Hello,
I see that hosts that are not allowed to recurse are often generating
check-named errors.
I wonder if it wouldn't be better to check ACL's first and check-names just
after it?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to rece
at caused troubles and my
recommentation was to create full zone for the delegation.
Creating full zones for 128 IPs in /25 delegation would be, ehm, bloated.
Those tools and nameservers should be fixed imho.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish
use of
> the contents of this information is prohibited and may be unlawful. If you
> have received this electronic transmission in error, please reply immediately
> to the sender that you have received the message in error, and delete it.
> Thank you.
> ----
; 64-126 IN NS ns2.example.com.
>
> .
> .
> $GENERATE 65-126 $ CNAME $.65-126
Note that addresses .64 and .127 belong to that range too (someone might
want to have record for them)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail adver
> On Feb 23 2010, Matus UHLAR - fantomas wrote:
>> since 9.5, the default for allow-recursion is { localhost; localnets;
>> }; previous versions used iirc { all; };
On 23.02.10 16:48, Chris Thompson wrote:
> Actually, that change was made in 9.4. (Some of the cross-in
st; localnets; };
previous versions used iirc { all; }; - if you didn't have recursion
enabled, you may need to do so now. Note that enabling recursion to anyone
is security risk.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advert
hair out trying
> to figure out why digs directly to my DNS server via the internal facing
> interface wouldn't resolve like the ones on the external facing
> interface.
mostly because you provide fake version of 84.44.12.IN-ADDR.ARPA.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; h
are missing trailing dots here. Note that without them the current
$ORIGIN is appended, which results in:
0-59.173.150.66.in-addr.arpa. 3600 IN NS
ns2.wemadeusa.com.0-59.173.150.66.in-addr.arpa.
0-59.173.150.66.in-addr.arpa. 3600 IN NS
ns1.wemadeusa.com.0-59.173.150.66.in-addr.arpa.
Try fixin
swers from cache to anyone who has
allow-query enabled. It won't do the recursion, but will answer if it's
cached. Maybe this is what made you think the above.
bind 9.4 and later has new option allow-query-cache that allows tune this
behaviour too and the default is same as allow-recursion.
no idea what kind of nameservers are they, but they're either broken or
their admins do not know how to properly configure zone delegation.
No, NS delegations ni parent zones are NOT enough.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to rec
behavior may change at any time.
there's sortlist option that should do what he wants, however it depends on
source IP, not the destination RRset.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this addr
s.
> -Original Message-
> From: bind-users-bounces+batpower83=yahoo.co...@lists.isc.org
> [mailto:bind-users-bounces+batpower83=yahoo.co...@lists.isc.org] On Behalf
> Of Matus UHLAR - fantomas
> Sent: Saturday, February 06, 2010 8:22 PM
> To: bind-users@lists.isc.org
> Su
should be ours (ISP) or
> customers DNSs!
The same applies for reverse and forward zones.
There's no difference here.
If you can properly configure forward zone, do the same for reverse.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receiv
> that something that also propagates and get¹s cached (i.e. Is no data
> treated the same as bad data by upstream bind servers?
No. However I'd focus on problems of your secondary server.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to
3.1
> Using domain server:
> Name: 127.0.0.1
> Address: 127.0.0.1#53
> Aliases:
[...]
there are two "host" commands, one comes from bind, one from dunnowhere.
check which one do you have installed.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
and I think DNS is really bad place
to solve this problem, as it is for failover switching and helping http
clients to find out correct site in case of mistake.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
rvers for the
> zone, I want to send them to different servers.
"notify explicit;" is here for this usage
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT
he .pac content. If you use IP's in it, they are probably going to
get resolved from given hostname.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolve
mes from one of those servers, is the one preferred or is
the source of NOTIFY ignored and the selection works as usual?
I have small farm of servers and when any of them fetches zone from the
master and sends notify, I't like others to fetch zone from this one as a
small optimization.
Thank y
em to blackhole would prevent your bind from reaching them.
It's better to firewall off requests from those IP addresses to your port
53. If you have recursive-only nameserver, you can safely disable requests
to it from unauthorized sources and allow only authorized networks.
--
Matus UHLAR - f
>>> I need to change only one record in zone (not deligated to my server,
>>> can't transfer it too)
>>>
>>> RECORD.DOMAIN.NET IN A 192.168.1.1
>>> to
>>> RECORD.DOMAIN.NET IN CNAME RECORD.DOMAIN.ORG
>>>
>>> Only one
e record! Is this possible via bind?
Not if ht domain is not yours.
You must ask the person who maintains domain.net.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVA
you should report it to the vendor now.
This is true, however even applications following the standard and trying
other IP addresdses would notice the delay when first trying to open
TCP connection to unresponsive server, which is again reason for solving the
problem at different level.
--
Matus
like to do this.
This should be done at network level, L3 switches and load balancers exist
to have this functionality. Or, it could be checked at application level
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this
s not specified, the allow-recursion setting is used.
The default is { localhost; localnets; }; which is apparently not enough for
you.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tu
e found in cache. It is important to keep both informations in sync
(or at least all servers have to provide correct informations) otherwise you
may find strange problems.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising
ue that requires restarting named daily? What changes
> in the config files can I make to solve this issue?
I don't think that's a caching problem. From my experience this is most
often caused by mismatch between NS records in your zones and NS delegations
from parent zones.
rent to different servers than those listed in the domain) often cause
these kinds of problems.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTA
for them. The same applies to forward domains (I've seen
examples of single record delegations and related problems)
It's much easier and safer to do CNAME delegations.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertisi
>> On 31.10.09 12:07, Jukka Pakkanen wrote:
>>> For some reason the slaves don't update the zone unless I restart the
>>> BIND service in the server, and after a while, fail to respond to
>>> queries.
> Matus UHLAR - fantomas kirjoitti:
>> Is the
ited
> into different IP's.
>
> Bind answer authoritative for all clients, and forward (if allowed)
> recursive queries to recursive server.
why shouldn't it cache those responses?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT
g with the Windows DNS a lot...
Is the master updating SOA serial?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I drive way too fast to
nything that might be unsecure.
Only take care about allow-recursion setting if you plan to use it as
recursive (if not, "recursion no" should be in the config)) and that should
be enough for now.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish
On 26.10.09 08:08, net...@royal.net wrote:
> Can I change bind cache's content?
you can remove objects via rnds flushname "name".
You can't forge cache content without modifying BIND source or playing with
process' memory.
--
Matus UHLAR - fantomas, uh...@fantomas
s pointing to a server where...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Micro$oft random number generator
; // hda network
> customacl;
> };
otoh, it could ease configuration of multiple files if only plain IP/CIRD
list could be loaded within an ACL statement...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to
hey should work as configured.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Despite the cost of living, have you n
xhausting me.i don't think this way is effective,so i'm very appreciate
> some one could give me a guid, or some example:souce code is perfect
Better try to explain what do you want to achieve
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I
server should provide recursion only for the ISP's customers, which
means, IP ranges assigned to the ISP.
configure allow-recursion with your IP ranges.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
I must be missing
> something simple. What is the best way to debug why the slave does not
> seem to attempt a transfer of the additional zones from the master?
It seems you did not configure bind to have any slave zones. do you have any
slave zone statements on the second server?
--
Matus
Imho, the sibling glue records are bad, just because of your example. They
should not be put in domain - only example.xx maintainer should be allowed
to put glue records for example.xx into the .xx zone and only when they are
used for .xx zone.
And imho, domains should not be registered on servers
triggering the behavior that confused me.
> Matus UHLAR - fantomas schrieb:
>> OK, again: did you have any other allows ?
>> Which means allow-recursion, allow-query-cache
On 02.10.09 11:18, Sven Eschenberg wrote:
> recursion yes; - does this fall into the same category b
> Matus UHLAR - fantomas wrote:
> > I have moved authoritative server to new IP address. I have changed the
> > DNS name pointing to it so the NS would point to the new IP.
> >
> > Now I looked at the traffic and it seems that there are ~4 of 1000
> > recursive
NAL SECTION:
a.iana-servers.net. 172800 IN A 192.0.34.43
c.iana-servers.net. 172800 IN A 139.91.1.10
d.iana-servers.net. 172800 IN A 208.77.188.44
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail adv
defaults, always set
> things as YOU want them to be :-).
Could you post your config (and optional includes) somewhere?
I still thinkthe real problem lied elsewhere...
> Matus UHLAR - fantomas schrieb:
>> On 30.09.09 15:59, Sven Eschenberg wrote:
>>> When I had no
sed connection.
Do you have many of them?
Do you allow transfers to all clients?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Linux - It
rnal clients (in their view) are not allowed
> any recursion? Would that be more feasible?
allow-query { any; }; is default. Do you have any other allows's ?
the first error message indicated that you didn't allow query-cache or recursion
for some clients. Apparently you cloned a vi
allow recursion for
you?
I think rndc reconfig should forget removed zones too, but you may be
- either seeing the same zone in other view
- see records fetched from other servers after zone was removed
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to
n, not necessarily a bad firewall. The
tcpdump would help us, unless you are satisfied with using linux iptables...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek
hierarchy, or
iterative DNS servers that send resursive requests anywhere?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Spam is for
Hello,
IIRC, slave zones transferred to BIND8 had header that informed us when was
the zone transferred and from where.
Do I remember correctly? If so, when was this feature removed and why?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e
is zone that
> it doesn't matter.
>
> > How long did you wait until you queried the server?
> > And, did you query THIS server?
> >
> > What do logs say?
On 17.09.09 16:12, stefan novak wrote:
> The logs says nothing. So as there is no update of the zone.
e Class B or did i make another mistake?
How long did you wait until you queried the server?
And, did you query THIS server?
What do logs say?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie
e latency of
> > DNS responses were reflective of the performance of the
> > underlying app (which I question above).
>
> As said, my issue is not really load balancing, but active-standby
> switching, where only one server will ever respond at any given time.
There are pa
> On Freitag 11 September 2009 Matus UHLAR - fantomas wrote:
> > - it's quite useless to cache the .arpa and .in-addr.arpa since
> > unlike other TLD's they are hierarchically organised so there won't
> > be any valuable benefit from slaving them, only r
to cache the .arpa and .in-addr.arpa since unlike other
TLD's they are hierarchically organised so there won't be any valuable
benefit from slaving them, only risks (see above).
- there's no way of slaving huge domains like .com .net (they aren't
apparently slaved even b
as also caching server ?
unless you turned off caching...
> 4- If serverA doesn't know query answer, this server will return
> domain "domain is not exist" ?
what do you mean "query answer"? You server will send what it has in the
cache or what will serverA return, or an
ou can try dig axfr from all of them but many of them don't allow
transfers. I guess he already did it and above is list of servers that do
allow transfers...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this addres
t;
> spf field is marked as neutral, also follows senderid as neutral
>
> how to have the SPF OK, knowing that neutral is not really an answer
Please move this discussion to SPF community mailing lists.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wis
- does anybody have an idea how to write a software to manipulate the
> dns-cache and entries
with bind you can flush names and reload config files (to change zones
list), which is a bit far from "manipulate".
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning:
hk. 73 IN A 203.112.92.244
the www.hsbc.com.hk. is delegated (via glue NS record) to three servers and
they all only reply with A record, no NS. I encountered the same problem
with different domain under the same circumstances. I think that if
www.hsbc.com.hk. is delegated to some se
moved?
Will they stay there forever?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Windows 2000: 640 MB ought to be enough for an
ad when sending log line to another process either
via network or local socket and parsing that line in the another process.
Logging to file is just faster and more reliable unless you use remote
logging features of syslog.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
The only usefull question is
what hardware you need to be able to process your traffic.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
whatever domain:
96.55.139.64.in-addr.arpa. CNAME 96.96-28.55.139.64.in-addr.arpa.
96.55.139.64.in-addr.arpa. CNAME 96.96/28.55.139.64.in-addr.arpa.
96.55.139.64.in-addr.arpa. CNAME 96.whatever.55.139.64.in-addr.arpa.
or even to:
96.55.139.64.in-addr.arpa. CNAME 96.hicks-net.net.
the second
ernet connection in
DNS. That should be done by DHCP and similar servers but microsoft had a
"genial" idea so they ask by themselves.
it can be turned off but the default is on...
sorry, I don't know about the rest...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www
ll. It would take code changes to make
> it work well.
... but it would require some tuning of forwarding code e.g. to set up
maximum timeout for a forwarding server and to allow sending of
non-recursive queries to a forwarding server.
I think it would be interesting to know if this beh
On 11.08.09 13:27, Nelson Serafica wrote:
> I need to set bind to listen to all address. I'm using AMAZON EC2
no, you don't. you configure listening IPs/ports by using listen-on and
listen-on-v6.
query-source only configures from which IP/port will your requests come
from.
--
.3.4, but you apparently did
not move the ns2 to new IP so it still tries to fetch zone(s) from old IP.
Move ns2 to 5.6.7.8 and it will ask fot transfers from that IP.
allow-transfer only configures who (which IP) will be allowed to transfer
a zone, but it has nothing to do with who will
You can download current version from ftp.internic.net:/domain/named.root if
you want, but that is not required for working DNS server.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adre
in case of a
> negative answer and the zone domain name is not "test.es", I want to try
> another server. Is that possible?
you can configure zone "test.es" to be forwarded to different server. There
is no functionality in BIND that would continue searching fo
Or only correct external domain?
if those records are meant to be used in NS records, yes, they must be
changed.
> This happen with your bind server?
this happens with dns servers.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail
Many people consider that a bad idea. the DNS is used by many applications
in many manners and providing false answers can break them in many ways.
You won't get different answer on this list, i guess.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish
> server ::/0 { bogus yes; };
>
> work?
no, it would prevent server from replying v6 requests
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolv
l routes will allow named to immediately detect
> that a IPv6 site is not reachable. "default" is over used.
oh, although it should work, it's a bit dirty workaround...
it needs a statefull firewall allowing only replies to go out...
--
Matus UHLAR - fantomas, uh...@fantom
On 30.07.09 10:35, Matthew Huff wrote:
> Is there any way to disable BIND from loading the automatic empty zones
> (D.F.IP6.APRA, etc...). They are being generated even with the -4 command
> line.
have you looked at the disable-empty-zone configuration directive?
--
Matus UHLAR - fan
ntil M$ fixes that one (I doubt so), new BIND won't be compatible with w2k.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
We are but p
> > In message <8401907190740j6e04pc23316827fe0b...@mail.gmail.com>,
> > Bradle
> > y Caricofe writes:
> [...]
> > > 19-Jul-2009 10:34:29.635 client 84.235.6.53#1276: query (cache) '
> > > 6q6vszqgm.w8n08fo0.taha.com/A/IN' denied
&
card record
returning localhost IP. However be very careful not to provide those to your
own recursive clients. I ocasionally use that on biggest abusers.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovan
he order they came in. That
may be problem in some libraries, some time ago I've been having similar
problems, it seemed that nss_lwres was responsible for that.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to t
uld require nor benefit of them, and I don't recommend using them.
With most of applications doing reverse resolution and using its result
anyhow it's still better to have always the same name...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to
ly one/few of them?
So, I think that the recommendation above is good.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
My mind is lik
On 01.07.09 16:53, fake...@fakessh.eu wrote:
> it would be possible to add this server bitsy.mit.edu.
> in / etc / resolv.conf to increase the speed of propagation
- /etc/resolv.conf can only contain IPs.
- /etc/resolv.conf is not a BIND issue.
- propagation of what?
--
Matus UHLAR - fa
> In message <20090629200938.ga6...@fantomas.sk>, Matus UHLAR - fantomas writes:
> > On 30.06.09 01:08, Mark Andrews wrote:
> > > In message <20090629101834.ga31...@fantomas.sk>, Matus UHLAR - fantomas
> > > wri
> > tes:
> > > > I am plan
On 30.06.09 01:08, Mark Andrews wrote:
> In message <20090629101834.ga31...@fantomas.sk>, Matus UHLAR - fantomas
> writes:
> > I am planning to change NS records in our and our customers' zones.
> >
> > I'll have four nameservers on different networks, a
y "ns.domain.example." as a NS, or will they require other NS
record?
- if they require other NS record, will they accept "ns.isp.example." with
the same set of A records?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to re
'
>
> What category does this fall under?
If in doubts and docs won't tell you, just enable "print-category yes;"
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tu
ny strange reasons.
But I don't recommend playing with spf2 just to get mail to hotmail, I think
there are better ways to get your mail anywhere.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varova
s IP and waterinvoice.com should
> have your linux servers' IP. Watch out if there is really no email going
> from water.com via your linux server and no mail coming from
> waterinvoice.com via your exchange server...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.
via your linux server and no mail coming from waterinvoice.com via
your exchange server...
I assume
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukol
answer, the classic resolution
will be used.
I guess the configured forwarders have one of these problems
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek rek
thing like "publish a server". You must delegate the
test.midomain.com to your server in the midomain.com, which means, that a
midomain.com maintainer must put there NS records for "test.midomain.com"
pointing to your server.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http
t; };
Do you have NS records for slaves in the zone? Do you have corerect "master"
set up in the SOA?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOST
d]
> ; 192.52.178.30 [srtt 9] [flags ] [ttl 1793]
>
> If any RFC or related documents, please let me know.
I'm not sure if any rfc requires
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
> On May 19, 2009, at 9:45 AM, Matus UHLAR - fantomas wrote:
>> I'd like to know how does match-recurtsive-only view interact with
>> configured zones.
On 19.05.09 10:25, Chris Buxton wrote:
> The order of views matters. The first one matched, wins.
>
> Let's sup
only, will clients fall into one view if recursive and into
another when asking for configured zone? Does the order of views matter
here?
Thank you
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovani
redirect any browser when the
> > computer is in a captive IP space like a zone receiving a guest before
> > authenticating itself through a web site.
This problem should not be solved at DNS level - maybe on the HTTP proxy
level, or solve user authentication using WPA or similar methods on
2308 is not clear.
I think RFC 2181 (which 2308 refers to) is clear enough.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklam
ot, but it's alwayt better to have it.
However, the builtin default zone name is "127.in-addr.arpa" and I prefer
creating this one.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na
iirc assumed that one name with multiple
IPs is one multihomed host, which could lead to assumption that it's enough
to query one of those IP's.
I believe it's not true.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advert
901 - 1000 of 1050 matches
Mail list logo
