how to split TXT record for IpSEC?
Phil Mayers
p.mayers at imperial.ac.uk
Wed Nov 9 14:06:38 UTC 2011
On 09/11/11 13:59, Matus UHLAR - fantomas wrote:
> On 09.11.11 14:35, Matus UHLAR - fantomas wrote:
>> I have a domain with TXT record that does not fit into 255 characters,
>> some king of ipsec record:
>>
>> sofia.dashofer.sk. 3600 IN TXT "X-IPsec-Server(10)=@sofia.dashofer.sk"
>> "
>> AQNqdEjqL33Pf4MFgJYs5v4xRhEPTWouM3Ny1HfcecM+TdX+gpZ2gzIpsmB8UWsUobuJnTSJ
>> wt2rEw3PcFpuBN3l8F8dAuSWl5lhiojjdenmHf2A6EaqyNTzGJgro9qAMS91DjW4i3HrOAgk"
>> "
>> Z1sfvkN8SrnSpbXqpN6JL19tjNTffnd0vhkWWAH7enHcQf0A4hNvIwhQHKFJ0Xd4weHLrD54
>> DMr6X5n0/6dt7xnPiPqShTr8zlNvrvXP6ZcL+k"
>> "uNade/3+uxwKMtA6UwUdhrW86i5vYC1xL+tj0svQwi6gD5gISFVHVUOU3Q91FLpc8vUDum/
>> O1ckgsMI/K0CmvGVVxbf5zqSqX6FCv9AV30XdliPxQDx9iUtNY2wM7tug5ci/Dmy066XopR/"
>> "
>> vlrslCABREFiIOAzFMkOvQ0ZUkOGyWN5ERJ161k9msDnFUlldWuK17g2mzp24/nVx+hOXfzg
>> qhhpeSQV8RK0zZkOe3pVd+a0uuDeYaMtSIRTOT5D"
>> "xTvWInVjR8LXtpPiGqj5qO+hQhysgk="
>>
>> Can you recomment can I split it to multiple records so they all fit?
>
> what I mean, can I simply split them into multiple TXT records?
No. You split the RDATA into multiple 255-char chunks:
aa.bb.cc. IN TXT "<255 chars>" "<255 chars>" "<remainder>"
Splitting them into separate TXT records just gives you separate,
malformed, TXT records.
More information about the bind-users
mailing list