Blog entries for "bind9"

BIND 9.9.0b2 -- a feature update

22 Nov 2011
by Evan Hunt

Today, ISC is publishing a new beta release of BIND 9.9.0.  As several new features have been added since the feature preview I posted on the occasion of the first alpha release, it would seem to be a good time for an update.

A Major Improvement in BIND 9 Startup Performance

12 Jul 2011
by Evan Hunt

One of the common complaints we've received over the years about BIND 9 is that large authoritative servers, particularly those with a very large number of small zones, are slow to launch. I've met some DNS operators who expressed a powerful aversion to upgrading their systems, because a shutdown and restart can literally take all day.

If that describes you, I have some good news. There is a simple optimization for BIND 9 that can dramatically improve your startup performance.

DNSSEC and "lazy delegation"

27 Jan 2011
Michael Graff

Prior to deploying DNSSEC it has been possible to perform something I'm calling "lazy delegation." This is when a parent and direct child are served from the same name servers, so NS records in the parent are unnecessary in practice.

While consulting with various clients about how to best deploy their DNSSEC, this is a common discovery. Often times someone just forgot to add NS records, or their tools do not add them. No one notices because their DNS worked.