Confused by parental-source documentation
Nick Tait
nick at tait.net.nz
Sun May 1 05:18:27 UTC 2022
Hi list.
I've been reading the latest BIND9 documentation on the new DNSSEC
features, and section 4.2.28.1 got me horribly confused:
/The following options apply to DS queries sent to
//|parental-agents|//:/
/|parental-source|/
/|parental-source|//determines which local source address, and
optionally UDP port, is used to send parental DS queries. This
address must appear in the secondary server’s
//|parental-agents|//zone clause. This statement sets the
//|parental-source|//for all zones, but can be overridden on a
per-zone or per-view basis by including a
//|parental-source|//statement within the //|zone|//or
//|view|//block in the configuration file./
No matter how many times I read the sentence in blue font, I couldn't
make sense of it...
I finally realised that the parental-source paragraph is almost
identical to the documentation for notify-source:
/|notify-source|/
/|notify-source|//determines which local source address, and
optionally UDP port, is used to send NOTIFY messages. This
address must appear in the secondary server’s
//|primaries|//zone clause or in an //|allow-notify|//clause.
This statement sets the //|notify-source|//for all zones, but
can be overridden on a per-zone or per-view basis by including a
//|notify-source|//statement within the //|zone|//or
//|view|//block in the configuration file./
And so I can only assume that the problematic sentence in
parental-source (i.e. "/This address must appear in the secondary
server’s //|parental-agents|//zone clause./") is a copy-paste error? If
that is the case can the sentence please be removed from the documentation?
Or if I'm mistaken can anybody please give an example to explain what
this is trying to say?
Thanks,
Nick.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20220501/f006d312/attachment.htm>
More information about the bind-users
mailing list