d balancer like alteon, cisco ACE or linux ipvs.
This should work much better, with less IP addreses and no requests to IP
that is currently down (health checks take care of that).
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail adve
ire" value in the SOA has not expired?
>
> If true, I need another theory as to why the slave stopped serving records.
The slave periodically checks (interval defined by SOA refresh/retry values)
if the data are still fresh. If the data can't be verified for expire
seconds, the
there.
>
> > for a /24 within that /16, both servers now work "properly", and
> > further delegate to other servers [and themselves]:
>
> So probably they've got a zone for many of the child block e.g.
>
> x.33.50.in-addr.arpa.
>
> ...but not the parent o
t-order random i can add weight, if yes i don't
> find any documents that talks about that (nothing in the arm.pdf file)
no, you can not. It was already told to you. However there are quite
possible some DNS servers that support weighing. But, again, DNS is not
suited for such usage
n this case.
On 07.04.11 16:36, Mark Andrews wrote:
> nslookup is a BIND tool, we just tried hard to deprecate it.
nslookup is often not a bind tool, and that's one of reasons you have to
deprecate it ;)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I
com has address 10.140.27.10
>
> and from eth2 network (10.140.27.1/24)
> $ host mydns.example.com
> mydns.example.com has address 10.140.27.10
> mydns.example.com has address 172.16.1.10
> mydns.example.com has address 192.168.1.10
look at sortlist statement in bind's config.
to configure this in bind?
you don't need to create wildcard delegation.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
"Two words:
version), there is automatically a bind9 startup script in
> /etc/init.d/ directory.
Why don't you use the version provided with debian?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tu
r of
> 'bind9testcarlos.be/IN' from 194.78.73.65#53: Transfer completed: 1 messages,
> 8 records, 250 bytes, 0.005 secs (5 bytes/sec)
>
> Is this behavior normal?
this is normal log of a zone transfer.
> On the slave: (before the rndc reload zonename)
what's on
iterative,
and only when the client has recursion allowed on it.
> If there is no correct nameserver list in /etc/resolv.conf, then this
> named can't find ns1.def.com and ns2.def.com?
the BIND has nothing to do with resolv.conf.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; h
an only send
the notify to slaves... If you have multiple views on the slave containing
the same zone, you must either give them different IP and send notify to
both IPs or you can configure one view to fetch the zone from master and
notify the second view, which will fetch the zone from master or
;t
want that) or they use their isp's server for all queries, and it will not
trust your server about cdn.domain.net.edgesuite.net.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adre
onexistingdomain.project.example.com as source
address for spam e-mails, and many others.
I advise only use wildcards for cases they are REALLY needed.
see RFC4592 for more informations about DNS wildcards.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NO
ies the far (topologically) server to
see if it's still far, in which case the client will get the worse result...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOS
Hello,
the web page (http://www.isc.org/software/bind/documentation) claims to
provide links to 9.4-9.8 manuals (html and pdf) however only 9.4 and 9.5 are
working. Did a mistake happen here?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e
A 68.180.130.15
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
REALITY.SYS corrupted. Press any key to reboot Uni
27;ll have to downgrade on auth-only servers?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Chri
the system as a atomic
> unit. DNSSEC aware servers and resolvers keep this data together.
> If you don't things break.
>
> DNS Race just keeps the answers permanently out of sync instead of
> the temporary condition that happens with normal updates.
This problem could be avoid
> On 31/05/11 09:28, Matus UHLAR - fantomas wrote:
>> This problem could be avoided by providing the same data, but differently
>> sorted, correct?
On 31.05.11 12:27, Phil Mayers wrote:
> Not really. Client side sorting may take place (e.g. to comply with RFC
> 3484
>>> On 31/05/11 09:28, Matus UHLAR - fantomas wrote:
>>>> This problem could be avoided by providing the same data, but differently
>>>> sorted, correct?
>>
>> On 31.05.11 12:27, Phil Mayers wrote:
>>> Not really. Client side sorting may ta
same as using private range or other bogus ip addresses in NS
records for public domains. Technically correct, but will not apparently
work from outside and any registry should reject that. However registries do
not have power over delegating within your registered zone so the rest is up
to you
--
"/var/cache/bind/194.134.41.in-addr.arpa";
and apparently also put 'directory "/var/cache/bind";' to named.conf and
skip the full path, or just prefix it with master/ and slave/ ...
It's much easier to do
vi metropolitanbuntu.co.za
rndc reload metrop
or maybe i
to system) or the master does not allow
traffic from slave (e.g. firewall).
try watching network flow between slave and master (capturing packets
to/from master on the slave and vice versa).
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-ma
bug (actually, I have encountered
and remembered someone mentioned it here)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklam
? The "*" wildcard will even catch the
"imap", "pop", "pop3" and "smtp" hosts and redirect them to "www"
no, it will not. Wildcard applies only for domains that do not exist.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fant
won't hurt.
I think you may be right, but I'd better put a limit on how often this may
happen, so the bind won't re-check too often if the master is unreachable.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertis
m.
to be more precise, views are a single-server replacement for multiple
servers. When using views, many things get complicated, including zone
transfers.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
V
there is anymore a real
use for them. I strongly suggest you don't use them.
alright!
But since I got the internal services to resolve, if I remove the
internal resolution, I won't solve request in the case if my internet is
down?
you _can_ use views but note many of problems with b
the SOA version on master? Did the master reload new
zone? What do logs say?
Changing timestamp on slave indicates that the slave is checking and thinks
it hat the fresh version. What do the logs say?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to
e logs say anything? Did you try to run one of slaves in debug mode?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
They that can give up essenti
than 53, for these
cases you will need delegate to your bind with "forward" zone (or maybe
static-stub), therefore clients will need recursion allowed.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this
hat is the point of wanting this?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
"One World. One Web. One Program." - Microsoft p
hine with faster CPU and 64-bit OS on slower CPU-machine?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
It's now safe to throw off
explained to you that bind does not scale much better
with more than 4 threads.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Windows 2000
different
comparing to -n 8 to server 1 (yes, the same).
What has been reported it that more than 4 cores add (nearly) no
more performance
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto
ill find it more readable...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
On the other hand, y
X/IN' denied
three servers, nearly the same problems.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Micro$oft r
talk to one of these hosts,will it try the
next one? or it just give up?
this is out of DNS and BIND scope.
see rfc 5321, section 5.1 for MTA requirements.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
that
would be useless server.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
"They say when you play that M$ CD backward you can h
On 24.07.11 09:15, Vbvbrj wrote:
zone "my_domain.com" IN {
On 24.07.2011 18:40, Matus UHLAR - fantomas wrote:
I would prefer not to using underscores in domain names. While they
are allowed, they may cause some stuff not to work.
Why do you have underscore here?
On 25.07.11 09:
On 24.07.2011 18:40, Matus UHLAR - fantomas wrote:
This is how BIND is supposed to work. If you _need_ such setup,
why don't you setup your AD servers as recursive point clients
directly to them? you can teoretically configure maximum cache
time in BIND but that would be useless server.
ils.
TTL or expires must be lowered at microsoft DNS?
yes. TTL for records, expires only if oyou fetch zones. Note that
microsoft's DNS servers are very bad at maintaining zones (especially
those dynamically updated by clients)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://ww
olving server behind firewall? Does the firewall change
source port?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Nothing is fool-proo
whole net. That could
explain much.
Do you run authoritative servers for private and special subnets?
(rfc 5735 named them all). Do you run own .local and .localhost zone?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to th
put everything there.
the problem above looks like client with IP 192.168.16.3 asked the
named on server mail2 for 108.21.168.192.in-addr.arpa and
171.1.168.192.in-addr.arpa and got the responses from the internet.
You should serve those zones locally...
--
Matus UHLAR - fantomas, uh
only differ by loaded zones, that should
not be a problem.
If it's not possible, you (or the OP) can surely configure 120 or e.g.
million real or virtual machines to provide the DNS service. That is
just what views do within one BIND process.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ;
On 30.08.11 01:36, sky shade wrote:
I think in use views with diferent zones files, all for same domain, no
recursive querys, one view for each network/AS that my bgp router know.
1. are you sure you need that?
2. how many versions of the domains does that make?
--
Matus UHLAR - fantomas, uh
truct BIND to to wha tyou want, you just won't do it by
editing the zone but by sending changes to BIND.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolve
#x27;s unreachable
too.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
The only substitute for good m
one fails) and using those from anywhere?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Spam = (S)tupid (P)eople'
port and the same
identification I'd which makes it impossible for it to determine the
query/response pairs.
who is sending those packets? Is that your BIND?
Just one question why doesn't the bind drop such packets.
apparently it does and that's why it's so slow...
--
Matus
BIND have configured port 3037 for outgoing queries?
Note that BIND versions released in last 3 years randomize source ports
unless they are told not to do so (which is very bad idea, unless
someone does that for them).
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
War
.
I recommend tou to get your ISP slave your zone and create additional
NS records pointing on your ISP's name severs for mail.myoffice.com.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovani
zone, you will need SOA and in most cases
NS records too (that means, unless you are configuring private zone
running in your network). Most of other zones include MX records for
the zone.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e
hen set "forward first", is it
possible to fake it?
Why do you think it does not trust what forwarder returned?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem N
x27;s an ISP, hard to track down every one, I just want to suppress it
that the misbehaving can't go further. Is it safe to hijack on
dns-cache?
no, it is not. If it's an isp, they should track the broken client.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
> Is it possible to have one IP in multiple zone files for forward
> lookups?
On 21.09.11 15:23, Adamiec, Lawrence wrote:
What I am looking at doing is the following.
www.existingdomain.edu 86400 A 192.0.0.1
www.existingdomain.newdomain.edu 86400 A 192.0.0.1
just do it.
--
Matus
ill not by now),
Why do you want to do the spoofing at all?
if you want to implement local TLD or any king of zone visible locally,
you can define it on recursive servers, or on different servers and
forward requests for that zone from caches to those different servers.
--
Matus UHLAR - fantom
o be setup to handle both
names. If you use a CNAME, you only need to handle the single "A" record
name in the server.
No, web server setup has nothing to do with CNAME or A record types.
(Unless a web server is directed to behave differently, but I don't
know why would a
I hoped that ISC stays out of the world where companies will break
DNS to do something it is not designed for. Now I see it doesn't.
Bad.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tut
/
records, and change it when example.com changes.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
99 percent of lawyers give the rest a b
other servers to resolve a domain (sends
recursive request), while "static-stub" defines servers that provide
the destination domain (sends iterative requests).
So, the "forward" can be configured to fall-back to standard
resolution, and it can resolve delegated subdomains, i
ppsdns4.pps.com.au.
pps.com.au. 14400 IN NS ppsdns1.pps.com.au.
pps.com.au. 14400 IN NS ppsdns6.pps.com.au.
;; Received 214 bytes from 69.36.145.34#53(n.au) in 227 ms
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to
st to some other DNS server.
that's what authoritative server means.
Are there some possibilities to force a recursive DNS to perform its
recursive process even for request received with rd flag cleared ?
no. You must do what Phil Meyers advised to you in other reply
--
Matus UHLAR - fa
stINNSns1973.hostgator.com.
this is an error probably
;testINNSns1974.hostgator.com.*
Please help me out on this issue.
however those entries seem to be invalid to me
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-ma
Now I have only one question:
On 08.11.11 20:27, trm asn wrote:
The moment I have done the "rndc reload example.com", the domain and all
subdomain were became not resolvable.
what does the named's log say?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
that means "dls-koe-v6.gvs.local exists but does not have A recors".
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamn
X6FCv9AV30XdliPxQDx9iUtNY2wM7tug5ci/Dmy066XopR/" "
vlrslCABREFiIOAzFMkOvQ0ZUkOGyWN5ERJ161k9msDnFUlldWuK17g2mzp24/nVx+hOXfzg qhhpeSQV8RK0zZkOe3pVd+a0uuDeYaMtSIRTOT5D"
"xTvWInVjR8LXtpPiGqj5qO+hQhysgk="
Can you recomment can I split it to multiple records so they all fit?
T
On 09.11.11 14:35, Matus UHLAR - fantomas wrote:
I have a domain with TXT record that does not fit into 255 characters,
some king of ipsec record:
sofia.dashofer.sk. 3600IN TXT "X-IPsec-Server(10)=@sofia.dashofer.sk" "
AQNqdEjqL33Pf4MFgJYs5v4xRhEPTWou
AME example.com
aINA203.39.45.20
bINA203.39.45.21
And, also, put the whole zone content somewhere if you have problem - in the
first post you have ignored the content that made the zone fail.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
oblem with loading a zone, try reloading it and see
what unusual is logged then.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
BSE
t's highly depentent on the receiver system, and its policy. It's
really useless to comply about it here.
The point here is that the reverse records were simply invalid without
any reason.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e
re's much more for you to read, try searching for some
DNS howto's
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
"The box s
f the bug fixed 2 days ago, or completely
new bug?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Windows foun
, but unable to find the name.
Is it a bind characteristics to store all responses - positive and negative?
yes.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukol
antly?
afaik your client can identify itself by TSIG instead of IP address.
of course, this requires tyour client to support TSIG
...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adre
tsig-aware proxy on them?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Due to unexpected conditions Windows 2000 will be released
in first
to get 0wn3d.
not mentioning new features (mostly DNSSEC related) that new servers
have.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
N
, does is have this feature too?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Atheism is a non-prophet organization
27;d need a timestamp on records (relying on the RRSIGs mean
it only works for signed). Not sure about the locking implications.
I think this is something BIND should take care about.
Does BIND veridy the journal not to exceed usefull size?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http:/
On 30/11/11 10:09, Matus UHLAR - fantomas wrote:
Well, that's way too much. The main point of journal is imho to provide
On 30.11.11 11:51, Phil Mayers wrote:
I think this is a decision for each operator to make themselves.
I was trying to explain that there are reasonable limits over
n ugliness of this type from either Network
Solutions or register.com before, not sure which.
Note that there still may be servers that have configured .com as
delegation-only and thus it won't work there.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning
On 09.12.11 17:52, Lightner, Jeff wrote:
Also - why is it a registrar can do a CNAME only but we mere mortals
can't?
Because if you want CNAME, you must put it directly to he .com zone
what mere mortals just can not.
And I wonder if any registrar allows that.
--
Matus UHLAR - fantoma
512
bytes.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Save the whales. Collect the whole set
actical use or is it just informative
field(it's not mandatory according to "whois -h whois.ripe.net -t
domain")?
reverse delegations in RIPE are done through RIPE database domain:
objects.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to
mers do reregister their domains to different DNS providers,
and later complain that you provide old zones to your other customers
(because they did not tell you that you should stop providing them).
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to
.
They are exported to DNS ...
2011/12/19, Matus UHLAR - fantomas :
On 19.12.11 10:32, Martin T wrote:
what is the purpose of RIPE database "domain:" objects? Are they
practically used for something? And according to RIPE database manual,
"nserver" attribute under domain object s
?
yes.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Despite the cost of living, have you noticed how popular it remains
t should be better to ger your
provider-independent address space (if possible) and use separate
uplinks. That gives you much better line saturation.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: n
?
2011/12/20 Matus UHLAR - fantomas :
yes.
On 21.12.11 12:17, Peter Andreev wrote:
This fact is really disappointing.
well, it's needed for proper functionality. What exactly seems to be
your problem?
Note that
- only clients that are allowed to recurse are able to see date
the "
In message <2011122018.ga3...@fantomas.sk>, Matus UHLAR - fantomas writes:
Long time ago when we were trying to have multiple web servers for
redundancy and balancing, we have found that multiple IP's is not a
good solution (parts of web pages didn't load). We selected
g recursion should do the same afaik. However, disabling
additional-from-cache is OK and afaik disabled by default.
That's why any sort of internal lookups looks very suspicious for me.
server needs to resolve names if it's supposed to send NOTIFY messages.
--
Matus UHLAR -
2011/12/21 Matus UHLAR - fantomas :
Disabling recursion should do the same afaik. However, disabling
additional-from-cache is OK and afaik disabled by default.
On 21.12.11 19:21, Peter Andreev wrote:
No, it is enabled by default.
server needs to resolve names if it's supposed to
On 21.12.11 19:21, Peter Andreev wrote:
All these servers are slaves. They don't send notifies.
2011/12/21 Matus UHLAR - fantomas :
they do, unless you have turned it off...
On 22.12.11 11:54, Peter Andreev wrote:
Of course I turned it off, it's normal practice for slaves
On 21.12.11 19:21, Peter Andreev wrote:
I think that if server is authoritative - and - slave-only it should
use system resolver rather than querying by itself.
2012/1/2 Matus UHLAR - fantomas :
BIND will not use system resolver. BIND is the resolver. Relying on other
resolver could cause
ne of reasons why BIND does not (and apparently even
should not) use system libresolv and gethost* functions.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akuko
2012/1/2 Matus UHLAR - fantomas :
I don't see your point now. I'm afraid that you will have to live with the
fact that you can not disable sending queries from BIND when it needs them,
you can only prevent it by configuring BIND (so it will not need them) or
firewall such packets so
On 02.01.12 17:03, Barry Margolin wrote:
>In that case, you probably shouldn't enable the option. I'm not even
>suggesting that the option be on by default.
>
>Actually, does libresolv really use those other facilities?
In article ,
Matus UHLAR - fantomas wro
a very simple IXFR
removing old NSEC and adding new record with tro NSEC's ?
Or, is there something I don't understand correctlt about DNSSEC?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Var
atter if the sites are up or down.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Windows found: (R)emove, (E)rase, (D)
301 - 400 of 1048 matches
Mail list logo
