2317 CNAME trick and can edit it.
> The changes are transferred one way to t
Hi,
We are using bind as a recursive dns server in our college. It is working fine.
Now we need to make a report regarding QPS, NXDOMAIN, FORMAT ERROR,
Server Failure, Name Error, Not Implemented, Refused queries comes to
our recursive DNS SERVER.
For this we use named_statistics file which give
2012/12/27 Dmitri Tarkhov :
> Ok, thank you,
> I'll try views first of all.
>
> And I need some further clarification about this:
>
>> I just meant that fencing your resolver without really good reasons is
>> a bad idea.
>
> By "fencing your resolver" do you mean converting a dns
> server into onl
Ok, thank you,
I'll try views first of all.
And I need some further clarification about this:
> I just meant that fencing your resolver without really good reasons is
> a bad idea.
By "fencing your resolver" do you mean converting a dns
server into only a source of information from its master z
2012/12/27 Dmitri Tarkhov :
> Hi,
> thanks a lot for the information.
> Contains key reason and sounds interesting.
>
> 1. Do you mean I can isolate zone "z.y.x.in-addr.arpa"
>into a separate view where recursion is enabled but all
>other zones are excluded? If so, it's very promising.
Ac
Hi,
thanks a lot for the information.
Contains key reason and sounds interesting.
1. Do you mean I can isolate zone "z.y.x.in-addr.arpa"
into a separate view where recursion is enabled but all
other zones are excluded? If so, it's very promising.
2. Sorry, "Unbound" - is it just another dn
Forwarding does not work without recursion enabled.
There is a few ways to solve the problem:
1. Using views;
2. Using another dns resolver (for example Unbound);
3. Downloading the zone via script (bad idea from any point);
4. Do not bother where your resolver get authoritative data (I'd
recommen
Am 26.12.2012 um 23:31 schrieb Mark Andrews :
> * the record to be removed was not there
> * the record to be aded was already there
>
> This means that the two versions of the zone have become unsyncronized.
I did some more tests with another zone. Not sure BIND works as intended there:
- zone
Well, it's Ok with that. I indeed am the owner of small reverse
zone "255-241.z.y.x.in-addr.arpa" IN { type master;
named with accordance with rfc2317 CNAME trick and can edit it.
The changes are transferred one way to the ISP side and make part of
their zone "z.y.x.in-addr.arpa". So my changes ar
Please correct me if I'm wrong: you'd like to edit PTR records for
your part of the /24 zone?
If so, what you ISP says about rfc2317?
2012/12/27 Dmitri Tarkhov :
> Hi,
> I've searched the list archives and Google and don't see anything
> to answer my question subj.
> we have let's say x.y.z.240/28
Hi,
I've searched the list archives and Google and don't see anything
to answer my question subj.
we have let's say x.y.z.240/28 subnet and BIND 9.9.2-P1.
We want to have a master DNS without unnecessary extra functionality.
(Including no caching)
This is the named.conf with obscured addresses:
#
17 matches
Mail list logo
