AW: Simplistic serial number roll back
Klaus Darilion
klaus.darilion at nic.at
Mon Feb 20 13:09:30 UTC 2023
Yes it does. I guess all name servers offer a command to force a transfer of the zone without checking the serial. The ones I use support that:
Bind: rndc retransfer <zone>
NSD: nsd-control force_transfer <zone>
PowerDNS: pdns_control retrieve <zone>
Knot: knotc zone-retransfer <zone>
regards
Klaus
> -----Ursprüngliche Nachricht-----
> Von: bind-users <bind-users-bounces at lists.isc.org> Im Auftrag von John
> Thurston
> Gesendet: Freitag, 17. Februar 2023 21:43
> An: bind-users at lists.isc.org
> Betreff: Re: Simplistic serial number roll back
>
> Agreed.
>
>
> I'm not considering rolling back to old zone data, but considering
> changing the algorithm used to generate the serial number for new zone
> data. The new algorithm would result in the new data being published
> with serial numbers which would be ignored as being "older" if they were
> generated with the old algorithm. But I feel like we've wandered off the
> path.
>
>
> My question is seeking clarification of the behavior of "rndc
> retransfer" - does this command perform the transfer, regardless of what
> serial number it has or finds?
>
>
>
>
>
> --
> Do things because you should, not just because you can.
>
> John Thurston 907-465-8591
> John.Thurston at alaska.gov <mailto:John.Thurston at alaska.gov>
> Department of Administration
> State of Alaska
> On 2/17/2023 10:46 AM, Ondřej Surý wrote:
>
>
> Well, the serial number arithmetics is there for a reason - you
> usually don’t want to rollback to previous version of the zone - you can
> have multiple primaries with different serial numbers.
More information about the bind-users
mailing list