e.jp
・Bind9.18.28→NG
nslookup time2.aaa.ne.jp
名前:ns1.bbb.co.jp
nslookup is NOT a good tool to resolve DNS problems. Use "dig" instead.
dig time2.aaa.ne.jp @"IP of Bind9.9.4"
dig time2.aaa.ne.jp @"IP of Bind9.18.28"
--
Matus UHLAR - fantomas, uh...@fa
ime2.aaa.ne.jp @"IP of Bind9.9.4"
dig time2.aaa.ne.jp @"IP of Bind9.18.28"
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek rek
have NS in the root ( or closest enclosing
authoritative zone).
Thanks, this worked.
I created ".local" zone (copied from db.empty) with dummy NS for
"example.local" and forwarding works, just as ".local" is resolved locally.
On Fri, Aug 16, 2024, 7:13 AM Matus UH
quot; zone, named started working,
I just needed to add
validate-except { "local"; };
guess I understand why.
From the history I remember that defining zone (example.local) with no
delegation in the parent zone (local) does not cause issues (locally).
Is "type forward" spec
On 15 Jul 2024, at 23:27, Matus UHLAR - fantomas wrote:
I have noticed that especially DNS blocklist cause errors like:
Jul 14 01:41:28 fantomas named[1854]: success resolving
'D.C.B.A.zen.spamhaus.org/A' after disabling qname minimization due to 'ncache
nxdomain'
many queries.
is it possible to disable query minimisation for particular domains?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Athe
key.mg-esp-prod-eu-eu.mallorcazeitung.es SOA ns1.epi.es
I therefore suspect that the delay will be even greater tomorrow again
when the newsletter arrives, so that the "communication error" will
occur again.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I
TION:
epi.es. 259200 IN NS ns3.epi.es.
epi.es. 180 IN NS ns1.epi.es.
epi.es. 300 IN NS ns1.epi.es.
epi.es. 300 IN NS ns2.epi.es.
epi.es. 3600IN NS ns2.epi.es
nd PMTUD.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Windows 2000: 640 MB ought to be enough for anybody
--
Visit https://lists.isc.org/m
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Honk if you love peace and quiet.
--
Visit https://lists.isc.org/mailman/listinfo/bin
missed?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
The early bird may get the worm, but the second mouse gets the cheese.
--
Visit
or server1.example.com.
Simply, wildcarding is not for case like this.
-Message d'origine-
De : bind-users De la part de Matus UHLAR -
fantomas
Envoyé : mardi 14 mai 2024 15:58
À : bind-users@lists.isc.org
Objet : Re: SRV on multiple subdomains
On 14.05.24 13:08, DEMBLANS Mathieu w
in a doc that the < * > can only be the leftmost label in the name.
correct.
Is there an other way to simplify or does I have to add each entry individually?
no, but the question is if you really need this.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning:
168.56.157;};
also-notify {192.168.56.157;};
notify explicit;"
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
"One World. One Web. On
e
authorized domain server?
I have looked onto it manually, so far found nothing.
rndc dumpdb could generate named output where you should be able to find out
the culprit.
the difference between current version of zone between ns1.gov.sk and
ns2.gov.sk could affectg this problem.
--
Matus
ch service are we
using - if there are multiple IP's for _anything_, return topologically
closer first.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT ak
er {
IP address;
};
};
I am clueless what is going wrong. Any help is greatly appreciated
your nameserver does not update secondary(slave) zones, therefore
allow-update does not make sense.
you should remove it or replace with allow-update-forwarding so all received
updates are forwarded to
think this is question for webmin/virtualmin, but from what I know about
webmin it tends to edit local configuration, so I guess it will edit primary
zone file.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this
r changed to the one I described above a long time ago.
Perhaps after BIND 9.8
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Support
ones in AD, you can't
use multiple servers as the zones are often not in sync.
I would either create hidden primary that would process dynamic updates.
For DNSSEC and inline signing, hidden primary looks as best option to me.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fanto
t value, but not when the wildcard
entry is there. But Google and other major DNS providers return the
non-wildcard value as expected.
Please provide concrete example, I can't query fun.test.test.me. nor
test.test.me.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
wise, you can set up multiple views with different versions of the same
zone, configured to provide different verision according to source IP.
This is much harder to set up.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail adverti
On 27.06.23 16:22, sami.ra...@sofrecom.com wrote:
Hello In DNS benchmarking which is more important latency or response
time? for a DNS server what is the difference between the two values?
I don't see any difference between those two.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ;
interface (unless you also configure SNAT for those
packets), so they are not exactly the same.
In some cases you may need both.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem
internet, obviously the internet
sources fall into your internal view, not into this one.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
S
engage.ticketmaster.com/NS/IN': 205.251.194.123#53
The host resolves fine on my bind-9.16.38 system using the exact same
configuration, as well as most or all public resolvers.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advert
can have separate cache.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Your mouse has moved. Windows NT will now restart for changes to
On 3/28/23 11:28 AM, Matus UHLAR - fantomas wrote:
Yes, this is one of the problem "authoritative zones for local use".
On 28.03.23 12:18, Grant Taylor via bind-users wrote:
Authorizing the /zone/ for local use wasn't the problem. The problem
was that the world could get some
On 3/28/23 10:48 AM, Matus UHLAR - fantomas wrote:
If your server has authroritative zones for internal use, yes, in
such case allow-query is good idea.
On 28.03.23 11:02, Grant Taylor via bind-users wrote:
The server that I first set this on had a secondary copy of the root
zone for my
On 3/28/23 6:30 AM, Matus UHLAR - fantomas wrote:
Great, this means that only clients with those IP addresses can
query your server for non-local information.
On 28.03.23 10:16, Grant Taylor via bind-users wrote:
I used to think the same thing.
Then I learned that I needed to also add
your server for non-local information.
So, your server should NOT be part of Amplification attack.
(unless you run VERY OLD version of BIND)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto
On 28.03.23 16:04, Nyamkhand Buluukhuu wrote:
No, I have an access list that allows only our ISP zones.
zones? access lists are meant to limit clients.
how do your access limits look like?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e
BIND 9.18.
On 23. 3. 2023, at 17:57, Matus UHLAR - fantomas wrote:
what's the reason? Code cleanliness?
Or is it problematic to maintain?
On 23.03.23 19:11, Ondřej Surý wrote:
Those are wrong questions to ask - the right question to ask is whether this
bring any
value - and the answer is
e describe the use
case
here or in the issue mention below.
well, if "just for sure no other AH tries that again" is not a reason for
you...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varov
Are you aware that only the DSCP flags are deprecated, not all *source and
*forwardes etc options themselves?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolve
tinfo/bind-users
------
End of bind-users Digest, Vol 4123, Issue 2
***
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this software with paid suppor
ooks like your servers dns.di.ubi.pt (193.136.66.1) and dns2.di.ubi.pt
(193.136.66.2) aren't reachable from internet.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOS
On 7. 11. 2022, at 16:19, Matus UHLAR - fantomas wrote:
while it's doable, and with using BIND plugin at generating server it
won't need much of memory, any server that will be repeatedly asked to
resolve IPs from that range will fill its cache with generated records.
On 07.1
On 7. 11. 2022, at 15:50, Matus UHLAR - fantomas wrote:
sooner or later, but filling up cache with garbage could result in other
non-garbage records being flushed out.
Are there any mechanisms that would wipe this garbage before other records,
used more often even if not very recently?
On
On 28. 10. 22 9:29, Matus UHLAR - fantomas wrote:
this request for ipv4 too.
I really don't think making generic named for ipv6 addresses
within range
bigger then e.g. /112 (64Ki addresses) makes any sense.
prehaps it may for small subsets of IP addresses
/64 is 184467440737095
On 28. 10. 22 9:29, Matus UHLAR - fantomas wrote:
this request for ipv4 too.
I really don't think making generic named for ipv6 addresses within
range bigger then e.g. /112 (64Ki addresses) makes any sense.
prehaps it may for small subsets of IP addresses
/64 is 184467440737095
they put in the
sub-zone, so it's not the ISP leaking client identifying information.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu
On 11/6/22 6:39 AM, Matus UHLAR - fantomas wrote:
3. allow your servers to to fetch 66.136.193.in-addr.arpa.
On 06.11.22 20:05, Grant Taylor via bind-users wrote:
Is this 3rd step documented somewhere?
I searched for it in RFC 2317 but didn't find it. Maybe I over looked it.
This st
arent do a
secondary zone transfer of the child zone. But I don't see any mention
of the child doing a secondary zone transfer of the parent zone.
I think that would be a good idea.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-ma
when no outside connection is
available?
if they are properly configured, yes.
What could I be missing?
can you provide an example of an IP and configured reverse zone, and the
zone file?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to rece
why this behaviour is seen on BIND 9.16.* version.
perhaps there's an error in your zone 22.10.13.in-addr.arpa.
and named did not load it.
try executing "rndc reload" and see what named logs tell you
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I
add following line in the end
$GENERATE 1-255 $ IN PTR 10-11-11-$.example.com.
Dont forget to Reload bind config & you are done.
On 27.10.22 07:58, Marco wrote:
How is the syntax for IPv6?
Is it possible to do it for an entire /64?
On 27. 10. 2022, at 10:12, Matus UHLAR - fantomas w
6?
the syntax for $GENERATE is the same, just the records are different.
Is it possible to do it for an entire /64?
this would create HUGE amount of records, they wouldn't fit into memory.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to r
oesn't prevent
returning cached record.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Nothing is fool-proof to a talented fool.
--
erver will contain internal zones.
you can achieve the same effect with views, no other DNS servers are
necessary
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOS
y
questions and have renewed my faith in geekdom.
If anyone is still confused, I'd be glad to discuss this offline until
we have a final solution. Then we can publish if necessary.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail ad
rvers.
#truth
On 10/15/22 10:34 AM, Matus UHLAR - fantomas wrote:
forward zones - named sends recursive query to the primary servers
stub zones- named fetches NS records from primary servers
and uses them for resolution
static-stub zones - named forwards iterative (non-recursive)
req
an myself. Hopefully, I can gain from
that wisdom and we can provide a kind environment where those less educated
feel mentored.
that's why we are here.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this ad
plementation of features such as RPZ, etc.
do you need RPZ for internal zones?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
LSD wil
curiousity, I set my opendmarc.conf:
DomainWhitelist lists.isc.org
so we'll see next time mail comes.
On 25.08.22 18:10, Alessandro Vesely wrote:
Please tell us.
On Fri 02/Sep/2022 14:27:55 +0200 Matus UHLAR - fantomas wrote:
so far, not ex
- opendmarc only uses header that's
On 25.08.22 18:10, Alessandro Vesely wrote:
The lack of interest by others proves that From: munging is not so
much of a nuisance as they say...
On Mon 29/Aug/2022 12:09:10 +0200 Matus UHLAR - fantomas wrote:
This will come sooner or later, however:
earlier this year I've done small
trust the seal by isc.org?
I guess most of recipients use predefined configurations, e.g. no
whitelisting.
out of curiousity, I set my opendmarc.conf:
DomainWhitelist lists.isc.org
so we'll see next time mail comes.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
doc/arm/html/reference.html#namedconf-statement-minimal-responses
yes: the server only adds records to the authority and additional sections
when such records are required by the DNS protocol (for example, when
returning delegations or negative responses). This provides the best server
performa
mpany.com
relay.company.com has no A record
% host -t relay.company.com
relay.company.com has no AAAA record
you must add a host that does exist.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie:
I believe this is what Borja mentioned:
https://lists.isc.org/pipermail/bind-users/2022-June/106338.html
https://lists.isc.org/pipermail/bind-users/2022-June/106339.html
(thanks).
so there are some delegations that SOMETIMES cause long delays in
resolution.
--
Matus UHLAR - fantomas, uh
rom 147.67.12.4#53(ns3lux.europa.eu) in 15 ms
www.ecb.europa.eu. 300 IN CNAME www-ecb-europa-eu.ax4z.com.
;; Received 86 bytes from 156.154.65.109#53(pdns109.ultradns.net) in 11 ms
real0m5.117s
user 0m0.011s
sys 0m0.035s
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fanto
amed[11061]: validating com/DS: no valid signature
found
May 12 19:24:06 OpenWrt named[11061]: no valid RRSIG resolving 'com/DS/IN':
66.232.64.10#53
doesn't your ISP block or intercept DNS queries?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I
700MB of DNS traffic for 2GB
of Internet browsing within one month.
On 09.05.22 10:47, Petr Špaček wrote:
Sounds like either:
- Broken caching or,
- Random subdomain attack
to me.
maybe someone uses VPN over DNS...
in such case, rate limiting of client comes to mind...
--
Matus UHLAR - fantomas
with different mailing list and also got customer
ticket with the same problem.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
"Where do
ranges)
However, when i reload rdnc and tail the syslogs all i get is "(.xx.com):
query (cache) '.xx.com/A/IN' denied"
does your server provide domain xx.com?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail
x27;t have it in it's own data (authoritative and / or cache),
then it's recursion setting comes into play.
If I'm mistaken, please correct me.
you are right, forwarding queries requires recursion.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.s
hile I know BIND9 doesn't yet do EDE itself, I am hoping for an option
in BIND to just blindly copy whatever EDNS options it receives to it's
client.
no, bind uses edns as it needs, not as client asks it to. communication with
clients is independent from communication with ser
mple.com. CNAME wildcard.example.com.
cc.aa.example.com. CNAME wildcard.example.com.
etc.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
LS
er in may and june
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Saving Private Ryan...
Private Ryan exists. Overwrite? (Y/N)
--
Visit
On 26 Jan 2022, at 17.14, Matus UHLAR - fantomas wrote:
Altering the body or headers at all (whch lists do) will often break the
hashing. For this reason, most recent versions of mailman have an option
to rewrite your mail from:
On 26.01.22 17:30, Sten Carlsen wrote:
When the dkim is set
not - that one was signed by mailman because of his domains' restrictive
policy.
I missed this part before.
I've argued that it should be possible to do so for *any* dmarc policy,
even p=none, but that option is not present in mailman 3, at least.
I agree.
spam filter is so
.3.4 or 5.6.7.8
So my question is: Is it possible to configure what I am trying to do?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu
92.33.4.12#53
resolving ./NS for : non-improving referral
13-Jan-2022 14:28:09.937 lame-servers: info: FORMERR resolving './NS/IN':
192.33.4.12#53
13-Jan-2022 14:28:09.938 resolver: info: resolver priming query complete
So ... could this be Comcast munging about in the DNS traffic?
ic /
Internet facing servers.
then, you should understand the need for separation of roles well.
just the "recursive only" and "authoritative only" have a bit different
meaning I tried to explain above.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warn
king for an option to suppress
these warnings.
what's the reason for specifying source port for zone transfers?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT aku
18, Nikita Druba wrote:
What can be wrong here? How I can more localize the problem?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
42.7
y nameserver for the entire root domain. Even webcrawlers don't
need to harrass non-root-nameservers for root domain information.
Note I haven't done anything yet; I'm asking if there _is_ a way to do it
presently implemented in Bind.
none I know so far.
I'd be glad if someone
On 13.12.21 08:18, John Thurston wrote:
If you update your resolver to 9.16, I think you can do exactly what
you want with the "validate-execpt" option.
{rolls eyes} been there. done that. for exactly the same reason :/
On 14.12.21 16:58, Matus UHLAR - fantomas wrote:
thanks, this
into validate-except {}.
This should not be a problem since .local is reserved.
I guess .local should have negative trust anchor in root zone.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie:
xxx.local"?
I have tried to create empty "local" domain but then I only received empty
responses for any requests.
(I know .local is for mdns, but I can't do anything with that).
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive
this to happen, and just opting to use the SOA
>TTL value (and not the SOA.minimum value if they disagree)?
On Fri, Oct 22, 2021 at 10:29 AM Matus UHLAR - fantomas
wrote:
are you authoritative server for azure.mongodb.net?
if not, BIND will use cache time that came from authoritative serv
the SOA.minimum value if they disagree)?
are you authoritative server for azure.mongodb.net?
if not, BIND will use cache time that came from authoritative server adn
won't parse the SOA itself.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to rece
always, sometime it forward it in
round robin way.
bind keeps track of servers that responds fastest and periodically rechecks
the rest.
it's called SRTT algorithm, web search should give some explanations.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish N
this fact is not of any relevance.
what exactly is your goal?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
REALITY.SYS corrupted. Pre
the job of authoritative server.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I intend to live
er could in fact help, and wouldn't need protocol
change at all, but the problem above is crucial (what would you do in case
of failure? refuse whole zone?)
and hence would work for
every client/resolver as client/resolver never sees the ANAME but only the
A/AAAA record.
--
Matus UHLA
xxx.xxx.52; dhbex1
mail2m IN A xxx.xxx.xxx.54; dhbex2
would be incorrect and server will choose one of those to implement for all
RRs (see rfc 2182 section 5.2)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail adve
e file, no reverse
lookup.
if your ISP provides reverse lookup, you don't need reverse zone file at
all.
Any thoughts are much appreciated.
what is your question?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising
m and fails.
Most probably it's the "ns1" and "ns2" in zone end with "." which means that
current $ORIGIN (apparently keiththewebguy.com) is not appended to them.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to re
ou for your help!!
it's apparently down again.
some registrars provide you with their own nameservers that don't go down,
why don't you use those?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Va
by default.
Is there anything in logs?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
42.7 percent of all statistics are made
b2XLNAHGdOeleIJQhn3E/1CGApoSTxJTaw==
couldn't get address for 'NS1.KEITHTHEWEBGUY.COM': failure
couldn't get address for 'ns2.KEITHTHEWEBGUY.COM': failure
dig: couldn't get address for 'NS1.KEITHTHEWEBGUY.COM': no more
--
Matus UHLAR - fantomas, uh...@fantomas.s
ddress for 'm.root-servers.net': not found
None of the root servers can't be found. My root hint file is up to date.
Sorry, typed too quickly. Problem stands.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising t
On 06.05.21 18:41, Axel Rau wrote:
This NS has some other clients in the DMZ LAN, so I need Views.
you need multiple views if you are going to provide multiple versions of the
same zones, different forwardings for different domains or alike.
Not just if you have other clients.
--
Matus UHLAR
30(490) (ttl 63, id 11754, len 518)
... exactly because of this reason.
Which named version do you run?
do you use views?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDO
erver from working correctly?
It's most probably the reason. Ask your ISP.
Or maybe I have
incorrectly configured something?
Can anyone help me figure out what exactly is the problem?
your ISP probably
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I w
t to
another forwarder.
It's not possible.
the NXDOMAIN response means that the rquested domain definitely does not
exist, so there's no logical need to verify this from another source.
maybe if you explained us what you're trying to do, we could give you better
advice.
--
Mat
ame server ?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Eagles may soar, but weasels don't get sucked i
now there's no way to make this via rndc.
You'll have to generate named config per-client.
Updating config file frequently may affect other zones in this dns server.
I don't understand how/why it should affect other zones.
At 2021-04-15 15:08:26, "Matus UHLAR - fantoma
addview".
I don't think so, looks a bit too complicated.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Save the
1 - 100 of 1050 matches
Mail list logo
