So the TTL value we are discussing here are individual NS TTL Value? Or the
SOA Default TTL Value.
When I viewed my ISP record I found that the SOA Default TTL Value is 12
days and NS RR TTL Value is 3600 secs
On Fri, Mar 15, 2013 at 4:47 AM, Shawn Bakhtiar wrote:
>
> Given the that you will ev
Given the that you will eventually stop using ns1 and ns2 You should probably
set up mynewns1 as the master with mynewns2 as a slave of mynewns1.
Date: Fri, 15 Mar 2013 01:05:50 +0530
Subject: Re: How to minimize the downtime in my case
From: manish...@gmail.com
To: lath...@gmail.com
CC: bind-u
With apologies to readers of this list: the announcement e-mails
for BIND 9.6-ESV-R9b2, 9.8.5b2, and 9.9.3b2 were sent to the
bind-announce list earlier this week but a typo in my shell script
incorrectly prevented the bind-users and bind-workers lists from
receiving the announcement at that time.
Introduction
BIND 9.9.3b2 is the second beta release of BIND 9.9.3.
This document summarizes changes from BIND 9.9.2 to BIND 9.9.3b2.
Please see the CHANGES file in the source code release for a
complete list of all changes.
Download
The latest versions of BIND 9 software can alw
Introduction
BIND 9.8.5b2 is the second beta release of BIND 9.8.5
This document summarizes changes from BIND 9.8.4 to BIND 9.8.5b2.
Please see the CHANGES file in the source code release for a
complete list of all changes.
Download
The latest versions of BIND 9 software can alwa
Introduction
BIND 9.6-ESV-R9b2 is the second beta release of BIND 9.6-ESV-R9.
BIND 9.6-ESV is an Extended Support Version of BIND.
This document summarizes changes from BIND 9.6-ESV-R8 to BIND
9.6-ESV-R9b2. Please see the CHANGES file in the source code
release for a complete lis
Will my new config would look like this? will it be a Slave for my new
servers?
ns1.example.com1.2.3.4---> Master
> ns2.example.com 5.6.7.8-->Slave
> mynewns1.example.com 20.20.20.20 --> Slave
> mynewns2.example.com 30.30.30.30 ---
> From: "Lawrence K. Chen, P.Eng."
> ... So, being able to filter out these 'bad' things when responding
> queries against that data might be a good thing.
RPZ might be used for such things. However, by design RPZ rewrites
entire responses. It is triggered by individual records in a response,
Also when my ISP DNS servers are live do I need to add mine one as a slave
ones? both?
On Fri, Mar 15, 2013 at 12:44 AM, Manish Rane wrote:
> hmm...you are talking about SOA TTL Value?
>
>
>
>
> On Fri, Mar 15, 2013 at 12:40 AM, Andrew Latham wrote:
>
>> Manish
>>
>> That is a perfectly good
hmm...you are talking about SOA TTL Value?
On Fri, Mar 15, 2013 at 12:40 AM, Andrew Latham wrote:
> Manish
>
> That is a perfectly good plan. One note is to study your TTL. If
> your ISP has set a longer TTL on your NS records then you would need
> to first ask for a shorter TTL and wait unt
- Original Message -
> On Mar 14, 2013, at 3:29 AM, Tony Finch wrote:
>
> > King, Harold Clyde (Hal) wrote:
> >
> >> Is there an option for bind like the allow-recursion {
> >> }
> >> For blocking out going records of 10.0.0.0/8 and 192.168.0.0/16 so
> >> I could do a view like:
> >
Manish
That is a perfectly good plan. One note is to study your TTL. If
your ISP has set a longer TTL on your NS records then you would need
to first ask for a shorter TTL and wait until the time has passed.
Example: if TTL is set to one week, ask for change to shorter period
and then wait for
Hi--
On Mar 14, 2013, at 12:04 PM, Manish Rane wrote:
> I right now have NS server hosted with ISP and I am planning to set up my own
> BIND servers. Now I would like to understand that I need to ask my Registrar
> to populate the entry of my new NS server which would take 4-6 hours to
> propag
Hey Folks,
I right now have NS server hosted with ISP and I am planning to set up my
own BIND servers. Now I would like to understand that I need to ask my
Registrar to populate the entry of my new NS server which would take 4-6
hours to propagate over the internet.
To reduce the downtime, can I
On 3/14/2013 6:29 AM, Tony Finch wrote:
King, Harold Clyde (Hal) wrote:
Is there an option for bind like the allow-recursion { }
For blocking out going records of 10.0.0.0/8 and 192.168.0.0/16 so I could do a
view like:
I'm not sure what you mean by "blocking out going records" but there ar
On 14 Mar 2013, at 16:22, Chris Buxton wrote:
> Well, yes, if the server in question is authoritative for all the data in
> question. But if it's just a resolver, that may be more difficult.
Fair comment.
I was (perhaps naïvely) being led by my aversion to open resolvers
On Mar 14, 2013, at 9:07 AM, Niall O'Reilly wrote:
>
> On 14 Mar 2013, at 15:57, Chris Buxton wrote:
>
>> No, I'm pretty sure the OP wants to strip records from responses if the
>> records are A records referring to private address space (RFC 1918).
>>
>> I've no idea how you would do this.
>
On 14 Mar 2013, at 15:57, Chris Buxton wrote:
> No, I'm pretty sure the OP wants to strip records from responses if the
> records are A records referring to private address space (RFC 1918).
>
> I've no idea how you would do this.
Other than separate views, with a "trimmed" zone in the
On Mar 14, 2013, at 3:29 AM, Tony Finch wrote:
> King, Harold Clyde (Hal) wrote:
>
>> Is there an option for bind like the allow-recursion { }
>> For blocking out going records of 10.0.0.0/8 and 192.168.0.0/16 so I could
>> do a view like:
>
> I'm not sure what you mean by "blocking out going
In response to ICANN's consultation on DNSSEC root key rollovers
http://www.icann.org/en/news/public-comment/root-zone-consultation-08mar13-en.htm
I was wondering how to check that a rollover is progressing OK. BIND
doesn't provide much help with this (unless I have missed something) so I
thought i
Spumonti Spumonti wrote:
> Are there relatively recent instructions on how to build BIND from
> source and run it in a chroot environment? It sounds obvious but
> everything I've come across assumes BIND is provided by some package
> manager or included with the operating system. I'd like to buil
> Are there relatively recent instructions on how to build BIND from source and
> run it in a chroot environment? It sounds obvious but everything I've come
> across assumes BIND is provided by some package manager or included with the
> operating system. I'd like to build the latest version of
King, Harold Clyde (Hal) wrote:
> Is there an option for bind like the allow-recursion { }
> For blocking out going records of 10.0.0.0/8 and 192.168.0.0/16 so I could do
> a view like:
I'm not sure what you mean by "blocking out going records" but there are a
couple of options that might do w
On Wed, 2013-03-13 at 19:33 -0700, Dave Warren wrote:
> On 3/13/2013 17:11, Noel Butler wrote:
>
> >
> > On Wed, 2013-03-13 at 14:43 -0700, Dave Warren wrote:
> >
> > > I almost wouldn't bother with SPF records these days though, except that
> > > the code was already written.
> > >
> >
> >
24 matches
Mail list logo
