Congratulations on finding the cause.
Sometimes, it's the simplest of things.
Stuart
From: bind-users [mailto:bind-users-boun...@lists.isc.org] On Behalf Of Gregory
Sloop
Sent: Thursday, 6 June 2019 12:37 PM
To: bind-users@lists.isc.org
Subject: Re: Bind9 stops responding for some clients
Than
I guess you need to DNS Sub-domain delegation.
On Wed, Jun 5, 2019 at 8:51 PM Kevin Darcy wrote:
> Publish all 3 NSes.
>
> Publish MX records with primary/failover preferencing.
>
> Use a load-balancer (free or commercial, software/hardware/cloud-based) to
> direct the web traffic.
>
>
Thanks for reply.
Sorry I'm write wrong,
It is about when configure the slave at the first time.
What do trigger on polling at the timing?
Because I think slave server do not have soa date at first time.
Also, assuming that have not received notify from the master.
Thanks and regards.
2019年6月6日
You are looking for the refresh timer in the SOA if you mean the timer for
a slave to check the serial with the master.
On Wed, Jun 5, 2019, 10:09 PM Techs-yama wrote:
> Hi all,
>
> Have a question about at zone transfer behaviour on slave server.
>
> In case of slave zone configure and restarti
Thanks for the idea.
I did resolve this a day or two ago.
The story is;
This server was a fairly recent replacement for an older Ubuntu setup. The new
server as well as the old one are/were VM's - yet on different VM platforms.
The old VM was turned off, and was marked never to start except unl
Hi all,
Have a question about at zone transfer behaviour on slave server.
In case of slave zone configure and restarting named on slave server,
After the named restart, It looks like starting polling to the master
server for zone transfer by slave server.
How many seconds polling interval on this
I just randomly spotted this post, and thought I would toss in 2¢
How many nics and how many it's are on the servers? Are the failing
clients on the same subnet as the server?
--
Gordon A. Lang
On Thu, May 30, 2019, 8:10 PM Gregory Sloop wrote:
> So, this is a very odd situation and I'm kind
All:
Here is a pure python implementation of a Dnstap consumer designed to
work with Python 3:
https://github.com/m3047/shodohflo
Implementations of Frame Streams and Protobuf:
https://github.com/m3047/shodohflo/tree/master/shodohflo
While the implementations of Frame Streams and Prot
You can spin up a separate instance of bind (or use my opensource ioc2rpz dns
server) to feed (via a zone transfer) the modified zone to your older bind
instance.
Vadim
> On Jun 5, 2019, at 13:04, Mike Woods wrote:
>
> I was afraid that would be the answer, time to try some other solutions
>
Publish all 3 NSes.
Publish MX records with primary/failover preferencing.
Use a load-balancer (free or commercial, software/hardware/cloud-based) to
direct the web traffic.
- Kevin
On Wed, Jun 5, 2019 at 11:16 AM Roberto Carna
w
If you can craft the monitor for the link it could call nsupdate to make
the change
On Wed, Jun 5, 2019, 11:16 AM Roberto Carna
wrote:
> Dear people, I have two sites:
>
> - Main site with an Internet link and two BIND services (DNS1 y DNS2) and
> a /28 block, and web and mail services supported
Dear people, I have two sites:
- Main site with an Internet link and two BIND services (DNS1 y DNS2) and a
/28 block, and web and mail services supported
- Backup site with a second Internet link and a BIND service (DNS3) and
another /28 block
When the Internet link from main site is DOWN, the we
On Wed, Jun 05, 2019 at 02:57:41PM +0100, Tony Finch wrote:
> Mukund Sivaraman wrote:
>
> > On Wed, Jun 05, 2019 at 12:07:56PM +0100, Tony Finch wrote:
> > > The maximum length is 254 including the terminating dot. The maximum
> >
> > 254 excluding the terminating dot or 255 including the termina
Mukund Sivaraman wrote:
> On Wed, Jun 05, 2019 at 12:07:56PM +0100, Tony Finch wrote:
> > The maximum length is 254 including the terminating dot. The maximum
>
> 254 excluding the terminating dot or 255 including the terminating dot.
255 is the wire format limit not the presentation format limi
On Wed, Jun 05, 2019 at 12:07:56PM +0100, Tony Finch wrote:
> The maximum length is 254 including the terminating dot. The maximum
254 excluding the terminating dot or 255 including the terminating dot.
Mukund
___
Please visit https://li
Yep thats what I wanted so I was right and couple of records are above 254
hence my zone is failing.
On Wed, Jun 5, 2019 at 4:37 PM Tony Finch wrote:
> Blason R wrote:
>
> > As soon as I find the longs URLs with more than 150 words and remove it.
> It
> > start perfectly
> >
> > Though 150 is I
> On 5 Jun 2019, at 14:56, Tony Finch wrote:
>
> Borja Marcos wrote:
> rigol.com is related to DNS cookies as well as the DNS flag day, yes.
>
> login.repsol.com is a lame delegation that is exposed by qname minimization.
Thanks, I missed the second one looking at packet captures. Guess I’m
On 05.06.19 14:35, Borja Marcos wrote:> Problem 1:
> I had a problem resolving the rigol.com domain. Looking at packet
> captures and comparing I saw that the authoritative servers for
> rigol.com were ignoring packets with a cookie option.
>
> On 9.14 the operation got stuck when sending a qu
Borja Marcos wrote:
>
> Problem 1:
>
> I had a problem resolving the rigol.com domain. Looking at packet
> captures and comparing I saw that the authoritative servers for
> rigol.com were ignoring packets with a cookie option.
>
> Problem 2:
>
> I also noticed that 9.14.2 is not resolving login.re
Hi,
I’ve been trying bind 9.14.2 and I have noticed a couple of behavior
differences between 9.11 and 9.14.
Problem 1:
I had a problem resolving the rigol.com domain. Looking at packet captures and
comparing I saw that the
authoritative servers for rigol.com were ignoring packets with a cookie
Blason R wrote:
> As soon as I find the longs URLs with more than 150 words and remove it. It
> start perfectly
>
> Though 150 is I considered and even tried with 200 and it worked. So
> wondering what is the limit?
I infer that you are talking about length of domain names, specifically
owner na
I was afraid that would be the answer, time to try some other solutions
then.
Thanks.
On 05/06/2019 12:03, Tony Finch wrote:
> Mike Woods wrote:
>>
>> So, the long and short of things, is it actually possible to point the
>> response policy at a forward zone
>
> No, the RPZ zone file has to be
Mike Woods wrote:
>
> So, the long and short of things, is it actually possible to point the
> response policy at a forward zone
No, the RPZ zone file has to be present on the resolver. The RPZ is parsed
into a special fast lookup data structure so that policies can be applied
efficiently.
Tony.
Hi Team,
I have BIND RPZ built on BIND version BIND 9.10.3-P4-Ubuntu and wondering
what is the maximum size of A record any zone can have? because really big
domains are not getting parsed and my reloading is failing consistently.
As soon as I find the longs URLs with more than 150 words and remo
Hi Guys, hopefully a pretty straightforward question for my first post
to the list.
We're trying to mitigate an issue with the spamhaus dbl list
interrupting our internal dns service (and yes, I'm aware that this is a
known issue and fixes exist in later builds but there are issues for us
upda
25 matches
Mail list logo