Re: DNAME usage?

2017-11-21 Thread Timothe Litt
On 17-Nov-17 18:04, Mark Andrews wrote: > DYN used to just require a TSIG signed update request set to a server > specified in > a SRV record. Depends on which service.  The one I referred to is the one that was popular (free) for people who wanted to reach a machine on a dynamic IP address. 

Re: Re: DNAME usage?

2017-11-17 Thread Jeff Sadowski
On Fri, Nov 17, 2017 at 2:36 PM, Timothe Litt wrote: > > On 17-Nov-17 14:48, Mark Andrews wrote: > > Alternatively use a http server that can update the records for the > interfaces it is listening on. > > This sort of thing is possible. Named gets informed by the OS when addresses

Re: DNAME usage?

2017-11-17 Thread Jeff Sadowski
Can you give me an example of how to do that? On Fri, Nov 17, 2017 at 12:48 PM, Mark Andrews wrote: > Alternatively use a http server that can update the records for the > interfaces it is listening on. > > This sort of thing is possible. Named gets informed by the OS when

Re: DNAME usage?

2017-11-17 Thread Mark Andrews
DYN used to just require a TSIG signed update request set to a server specified in a SRV record. We have a perfectly fine protocol for updating the DNS but DNS hosting companies want to reinvent the wheel. -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871

Re: Re: DNAME usage?

2017-11-17 Thread Timothe Litt
On 17-Nov-17 14:48, Mark Andrews wrote: > Alternatively use a http server that can update the records for the > interfaces it is listening on. > > This sort of thing is possible. Named gets informed by the OS when addresses > get added and removed. It currently just adds and removes listening

Re: DNAME usage?

2017-11-17 Thread Mark Andrews
Alternatively use a http server that can update the records for the interfaces it is listening on. This sort of thing is possible. Named gets informed by the OS when addresses get added and removed. It currently just adds and removes listening sockets but you could trigger other actions like

Re: DNAME usage?

2017-11-17 Thread Mark Andrews
Just have the machine hosting the http server do a dynamic update of the A ana records when they are assigned to the interface. It should be possible to get the os to run a program when this happens so it can perform a second dynamic update on a the different name. -- Mark Andrews > On

Re: DNAME usage?

2017-11-17 Thread Chris Buxton
A DNAME is a CNAME generator for subdomains of the DNAME record itself. That is: example.com . DNAME example.net . will result in any query for "foo.example.com " to be answered with a dynamically-generated CNAME record

Re: DNAME + DNSSEC

2016-10-20 Thread Marco Davids (SIDN)
On 20/10/2016 14:41, Marco Davids (SIDN) wrote: > For testing-purposes I tried to simulate the situation in sidnlabs.nl: > > dig +dnssec -t ANY _sidn._dnssec-valcheck._1804289384.sidnlabs.nl ERROR! That should be: dig +dnssec -t ANY _sidn._dnssec-valcheck._1804289384.dname.sidnlabs.nl --

RE: Re: dname reverse delegation

2015-10-17 Thread Woodworth, John R
> > On Tue, 13 Oct 2015 21:40:30 +0100, > > Paul A wrote: > > > > > > I have a few /24 that I want to delegate using DNAME. > > > > > > Are you expecting to save yourself trouble by doing so? > > If not, you should probably reconsider. > > > > If you decide DNAME is a useful trick, bear in

Re: dname reverse delegation

2015-10-17 Thread Woodworth, John R
> On Tue, 13 Oct 2015 21:40:30 +0100, > Paul A wrote: > > > > I have a few /24 that I want to delegate using DNAME. > > > Are you expecting to save yourself trouble by doing so? > If not, you should probably reconsider. > > If you decide DNAME is a useful trick, bear in mind that what DNAME

RE: dname reverse delegation

2015-10-14 Thread Paul A
Yeah, it looks like I might have to give up on this. paul -Original Message- From: bind-users-boun...@lists.isc.org [mailto:bind-users-boun...@lists.isc.org] On Behalf Of Matus UHLAR - fantomas Sent: Wednesday, October 14, 2015 10:29 AM To: bind-users@lists.isc.org Subject: Re: dname

Re: dname reverse delegation

2015-10-14 Thread Matus UHLAR - fantomas
On 14.10.15 10:11, Paul A wrote: Niall my problem is the name server that delegated the reserve does look up the record correctly. I have this in the zone, DNAME 0/24 ;; ;;; delegate to server ;; 0/24NS ns.someserver.com ;; At the ns.someserver.com the looks

RE: dname reverse delegation

2015-10-14 Thread Paul A
...@ucd.ie] Sent: Tuesday, October 13, 2015 6:29 PM To: Paul A <ra...@meganet.net> Cc: bind-users@lists.isc.org Subject: Re: dname reverse delegation On Tue, 13 Oct 2015 21:40:30 +0100, Paul A wrote: > > I have a few /24 that I want to delegate using DNAME. Are you expecting to s

Re: dname reverse delegation

2015-10-13 Thread Mark Andrews
Why are you trying to complicate the lookup process unnecessarially? Just delegate 13.168.192.IN-ADDR.ARPA. People over use stuff that really isn't needed and by doing so turn a relatively simple proceedure into a complicated mess. RFC 2317 delegation techniques really should only be used for

Re: dname reverse delegation

2015-10-13 Thread Tony Finch
Paul A wrote: > I have a few /24 that I want to delegate using DNAME. > Lets says I have 192.168.13.0/24 how would I go about doing reserve on the > forwarding server using DNAME. Coincidentally I just published this draft less than three hours ago, and it describes how to

Re: dname reverse delegation

2015-10-13 Thread Niall O'Reilly
On Tue, 13 Oct 2015 21:40:30 +0100, Paul A wrote: > > I have a few /24 that I want to delegate using DNAME. Are you expecting to save yourself trouble by doing so? If not, you should probably reconsider. If you decide DNAME is a useful trick, bear in mind that what DNAME does is not

RE: DNAME?

2011-07-02 Thread Timothe Litt
employer's views, if any, on the matters discussed. -Original Message- From: Mark Andrews [mailto:ma...@isc.org] Sent: Friday, July 01, 2011 21:58 To: Timothe Litt Cc: 'Jon F.'; bind-us...@isc.org Subject: Re: DNAME? When DNAME was being developed the working group had to make

Re: DNAME?

2011-07-01 Thread Matus UHLAR - fantomas
In message banlktimxqxzfurpp9jggga9xvhsb72k...@mail.gmail.com, Jon F. writes: You know I was thinking and I guess the original poster could actually do the zone mimicking by just adding the .us zone statement to named.conf but point it to the same zone name as the already built zone. In the

RE: DNAME?

2011-07-01 Thread Timothe Litt
employer's views, if any, on the matters discussed. -Original Message- From: Mark Andrews [mailto:ma...@isc.org] Sent: Thursday, June 30, 2011 20:58 To: Jon F. Cc: Timothe Litt; bind-us...@isc.org Subject: Re: DNAME? In message BANLkTim=maau1y+xh7yzibmrznvx30z...@mail.gmail.com, Jon F. write

RE: DNAME?

2011-07-01 Thread Timothe Litt
discussed. _ From: Jon F. [mailto:pikel@gmail.com] Sent: Thursday, June 30, 2011 16:11 To: Timothe Litt Cc: bind-users@lists.isc.org Subject: Re: DNAME? I have a similar set up to that and it works. Have you checked the logs to make sure the zone properly loaded? I'm assuming

Re: DNAME?

2011-07-01 Thread Doug Barton
On 07/01/2011 10:03, Timothe Litt wrote: Yes, all my zones are (or will be) signed. And all are dynamic update; Then the answer is simple, have a front end that allows you to make the edits in one place and have them updated in both zones. -- Nothin' ever doesn't change, but

Re: DNAME?

2011-07-01 Thread Mark Andrews
: Jon F. [mailto:pikel@gmail.com] Sent: Thursday, June 30, 2011 16:11 To: Timothe Litt Cc: bind-users@lists.isc.org Subject: Re: DNAME? I have a similar set up to that and it works. Have you checked the logs to make sure the zone properly loaded? I'm assuming the zone data you posted

Re: DNAME?

2011-06-30 Thread Jon F.
I have a similar set up to that and it works. Have you checked the logs to make sure the zone properly loaded? I'm assuming the zone data you posted below is from the example.us zone but your first question makes it sound like you put it in a seperate zone. That would explain the SERVFAIL if the

Re: DNAME?

2011-06-30 Thread Mark Andrews
In message BANLkTim=maau1y+xh7yzibmrznvx30z...@mail.gmail.com, Jon F. write s: I have a similar set up to that and it works. Have you checked the logs to make sure the zone properly loaded? I'm assuming the zone data you posted below is from the example.us zone but your first question makes it

Re: DNAME?

2011-06-30 Thread Jon F.
You know I was thinking and I guess the original poster could actually do the zone mimicking by just adding the .us zone statement to named.conf but point it to the same zone name as the already built zone. In the zone, just use the @ instead of pointing to an actual name. Then it can be read for

Re: DNAME?

2011-06-30 Thread Mark Andrews
In message banlktimxqxzfurpp9jggga9xvhsb72k...@mail.gmail.com, Jon F. write s: You know I was thinking and I guess the original poster could actually do the zone mimicking by just adding the .us zone statement to named.conf but point it to the same zone name as the already built zone. In the

Re: DNAME?

2011-06-30 Thread Jon F.
Ah. Good point. My bad. On Thu, Jun 30, 2011 at 8:42 PM, Mark Andrews ma...@isc.org wrote: In message banlktimxqxzfurpp9jggga9xvhsb72k...@mail.gmail.com, Jon F. write s: You know I was thinking and I guess the original poster could actually do the zone mimicking by just adding the .us