Re: Zones-unable-update

On Mon, Jan 6, 2020 at 3:16 PM MEjaz wrote: > 1. My primary name server, /etc/named.conf, and here am forcing transfer > to only few trusted servers, as mentioned in the below clause. > transfers-out 2000; > allow-transfer {212.119.93.5;213.230.0.10; 212.119.93.10; 212.119.92.6;}; > 2.

Re: Zones-unable-update

On Mon, Jan 6, 2020 at 2:03 PM MEjaz wrote: > > Thank you for your emai. > > > > I am not cutting any logs, I am capturing only for that particular zone > which I have chooses for the test, as I can't do the test on live zones. > > This time I have noticed "denied" in my slave server logs as

Re: Zones-unable-update

On Thu, Jan 2, 2020 at 7:58 PM MEjaz wrote: > > Hello all. > > My setup which has one primary and slave server was working fine since years. > > All of sudden I started getting the problem of zones updates on slaves. > Which are not happening on time. it takes two hours to take the updates. >

Re: bind-9.11.0-P2 on Debian 9.0 (stretch)

On Fri, Jan 27, 2017 at 7:20 PM, Wolfgang Riedel wrote: > Just wonder if there is some agreed guidance on what steps I SHOULD take > to get bind-9.11.0-P2 successfully build on Debian 9.0? > > The generic recommendation on debian would probably be 'use whatever the distro comes

Re: Is there any reverse proxy software for dns or udp?

On Fri, Jan 30, 2015 at 9:07 AM, WXR 474745...@qq.com wrote: Is there any reverse proxy software for dns‍ , which can do load balance、cache for dns service, just like squid for http service? What functionality do you need that can't be provided by bind? e.g.

Re: Digging to the final IP

What are you using this for? If it's part of a script, it might be easier to just use gethostbyname. For example, in php: http://php.net/manual/en/function.gethostbyname.php , Returns the IPv4 address or a string containing the unmodified hostname on failure. -- Fajar On Mon, Oct 20, 2014 at

Re: Value of memory

On Thu, Aug 7, 2014 at 10:39 AM, Robert Moskowitz r...@htt-consult.com wrote: I have a server that is only running bind 9.8.2 (Centos 6.5). It has 2Gb memory and free reports ~1.7Gb used. I am looking at replacing this server with an armv7 board running Redsleeve (until Centos 7 is out and

Re: Does bind read /etc/hosts?

On Wed, Jul 16, 2014 at 9:55 AM, Mark Andrews ma...@isc.org wrote: In message 53c5e714.5080...@thelounge.net, Reindl Harald writes: Can the LDNS return 10.10.10.1 defined in the /etc/hosts to the client? maybe some special configuration in named can support this feature wrong tool -

Re: AIX and 9.9.5 compiling

On Fri, May 9, 2014 at 5:36 PM, Tony Finch d...@dotat.at wrote: Edward DeLargy eddela...@gmail.com wrote: I just want to verify that 9.9.5 can be compiled in AIX The README says: Building BIND 9 currently requires a UNIX system with an ANSI C compiler, basic POSIX

Re: Caching server - named process is limit at 500MB

On Wed, Apr 17, 2013 at 9:46 AM, Chu Ha Khanh khanh@svtech.com.vn wrote: Hi, Here is my output from command. It looks like my bind version is actually 32 bit. But there are some default applications also 32 bit although all are installed on a 64 bit OS. I have to check this for a moment.

Re: limiting number of requests of a single hosts

On Fri, Jun 15, 2012 at 9:37 PM, Holemans Wim wim.holem...@ua.ac.be wrote: Wim Holemans Netwerkdienst Universiteit Antwerpen Network Services University of Antwerp One of the problems is that these firewalls are going to be replaced soon and we don't want to spend to much effort in

Re: a domain can ns of itself?

On Thu, Mar 29, 2012 at 6:33 AM, Mohsen Pahlevanzadeh moh...@pahlevanzadeh.org wrote: pahlevanzadeh.info. 14400 IN NS shared.pahlevanzadeh.info. Is it Possible? Yes. Google does it $ dig google.com ns ; DiG 9.8.1-P1 google.com ns ;; global options: +cmd ;; Got answer: ;; -HEADER- opcode:

Re: huge count of DNS deny hits

On Wed, Jan 11, 2012 at 1:27 PM, babu dheen babudh...@yahoo.co.in wrote: Dear Fajar,  Below logs taken from Internal DNS server running in Microsoft DNS. Then why did you ask this list instead of contacting MS support? I checked with client AV status, everything is fine( system is up to

Re: huge count of DNS deny hits

On Wed, Jan 11, 2012 at 12:11 PM, babu dheen babudh...@yahoo.co.in wrote: Hi, I enabled the logs in DNS server and i found  below lines from this client continiously.. 1/10/2012 9:14:30 AM 0FDC PACKET  05B489B0 UDP Snd Client IP    1f23   Q [0005 A D   NOERROR] TXT   

Re: huge count of DNS deny hits

On Mon, Jan 9, 2012 at 1:37 PM, babu dheen babudh...@yahoo.co.in wrote: Unfortunately, i have not enabled logs in my internal DNS server. You just dismissed the only reliable source of information Any idea .. Without logs, you only have assumptions. The best assumption at this point is that

Re: register .org NS in root?

On Mon, Jan 2, 2012 at 10:58 AM, DNSbed.com supp...@dnsbedhosting.com wrote: Hi, I just noticed namecheap's NS servers are five .org hostnames: namecheap.com.  86400   IN  NS  ns3.mydyndns.org. namecheap.com.  86400   IN  NS  ns2.mydyndns.org. namecheap.com.  

Re: register .org NS in root?

On Mon, Jan 2, 2012 at 12:35 PM, DNSbed.com supp...@dnsbedhosting.com wrote: Well, say I want to setup the domain mydots.net to use these two NS: dwdns1.nsbeta.info dwdns2.nsbeta.info How can I setup the glue in Godaddy? Glue records are only needed if the ns is on the same domain. e.g.

Re: Re: .TLD minimum number of nameservers rule

On Tue, Dec 13, 2011 at 3:53 PM, nudge...@fastmail.fm wrote: For instance, would this be a problem when implementing a wide area bonjour subdomain using my own local dns server for clients that are mobile (internal/external) ? Bonjour should work even without a DNS server. Reminds me

Re: Re: .TLD minimum number of nameservers rule

On Tue, Dec 13, 2011 at 6:20 AM, nudge...@fastmail.fm wrote: Thanks all. Chris, Anand that's very useful to know, sorry Jeff and Philippe, your interesting suggestions wont work in this case. If I attack the problem from the other way down instead, the fact my current registra doesn't allow

Re: reverse delegation from Telco

On Fri, Nov 4, 2011 at 1:11 PM, Jim Pazarena b...@paz.bz wrote: but that non-auth kinda bugs me, because for my 'full' /24 subnets, that never happens. And it's delegated from the same Telco (Telus) That's because full /24 subnets can be delegated easily using subdomains, while a /28 needs

Re: host versus nslookup

On Thu, Oct 13, 2011 at 1:05 PM, listmail listm...@entertech.com wrote: On Thu, 13 Oct 2011 03:33:30 +0700, Fajar A. Nugraha wrote If you're concern about what address programs gets when they resolve host names, then getent is a better choice as it also respects nsswitch.conf and hosts file

Re: host versus nslookup

On Thu, Oct 13, 2011 at 3:23 AM, Sten Carlsen st...@s-carlsen.dk wrote: Use dig. Always use dig. I don't quite agree, for debugging bind, use dig - for debugging lookup issues on some machine, host will behave more like any normal program, using resolv.conf and what else and can point to

Re: about the dig

On Tue, Jul 19, 2011 at 12:32 PM, Feng He short...@gmail.com wrote: Hi list, When I deleted all the entries in /etc/resolv.conf (I am using Linux), dig can't work. I was thinking since dig is a standard resolver, what makes you think that? From the man page dig (domain information

Re: Client cannot resolve communities.intel.com

On Tue, Jul 5, 2011 at 10:29 AM, vr bind-u...@iotk.net wrote: Hello, I am trying to visit http://communities.intel.com; using Iceweasel on a Debian desktop PC. No proxies. My clients etc/resolv.conf point to my own Debian BIND 9.7.3 installed on a separate server and installed from

Re: better performance with 32 bit ! why?

On Wed, Jun 29, 2011 at 8:33 PM, iharrathi@orange-ftgroup.com wrote: on server1(64 bit) i have 2 Intel E5310 quad-core 1.6Ghz and on server2(32 bit) i have 2 Intel Xeon dual-core 2.33Ghz. means 8*1.6 Ghz on server1 and 4*2.33 on server2. 8*1.6 is better and faster than 4*2.33, no?

Re: What is DNS Tunneling

On Mon, Jun 20, 2011 at 1:56 PM, babu dheen babudh...@yahoo.co.in wrote: Hi,  Can anyone explain what is DNS tunneling because i am seeing large number of DNS tunneling attack in IPS from one machine in the LAN. Did you try Google? First entry is very informative: http://www.dnstunnel.de/

Re: Help needed

On Tue, Jun 14, 2011 at 3:04 PM, Vignesh Gadiyar vcgadi...@gmail.com wrote: Hi, I am Vignesh from Bangalore and i was developing an application using Open source BIND wherein i needed to know where exactly, i mean from which function do we get the IP addresses looked up from the Domain names

Re: Help needed

add that code. Regards. Now that you're giving more details, hopefuly others will be able to help you. -- Fajar On Tue, Jun 14, 2011 at 3:08 PM, Fajar A. Nugraha w...@fajar.net wrote: On Tue, Jun 14, 2011 at 3:04 PM, Vignesh Gadiyar vcgadi...@gmail.com wrote: Hi, I am Vignesh from

Re: Hosting my company DNS server in Internet

On Mon, May 30, 2011 at 3:45 PM, babu dheen babudh...@yahoo.co.in wrote: Dear Olsen, thanks for the update. I can follow all the steps but i couldn't understand below two points  - register/buy the domain name(s) if you haven't already done so. - tell your registrar to configure your

Re: Operating system recommendation

On Mon, Mar 14, 2011 at 1:43 AM, Ben McGinnes b...@adversary.org wrote: On 12/03/11 12:30 AM, Lightner, Jeff wrote: As the prior poster said RedHat is still supports RHEL4 (7 years or more) and RHEL5 (4 years or more) and has now relased RHEL6. Actually EOL for RHEL4 was announced last month,

Re: Operating system recommendation

On Thu, Mar 10, 2011 at 2:52 AM, pollex andres.vi...@gmail.com wrote: Hi, I want to know in your experience what is the best operating system to run bind for an ISP. We currently have Debian for the 5 Cache servers and for the 2 Authoritative servers. We have around 111851 success querys in

Re: Operating system recommendation

On Fri, Mar 11, 2011 at 9:55 AM, Dan d...@sunsaturn.com wrote: I think there are really 2 sides to this, whether your after an OS easy to maintain, with great stability, or best performance. I think you'll fall in love with freebsd if you give it a try, Try explaining that to managerial types

Re: multi-master with mysql backend

On Mon, Feb 14, 2011 at 6:24 AM, Doug Barton do...@dougbarton.us wrote: On 2/13/2011 8:06 AM, fddi wrote: I do not know why you really don't liket this mysql solution. It isn't a matter of not liking it. Given that you have steadfastly refused to answer any of the questions from people who

Re: Bind hang out when named reach to 5-600 Mb

On Thu, Jul 8, 2010 at 4:30 PM, khanh rua duonghoahoc_k4...@yahoo.com wrote: Hi, I install bind as a cache server on Solaris 10, Sun Sparc T5140. It has problem, bind always hang out when named reach to 5-600 Mb ('prstat' check). How did you determine that it hang? If you enable query log,

Re: hosts or subnet number in delegation?

On Wed, Feb 24, 2010 at 2:01 PM, sasa sasa sasasa20...@yahoo.com wrote: Hello, for a 192.168.199.64/26 in zone file to delegate to a customer; should i put subnet number: 64/26 IN NS ns1.example.com. 64/26 IN NS ns2.example.com. or host ranges: 64-126 IN NS ns1.example.com. 64-126 IN NS

Re: Building 9.6.1-P2 for 32-bit Redhat RHEL 5.4

On Sat, Nov 28, 2009 at 5:00 PM, Howard Wilkinson how...@cohtech.com wrote: At present I do not have a 32-bit build environment I can try to natively build this on, and was hoping that somebody could suggest how I can get round this problem in the build environment I am using. a generic

Re: File System Choice

2009/11/26 万善义 w...@114.com.cn: 500,000 domains, with the Ext3 file system, DNS service starts very slow and therefore require several hours before they can work properly. For the bind file system choices, there are any suggestions advice? Are you sure it's filesystem issue? ext3 has a

Re: Bind-9.6 and Heavy Cpu Load

On Sat, Sep 26, 2009 at 5:43 PM, Bind b...@dci.ir wrote: Hello I have SunFire V880 (2 cpu +4G Ram) and installed bind 9.6.1-P1 on solaris 10. but my cpu load is very high!(above 90% during the pick time) bash-3.00# prstat -a    PID USERNAME  SIZE   RSS STATE  PRI NICE  TIME  CPU

Re: Bind-9.6 and Heavy Cpu Load

On Sun, Sep 27, 2009 at 1:28 AM, Bind b...@dci.ir wrote: The number of requests is 2700 recieved pps and 2500 transmit pps. also i forced it to use both cpu`s,(in prstat -a command the STATE column,shows named uses cpu0 then after moment it changed to cpu2) but heavy cpu load exists.

Re: hardware requirements per hits

On Wed, Aug 19, 2009 at 12:47 AM, Subhan Malickmali...@illinois.edu wrote: On 8/17/09 10:15 PM, Fajar A. Nugraha wrote: Here are some pointers from my experience though: - syslog query logging is expensive. NEVER enable it. If you need to log client queries, log it directly to file instead

Re: hardware requirements per hits

On Mon, Aug 17, 2009 at 8:50 PM, Alansbatpowe...@yahoo.co.uk wrote: @Matus: let me put it in this way, if I want to create a budget for next year for example, then I should know what upgrades I need for next year (estimated needs), and let's assume dns queries increase monthly by x hits, now,