https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising
to
zone 110.252.173.in-addr.arpa IN {
All the requests for
173.252.110.0-173.252.110.255 is forwarded to 10.10.96.1.
Use 110.252.173.in-addr.arpa then. You should be aware that the IP range
belongs to facebook, as already noted.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http
.
;; global options: +cmd
;; Got answer:
;; -HEADER- opcode: QUERY, status: REFUSED, id: 52980
;; flags: qr; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
should get NXDOMAIN answer. in such
case there's nothing to wait for any longer.
Are you sure that was not a case of unreachable servers?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto
#id2576269
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Windows 2000: 640 MB ought to be enough for anybody
UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
They say when you play that M$ CD backward you can hear satanic messages.
That's nothing. If you play
,
Matus UHLAR - fantomas uh...@fantomas.sk wrote:
He apparently meant exactly the same. Also calles FcRDNS - forward
confirmed or full circle reverse DNS.
On 01.07.13 14:11, Sam Wilson wrote:
OK. So what Mr. Swiger refers to is not relevant - it's no reason to
add PTR records.
Yes
limiting - a patch was
discussed here a few days/weeks ago.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
(R)etry, (A)bort, (C)ancer
load
balancers...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
The 3 biggets disasters: Hiroshima 45, Tschernobyl 86, Windows 95
from scratch.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Linux IS user friendly, it's just selective who its friends
and overall my DNS was just erratic. I have now moved all of my
secondary to BuddyNS with much better redundancy, and I figured out what
was causing my ns1 to be glitchy.
Can you tell us what, just for evidence?
Thank you.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk
.
If they are accessible from us, of course. We could check it ourselves and
see how it behaves from the net.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT
-users/2013-June/090970.html or pcap
format at http://test.fantomas.sk/74.87.108.83.dns.pcap
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu
On 24.06.13 07:41, Frank Bulk wrote:
Interesting to note that querying for ANY does return an SOA. I can't
explain that behavior.
On 24.06.13 14:54, Matus UHLAR - fantomas wrote:
I can guess a kind of DNS filter/firewall. Some l3 switches or load
balancers tend to produce strange results too
, the given NS records prevail over delegation
from parent zone.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
- Holmes, what kind
records being
sent from a selected list of zone in our configuration..
You still have not answered my question, so I repeat it:
What is the point of your question?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising
set for for ns1.starionhost.net:
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Support bacteria - they're the only culture some people
On 21.06.13 02:00, blrmaani wrote:
The additional-from-auth yes_or_no ; option is a global option. I would
like to know if there is a per-zone configuration to do the same in BIND9
configuration? I couldn't find it in BIND9 ARM.
What is the point of your question?
--
Matus UHLAR - fantomas
be interested to hear about any red flags you may see.
I don't see any ... since the problems reported were not true, we may assume
there was no problem causer by one of your servers' outage.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e
, authoritative and glue NS records should
be the same). But don't tell me that you use TTL so small that someone
would notice.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem
after NXDOMAIN is received is an ugly hack and
violates the DNS principles. The problem must be solved by DNS tools.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT
that.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Nothing is fool-proof to a talented fool
are served locally. Only recursive queries are being
forwarded.
To ask the question another way, does the zone statement take precedence on
matching queries over any forwarding?
yes.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail
{ publicSlaves; };
allow-transfer { localhost; transferees; };
};
Have you looked carefuly enough, and to the correct file if there is no
missed character that makes the configuration invalid?
Have you run named-checkconf with and without the given file as parameter?
--
Matus UHLAR - fantomas
DNS servers to mycompany.com But administrator does not know which one has
it
So, is that mytestdomain101.com or mycompany.com or mygeo1.mycompany.com?
It would be easier to look at the problem if you provided us correct data.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk
THERE IS NO SUCH RECORD. You need to fix your DNS
infrastructure, not try to circumvent it's issues.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu
{ 192.5.5.241; };
notify no;
};
I thought this is not oficially recommended for ordinary users to prevent
root servers from being overloaded (transfers use much more resources than
ordinary lookups). Has this changed?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I
On 21.05.13 11:03, Mark Andrews wrote:
The simplest solution is to slave the root zone and
turn off notify to so you don't spam the official
root servers. 192.5.5.241 is f.root-servers.net.
In message 20130521072352.ga17...@fantomas.sk, Matus UHLAR - fantomas writes:
I thought
solution. You should not use services broken like this of
any ISP. I'd even recommend not to use ANY services of such ISPs.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT
and home.
...I still think it would be better to have reserved private TLD for
intranets as we have IP's in rfc1918 (plus rfc6598 for ISPs)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu
On 09.05.13 10:21, Tony Finch wrote:
Right. Give each student a subdomain of some existing domain, even if the
subdomains aren't publicly delegated.
Matus UHLAR - fantomas uh...@fantomas.sk wrote:
yes, so they will start using it in their job and home.
On 09.05.13 16:01, Tony Finch wrote
.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Saving Private Ryan...
Private Ryan exists. Overwrite? (Y/N
accessible and their RTT. It tends to prefer
theone with shoertet RTT but ocasionally re-tries (RTT can change over
time. If notice comes, BIND tends to prefer server that has sent it.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising
check-names response;
Ok, I'm reading up on that now. Should I be able to suppress the logging
using: check-names response ignore; ?
This should be the default. Also, current version could have better handling
of this issue...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http
general: warning: zone
/IN: gc._msdcs./A: bad owner name (check-names)
default.log:12-Apr-2013 00:45:37.447 general: warning: zone
/IN: gc._msdcs./A: bad owner name (check-names)
Hmm, aren't those supposed to be SRV records?
--
Matus UHLAR
is the only way to avoid this
attack.
Once the spoofed answer with guessed ID and containing NS records of
attacker's servers is accepted, the attacker owns the domain at least within
your nameserver.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e
: view
external: query (cache) 'hao.360.cn/A/IN' denied
Aren't thosedomains pointing their NS onto your nameserver? What's your IP,
if it's not secret?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
to be really a bitch, you can set up recursive view with .
domain providing * records.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu
, although you may want to have
at least two of them, to have backup if one fails.
imho you should first answer my first question and then you see if you need
to increase clients-per-query or not.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive
servers, of which one
returns positive answer and two reply NXDOMAIN (no such host).
seems someone configured invalid serial to reverse zone and now slaves don't
fetch updates...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising
on, and putting websites on
hostnames that don't start with www. is the common case now. Can we
save our energy for something more productive?
Why did you post this then?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising
? Is it the root dns populate issue or
something else? Is there a way to force DNS server to update from root?
dopmain positivebrain.asia has invalid NS records. maybe a web DNS checker
could provide correct answer, although you must try more of them...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http
?
because while delegation NS records are OK, the NS records in domain itself
are broken. With the first lookup you may get the answer from the parent
servers, but later lookups will use broken NS records and thus they will
fail.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk
at firewall level.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Silvester Stallone: Father of the RISC concept
this:
On 28.03.13 17:00, Ben-Eliezer, Tal (ITS) wrote:
Hi Chris, this looks interesting, I'll do some testing and report back!
Note that this way you won't maintain two copies of the same file, but three
different files and with each change you'll have to choose where to put
it...
--
Matus UHLAR
answer the
authoritative data.
You have said you do not have recursion allowed, why do you expect it to be
allowed now?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT
as Chris. Please show us how you do the dig.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
They that can give up essential liberty
from TCP+UDP port 53 coming to any =1024 port on
your nameserver.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
The only substitute for good
. Are there other limitations I should be aware of while developing my script?
Yes, you should not abuse any service, whether you monitor it or not.
For example, you should not send extensive queries to foreign servers.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I
that are declared as
a forwarder in the named.conf.options settings.
Why do you define such forwarders in named.conf at all?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT
to your DNS server where source port is 53.
all the security is useless if blocks your service. Luckily, most of
firewalls can track the connection state.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie
in the release notes for 9.8.4/9.8.5 - any ideas?
This is with the Spamhaus DBL, in case it matters.
do you have local copy of spamhaus DBL?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto
:
; DiG 9.8.1-P1 mail.com
[...]
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
this is clearly a cached answer (aa flag is missing). How did you come to
the conclusion that caching does not work?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk
AS number for this, provider-independent IP Addresses are
quite enough (at least here in Europe)
I just did not want to explain this more deeply - that is question for the
OP and their ISP.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail
DNS problem chould be solved by BIND configuration.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Chernobyl was an Windows 95 beta test site
their own domain anywhere in
the DNS tree, because they simply do not have any domain seen in the public
available (no company's domain, using multiple ISPs etc)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
On 28.02.13 08:41, Abdul Khader wrote:
Is there a way to flush MX records from the cache of a caching DNS server ?
No. You only can flush whole cache (rndc flush) or flush records for given
domain (rndc flushname).
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning
and/or ignore that file.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Microsoft dick is soft to do no harm
; };
};
so a type static-stub works, while type forward does not?
Is this another difference between those two types?
(type forward has one advantage: it allows standard resolving to take
place when forwarding does not help. But this is not the case.)
--
Matus UHLAR - fantomas, uh
be querying cache?
correct, no external hosts should query your cache.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
There's a long-standing bug
UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
How does cat play with mouse? cat /dev/mouse
___
Please
to have
different views for different clients.
So for my internal view where I:
match-clients{ httnets; };
match-destinations{ httnets; };
recursion yes;
allow-query{ httnets; };
On 02/21/2013 10:40 AM, Matus UHLAR - fantomas wrote:
allow-query is useless here, unless
?
it's kind of general switch to allow/deny recursion.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I don't have lysdexia. The Dog
604800 change that to 4w
not needed but
and negative cache value 86400 gulp drop that to no more than 3600,
maybe even just use 600.
I agree with this one. Value 86400 for negative cache is widely used, but
mostly from obsolete understanding of SOA field name minimum.
--
Matus UHLAR
is the reason behind it that both
servers' having queries ?
there are cases where DNS resolver sorts IP addresses and thus prefersone of
them. There are also cases where DNS resolver measures response time and
uses the faster DNS server.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http
139.0.184.142.in-addr.arpa.
Saturn works OK for most questions, and returns a PTR record if you ask
for ANY, but if you request a PTR directly it ignores you.
some kind of lame DNS load balancers?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail
that require wildcards ;-)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
They that can give up essential liberty to obtain a little
Matus UHLAR - fantomas uh...@fantomas.sk wrote:
On 16.01.13 14:57, Baird, Josh wrote:
Is it acceptable to have a wildcard CNAME? Example:
* IN CNAMEsomewhere.com.
Or, would it be advised to only use wildcard 'A' records?
while it is technically valid
there's none I would completely trust.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Spam = (S)tupid (P)eople's (A)dvertising (M)ethod
should do
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Support bacteria - they're the only culture some people have
via masters {} directive, and use it in
also-notify {} clause.
you will just have to define 74.81.81.82 two times - in both acl and masters
directives...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
why we use /var)
On 03.12.12 21:32, Daniele Imbrogino wrote:
I edited the working directory to /etc/bind because this is the directory
where I have all the zone data files.
If I use the default /var/cache/bind do I have to move also the zone data
files
2012/12/5 Matus UHLAR - fantomas uh
On 28.11.12 18:38, Tony Finch wrote:
Yes it does. For example, have a look at responses to queries for
dotat.at
in mx for various buffer sizes and observe that RRsets are dropped but
the
TC bit is not set.
On 11/30/2012 01:30 PM, Matus UHLAR - fantomas wrote:
Nice to see. I'm seeing
...
If anyone has better info on how do microsoft AD sevrers work with DNS, just
let us know...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu
this way just to have dumps and core files in /var/cache/bind
where named usually can write, instead of /etc where it usually can't (and
shouldn't).
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na
a document from which I can extract few questions?
Sorry for the OT and thanks in advance.
Sorry for not responding sooner, but I have not idea where you could find
such informations. I can only recommend you to search the net for already
existing dns knowledge tests...
--
Matus UHLAR - fantomas
named.conf.options
- named.conf.options
options {
listen-on ...;
};
I used instead:
- named.conf:
options {
// common.options
...
include named.conf.options;
};
- named.conf.options:
// host-specific options
listen-on ...;
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http
Matus UHLAR - fantomas uh...@fantomas.sk wrote:
I know. But there are cases you just have much of data in the DNS and what I
am asking is, if BIND really does skip authority section, if it helps to
avoid sending truncated packets.
On 28.11.12 18:38, Tony Finch wrote:
Yes it does. For example
On Thu, Nov 29, 2012 at 7:25 PM, Matus UHLAR - fantomas
uh...@fantomas.skwrote:
famous assertion failures? What system do you run the BIND on? Shouldn't
you
better upgrade to version that has no famous assertion failures?
On 29.11.12 20:50, Alexander Gurvitz wrote:
Well, of course it's
. 172800 IN NS ns2.videolinedvd.com.
;; ADDITIONAL SECTION:
ns1.videolinedvd.com. 172800 IN A 72.167.164.36
ns2.videolinedvd.com. 172800 IN A 72.167.164.36
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive
, Matus UHLAR - fantomas wrote:
actually, they have glue A record in .com zone:
;; AUTHORITY SECTION:
videolinedvd.com. 172800 IN NS ns1.videolinedvd.com.
videolinedvd.com. 172800 IN NS ns2.videolinedvd.com.
;; ADDITIONAL SECTION:
ns1.videolinedvd.com. 172800
upgrade to version that has no famous assertion failures?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Linux IS user friendly, it's just
of data in the DNS and what I
am asking is, if BIND really does skip authority section, if it helps to
avoid sending truncated packets.
If it does, the minimal-responses does NOT affect packet truncation. if it
does not, I ask why...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk
with this.
Can anyone enlight me in this?
Thank you.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
- Holmes, what kind of school did you study
).
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Despite the cost of living, have you noticed how popular it remains
are unreachable.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
They that can give up essential liberty to obtain a little temporary
safety
to
sites like facebook, youtube, apple store etc. I don't work for the company
anymore so I have no idea if they have fixed it (the only way I could think
of it was to change the company's DNS architecture
https://lists.isc.org/pipermail/bind-users/2012-April/087314.html
--
Matus UHLAR - fantomas, uh
...
(the best is to have records in the database, so you can sort according
to anything you need)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu
records for subzones.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
- Have you got anything without Spam in it?
- Well, there's Spam egg
memory,
it currently uses 1359868 VSZ and 732852 RSS after 38 days with ~432
queries per second.
I have even increased max-ttl and max-negative-ttl to see if it affects
memory usage.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail
syslog daemon is for, simply
configure it to forward logs to another machine.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Linux is like
either forwards, or resolves. If it resolves, it is
authoritative - if it does not have the answer, then the answer does
not exist. You can use lightweight DNS servers like dnsmasq that can
locally resolve some hosts and forward all the rest.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http
should I do
to enable that?
your server has apparently problems with internet conectivity. Is it
behind firewall?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT
that will trigger transfer attempt, or is it
useless in such case?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
If Barbie is so popular, why do
...
31.16.172.in-addr.arpa
and use it as 16 separate /16 zones. Better do not try to make this
easiee, you will end in making that more complicated and error-prone.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising
not to do things this weay and better split the /16
block to 256 od /24 blocks and simply delegate each other as you need.
Doing it simple is both nice and resistant to errors.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising
want to limit number query done by a client. The usage of
resources in my equipments is very high specially in my firewall.
either you have misconfigured or misbehaving client, or you need
to upgrade your dns server. By limiting queries you may cause troubles
to your clients.
--
Matus UHLAR
is that the name servers for www.ryanair.com are
misconfigured. They are returning answers as if they are configured
for ryanair.com (see the SOA record) instead of www.ryanair.com as
can be seen below.
Hmm, I've been solving their problem years ago. Haven't they still fix
that?
--
Matus UHLAR - fantomas
abovec. Check all servers in
the resolution path for the answer.
It's a quite common problem with master/slave synchronization, multiple
masters, or a missing delegation to a subdomain, where this can happen.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish
On 10.04.12 19:24, rams wrote:
When I get TC flag for UDP query?
when the answer is too big to fit into the UDP packet of sice 512
(default) or client-provided (when your client advises bigger buffer size)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish
501 - 600 of 924 matches
Mail list logo
