Grant Taylor via bind-users wrote:
> On 1/20/20 9:06 AM, N. Max Pierson wrote:
>
> > I was not aware there was anything built in that would let you
> > add/remove/change the zone itself from the master.
>
> Yes, Catalog Zones. I think it's only a few years old.
Catalog zones are for automatic co
On 1/20/20 9:06 AM, N. Max Pierson wrote:
My terminology seems to be the issue here, so let me try and
rephrase/elaborate : )
;-)
I was not aware there was anything built in that would let you
add/remove/change the zone itself from the master.
Yes, Catalog Zones. I think it's only a few ye
Ah, allow me to apologize then. Since I did not see any mention as to why you
possibly didn’t think ansible would serve us well for this job I had wrongly
assumed you to had maybe demo’d or just got handed the task of automating in
your organization and didn’t have time to research or test it be
My terminology seems to be the issue here, so let me try and rephrase/elaborate
: )
> I'm sure that you can get Ansible to add / remove / modify the list of zones
> on the slave servers. But is that the best solution when BIND has something
> built in for doing the same thing?
I was not awar
Since it sounds like you have not had much experience with, I urge you to check
it out should you have anything in your environment that could benefit from
automation. Simply telling someone to chunk it and not have any experience with
it is a little misguided IMO.
We pay multiple different t
On 1/19/20 4:01 AM, N. Max Pierson wrote:
I honestly couldn’t tell you either way as I have not even begun
to start to dive into DNSSEC.
I can recommend the following book from Michael W. Lucas / @mwlauthor
and say that it provides a good, actionable, introduction to DNSSEC.
Link - DNSSEC Ma
On 1/19/20 3:25 AM, N. Max Pierson wrote:
Hi Grant,
Hi,
I should have been a little more descriptive in the scenario by giving
the purpose of these name servers. They are basically being deployed
as a managed DNS service that we offer. We are a MSP for the most
part and the DNS infrastructu
you still want to live in ansible I would suggest
> that you add another NIC to each server and assume the IPs of the old servers
> so you dont bring cruft forward into your new world order.)
>
>
>
> John
>
> Sent from Nine <http://www.9folders.com/>
> From:
Hi Grant,
A couple of things ….
I should have been a little more descriptive in the scenario by giving the
purpose of these name servers. They are basically being deployed as a managed
DNS service that we offer. We are a MSP for the most part and the DNS
infrastructure was not being very well
http://www.9folders.com/>
From: "N. Max Pierson"
Sent: Saturday, January 18, 2020 8:08 AM
To: bind-users@lists.isc.org
Subject: securing bind in todays hostile environment
Hi List,
First off, I should note that I am a novice with administering Bind, so please
bear with me.
We a
On 1/18/20 7:06 AM, N. Max Pierson wrote:
Hi List,
Hi M,
First off, I should note that I am a novice with administering Bind, so
please bear with me.
We all started somewhere. Hopefully we all continue to learn new
things. ;-)
We are looking to be more pro-active and security minded in
Hi List,
First off, I should note that I am a novice with administering Bind, so please
bear with me.
We are looking to be more pro-active and security minded in our network in
general and while we are getting ready to completely replace/upgrade our
current instances of Bind, I would like to
12 matches
Mail list logo
