Thanks for this reply : )
We are using named cluster in our internal network as the authoritative DNS. So
there are no cache servers between clients and named cluster. Maybe we should
add one but it is just another story.
There was a strange thing when I tested RRL using queryperf. I
On 2020-07-07 20:57, Victoria Risk wrote:
A while ago we created a KB article with tips on how to improve your
performance with our Kea dhcp server. The tips were fairly obvious to
our developers and this was pretty successful. We would like to do
something similar for BIND, provide a dozen or
On 7/7/2020 5:57 PM, Victoria Risk wrote:
A while ago we created a KB article with tips on how to improve your
performance with our Kea dhcp server. The tips were fairly obvious to
our developers and this was pretty successful. We would like to do
something similar for BIND, provide a dozen
On Wed, Jul 8, 2020 at 11:33 AM Tony Finch wrote:
> Klaus Darilion wrote:
> >
> > A signed zone shall be moved to another DNS provider. Hence I want to
> > add the public KSK of the gaining DNS provider as additional DNSKEY to
> > the zone.
>
> I guess you might already have seen this draft -
程智勇 wrote:
>
> So could anybody tell me why DNS_RRL_MAX_RATE defined 1000?
RRL is designed for authoritative DNS servers. Legitimate queries come
from recursive resolvers with caches. There should not be more than one
query for each RRset from each resolver per TTL. So a normal response rate
On 08 Jul 2020, at 05:03, Adrian van Bloois wrote:
> When I try to start bind 9.16.x from systemd it fails not being able to
> find something.
…
> What could be the problem???
Not really possible to guess without the error message.
--
"Are you pondering what I'm pondering?"
"I think so,
Klaus Darilion wrote:
>
> A signed zone shall be moved to another DNS provider. Hence I want to
> add the public KSK of the gaining DNS provider as additional DNSKEY to
> the zone.
I guess you might already have seen this draft - it discusses long-term
multi-provider setups rather than
Adrian,
your email didn’t contain any useful information we can go by. It’s hard to
debug anything
by just going „fails not being able to find something“. You will have to
provide the list with
the logs, etc. if you want people to actually provide helpful advices.
And Ged, could we please
Hi there,
On Wed, 8 Jul 2020, Adrian van Bloois wrote:
When I try to start bind 9.16.x from systemd it fails not being able to
find something. When I start it straight from the CMD-line like:
sudo /usr/local/sbin/named
There is no problem and it works fine.
What could be the problem???
Hi,
When I try to start bind 9.16.x from systemd it fails not being able to
find something. When I start it straight from the CMD-line like:
sudo /usr/local/sbin/named
There is no problem and it works fine.
What could be the problem???
Adrian
--
Adri P. van Bloois
Hello all!
A signed zone shall be moved to another DNS provider. Hence I want to add the
public KSK of the gaining DNS provider as additional DNSKEY to the zone. My
setup ist:
Bind1 as hidden primary --> Bind2 as bump-in-the-wire signer -> public facing
secondaries
I tried to add the DNSKEY
Hi, all
I deployed a cluster of DNS which combined with a master and two slaves
recently. I opened the response rate limiting function in slaves, which
parameters like below:
rate-limit {
ipv4-prefix-length 32;
responses-per-second 250;
all-per-second 1000;
min-table-size
12 matches
Mail list logo
