[62634] in North American Network Operators' Group
Re: bind patches++ (Re: Wildcards)
daemon@ATHENA.MIT.EDU (Mr. James W. Laferriere)
Sat Sep 20 14:23:30 2003
Date: Sat, 20 Sep 2003 14:22:57 -0400 (EDT)
From: "Mr. James W. Laferriere" <babydr@baby-dragons.com>
To: Paul Vixie <vixie@vix.com>
Cc: nanog@merit.edu
In-Reply-To: <g38yoj5u7w.fsf@sa.vix.com>
Errors-To: owner-nanog-outgoing@merit.edu
Hello Paul , Am I correct in the understanding that the below
tells me that 9.2.2p2 does NOT contain the ablility to do
root-delegation-only ? Tia , JimL
On Sat, 20 Sep 2003, Paul Vixie wrote:
> if you installed the first isc wildcard patch you probably want the second.
> see www.isc.org/products/BIND/delegation-only.html for details. the first
> patch didn't handle NS lookups (which don't occur in nature but it's sort of
> unnerving when they don't work in "dig").
> in addition to the "type delegation-only" zones, the latest release candidate
> has an additional "root-delegation-only" option. this looks like:
>
> options {
> root-delegation-only exclude { "de"; "museum"; };
> };
>
> thus the delegation-only behaviour becomes the default for the root domain,
> and all tld's except those listed. DE has no wildcards but they do put
> customer A RRs into the DE zone itself. MUSEUM has a wildcard but this was
> part of their application and it was approved and has not been a problem.
> f.6to4-servers.net is now running this if you want to try before you, um, buy.
> thanks very much to the membership of the bind forum who make this possible.
--
+------------------------------------------------------------------+
| James W. Laferriere | System Techniques | Give me VMS |
| Network Engineer | P.O. Box 854 | Give me Linux |
| babydr@baby-dragons.com | Coudersport PA 16915 | only on AXP |
+------------------------------------------------------------------+
