bind9 answers no queries during AXFR
Dave Lugo
dlugo at etherboy.com
Tue Aug 10 02:05:52 UTC 2004
Martin H. Sluka wrote:
> We got a BIND9 server which is a secondary for a very large DNS
> zone (an RBL; about three million entries, 70 MB as file, several
> hundred MB in RAM) that usually updates each few hours. Even on
> current hardware, the zone transfer (or reading the zone after
> the transfer) takes several minutes.
>
> The problem is, that BIND9 does not seem to answer _any_ queries
> during the update phase. Any help to solve this problem would be
> appreciated. (Splitting the zone is, however, not possible.)
>
I haven't had good results with large zonefiles and BIND (I've seen the
same issues you are seeing), but I've had *excellent* results using BIND
as the frontend to an rbldnsd backend, with a zone stanza like this:
zone "dnsbl.sorbs.net"
{
type forward;
forward only;
forwarders { 127.0.0.1 port 54; };
};
...and having rbldnsd use localhost:54
http://www.corpit.ru/mjt/rbldnsd.html
--
--------------------------------------------------------
Dave Lugo dlugo at etherboy.com LC Unit #260 TINLC
Have you hugged your firewall today? No spam, thanks.
--------------------------------------------------------
Are you the police? . . . . No ma'am, we're sysadmins.
More information about the bind-users
mailing list