Hi,
In a recent discussion on another list, it was discussed the pros and
cons of splitting the main conf file to a per domain.
In binds case it would be to /etc/named.d/*.conf
So each zone would have a file in that directory containing only the
relevant info
eg:
zone "example.com" {
ty
I am an old hand at bind, but - DNSSEC Newbie alert :->
I am after clarification on how slaves handle DNSSEC.
I have two slaves, both were stale, like since Feb 9 ! One I directly
control, the second, I do not, so I can not provide details on how
that one is configured, but given it is a reputab
On 3/7/12, Mark Andrews wrote:
>> resigned it again as about 3 months using:dnssec-signzone -a -e
>> +15724800 -K keys/ -N INCREMENT guilty_domain.here
>
> You should have fed dnssec-signzone the old signed zone not the unsigned
> zone.
>
> dnssec-signzone -f guilty_domain.here.signed -N
On 3/8/12, Nick Edwards wrote:
> On 3/7/12, Mark Andrews wrote:
>
>>> resigned it again as about 3 months using:dnssec-signzone -a -e
>>> +15724800 -K keys/ -N INCREMENT guilty_domain.here
>>
>> You should have fed dnssec-signzone the old signed zone no
Thanks, that did the trick!
On 3/8/12, Mark Andrews wrote:
>
> In message
>
> , Nick Edwards writes:
>> On 3/8/12, Nick Edwards wrote:
>> > On 3/7/12, Mark Andrews wrote:
>> >
>> >>> resigned it again as about 3 months using:dnssec-si
Hi All,
Is there a way for RPZ zone file to act on domain AND subdomains
without using two separate entries?
At present I can only get them to match on one or the other unless I do
example.comblah
*.example.com blah
I'm sure I've missed the obvious, but thought I'd ask
Hi,
In just testing a few things with our authoritative server, I made a
typo, and, much to my surprise the server responds NXDOMAIN to
requests from unauthed requesters, this used to return REFUSED, when
did this error change?
(bind 9.9.3-P2)
___
Pleas
ile-format text;
interface-interval 0;
dnssec-enable yes;
dnssec-validation yes;
};
On 8/28/13, Matus UHLAR - fantomas wrote:
> On 28.08.13 23:13, Nick Edwards wrote:
>>In just testing a few things with our authoritative server, I made a
>>typo, and, much to my surprise t
Mark,
On 8/29/13, Mark Andrews wrote:
>
> In message
>
> , Nick Edwards writes:
>> The typos was more of how I came about my request, forget the typo as
>> such, it the actual answer, to use a more common well known name, if
>> I type
>>
>> ~$ host w
easy.
On 8/29/13, Mark Andrews wrote:
>
> In message
>
> , Nick Edwards writes:
>> Mark,
>>
>> On 8/29/13, Mark Andrews wrote:
>> >
>> > In message
>> >
>> > , Nick Edwards writes:
>> >> The typos was more of how I c
bugger off with your dictatorship
do not bring it here like you take it every list you go to, well,
those that you have not been kicked off of that is
On 8/2/14, Reindl Harald wrote:
> why do you reply off-list, in HTML and top-posting?
>
___
Please vi
maybe he will, when you learn to stop being so offensive and abusive
on every list you decide to join, and to tink a cvertain blacklsit
operator on this list a few days ago said you were well behaved, hrmmm
are you paying him you off so he wont list you again in his rbl
On 8/3/14, Reindl Harald
skipping nameserver 'ns5.concord.org' because it is a CNAME, while
resolving '210.128-25.119.138.63.in-addr.arpa/PTR'
I have logs grow by about 30 megs a day with pretty much only this in
it (of course not always same remote server), how do I shut this up ?
My logging statments are
logging {
Hi,
We have a customer who has their own cache server, but in the afternoons
before they close up for the day, they commit off-site backups, this
process takes them about 90 mins, anyone trying to use the internet in this
time fails 99.9% of the time due to DNS lookup errors, but if they use an
ex
Thanks Mark, it's likely reason, they are using a microtek or such junk if
my memory serves me correct, we will drop in a juniper and see if that
resolves it.
On Tue, Sep 20, 2016 at 7:51 AM, Mark Andrews wrote:
>
> In message qozh...@mail.gmail.com>, Nick Edwards writ
On Tue, Oct 25, 2016 at 12:11 AM, Reindl Harald
wrote:
> identical like the first one
>
> Which IP should be use?
>>
>
> i don't understand your question
>
>
Since you have NOTHING to do with ISC or even remotely with bind, if you
dont understand , LEAVE IT TO SOMEONE WHO DOES
but you just cant
On Tue, Oct 25, 2016 at 12:42 AM, Reindl Harald
wrote:
>
>
>
>>
> don't get me wrong but that question shows that you are not ready to run a
> public dns server - there is no "local" or
>
when you make statements like that to be sure you include the fact you have
NOTHING to do with ISC or bind.
On Tue, Oct 25, 2016 at 7:11 AM, Reindl Harald
wrote:
>
> i don't understand your question
>>
>>
>> Since you have NOTHING to do with ISC or even remotely with bind, if you
>> dont understand , LEAVE IT TO SOMEONE WHO DOES
>>
>
> and YOU have something to do with ISC?
> i doubt!
>
> since i m
On Tue, Oct 25, 2016 at 7:14 AM, Reindl Harald
wrote:
>
>
>
> this is a public mailing list - so what!
>
> when someone don't yet get the connection between nameservers, webserver
> and ip-addresses he is not ready to connect public servers and that's
> completly independent of the fact you ra el
lots of things failing in recent times, even with CentOS, mostly because of
openssl min version changes, and most recently even latest releases wont
build now because of a change in min python versions *sigh*, i'm just going
to leave it as is, thats all we can do.
On Fri, Apr 26, 2019 at 5:05 AM
20 matches
Mail list logo
