[SATLUG] djbdns slave to bind
John Pappas
j at jvpappas.net
Mon Oct 2 13:33:17 CDT 2006
On Mon, 2006-10-02 at 13:13 -0500, Justizin wrote:
> On 10/2/06, John Pappas <j at jvpappas.net> wrote:
> > This is true. I have not tried to slave a BIND server to a server I do
> > not control. Seems that as long as there is no access control (or one
> > falls under said access control) and the axfr is available, then setting
> > up a slave should be possible.
>
> Yeah, it's possible, but the djbdns package itself does not provide a
> means of accepting NOTIFY requests, so you've got to string it
> together or cron it, which both stink.
Agreed.
> > Can you `dig` an axfr from the master or a slave on the domain?
> >
>
> Oh, I can do better than that. there is a zone transfer tool, and it
> works like so:
>
> tcpclient master.ns.server.com 53 afxr-get mydomain.com
Unfamiliar with tcpclient. Looks like another DJB product, yes? Will
RTFM...
> so, the solution i have found is more or less this:
>
> pipe tinydns' log into a perl script which pipes to multilog, instead
> of direct to multilog, and watch each log line for NOTIFY. when
> NOTIFY comes, take paramaters from the NOTIFY request, which tinydns
> logs, and launch axfr-get, then push that to tinydns-data, which,
> fortunately, is designed to take updated data at runtime.
And thus people will stick with non-RFC compliance and use BIND,
Windows, etc for tasks that would otherwise be easy if RFC's were
complied with :?
More information about the SATLUG
mailing list