Fixing BIND to ignore Verisign
Thanks to Russell Kroll. I was losing my mind sorting out my named.conf and he had a clear example of how to configure delegate-only for the new BIND release.
BIND vs. Verisign
Steps to make life less lame in this brave new world of com and net wildcards:
Fetch patches
Rebuild named and restart it
Amend your named.conf:
zone "com" {
type delegation-only;
};
zone "net" {
type delegation-only;
};
rndc reconfig
dig paulbegleyhatesverisign.com and notice what happens
djbdns vs. Verisign
Here's another approach:
IGNOREIP patch for dnscache
BIND vs. Verisign
Steps to make life less lame in this brave new world of com and net wildcards:
Fetch patches
Rebuild named and restart it
Amend your named.conf:
zone "com" {
type delegation-only;
};
zone "net" {
type delegation-only;
};
rndc reconfig
dig paulbegleyhatesverisign.com and notice what happens
djbdns vs. Verisign
Here's another approach:
IGNOREIP patch for dnscache
posted by Paul at 9/18/2003 07:59:00 PM
0 Comments:
Post a Comment
Links to this post:
Create a Link
<< Home