<div dir="ltr">Hi Wouter,<div><br></div><div style>Thanks for the reply. </div><div style><br></div><div style>Wow. that sounds really great if I am understanding you correctly. so, if I change my nsd.conf with any kind of arbitrary additions and deletions, a simple nsd-control reconfig will intelligently and dynamically merge all of those changes -- effectively obviating the need for nsd-control [add|del]zone?</div>
<div style><br></div><div style>Thanks,</div><div style>Will</div></div><div class="gmail_extra"><br><br><div class="gmail_quote">On Tue, May 14, 2013 at 12:01 AM, W.C.A. Wijngaards <span dir="ltr"><<a href="mailto:wouter@nlnetlabs.nl" target="_blank">wouter@nlnetlabs.nl</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">-----BEGIN PGP SIGNED MESSAGE-----<br>
Hash: SHA1<br>
<br>
Hi Will,<br>
<div><div class="h5"><br>
On 05/08/2013 11:32 PM, Jaap Akkerhuis wrote:<br>
><br>
> I am trying to wrap my head around the rationale of the restriction<br>
> on not allowing nsd-control to delzone a zone that is configured in<br>
> the nsd.conf. What is the risk here? Is it more of an operational<br>
> one where it will not truly delete if a stop/start of the daemon<br>
> occurs without modification of the nsd.conf? I mean, if your<br>
> workflow is to always update your nsd.conf by removing entries for<br>
> zones you are planning to delzone (and then blowing away the<br>
> zone.list file before start) -- then where is the problem,<br>
> exactly?<br>
><br>
> I see the restriction only exists in remote.c, and it doesn't look<br>
> like deleting one of these zones declared in the nsd.conf would be<br>
> much different that one that wasn't (although I am probably missing<br>
> something).<br>
><br>
> Can you help me understand this, please?<br>
><br>
> FYI, Wouter is on vacation so it might take another week or so<br>
> before he answers. What I do remember from talking about this is<br>
> that "nsd-control delzone" is merely the inverse of "nsd-control<br>
> addzone".<br>
><br>
> Zones defined in nsd.conf are supposed to be static that is why<br>
> the man nsd-control says:<br>
><br>
> Zones configured inside nsd.conf itself cannot be removed this<br>
> way because the daemon does not write to the nsd.conf file,<br>
> you need to add such zones to the zonelist file to be able to<br>
> delete them with the delzone command.<br>
><br>
> Hope this helps.<br>
<br>
</div></div>Yes, what you can do, if you modify the nsd.conf yourself, is that you<br>
modify the nsd.conf and then nsd-control reconfig (you need that<br>
latest svn trunk of NSD4 for that, beta4 does not have this feature).<br>
Then it adds and removes the changes you made in the config file.<br>
This may fit better into your existing workflow.<br>
<br>
Best regards,<br>
Wouter<br>
<br>
-----BEGIN PGP SIGNATURE-----<br>
Version: GnuPG v1.4.13 (GNU/Linux)<br>
Comment: Using GnuPG with Thunderbird - <a href="http://www.enigmail.net/" target="_blank">http://www.enigmail.net/</a><br>
<br>
iQIcBAEBAgAGBQJRkeFOAAoJEJ9vHC1+BF+NAKoP+wa222FNH7XrdK/PQewqcbvH<br>
th+kWMazD7tg6aw/RHP4I6iS/lKfm+PIeGW/4o7AhoJVzEhhq4PREDxqgFHYNnFe<br>
IQW/pi52XDpRb/tIn0p+rGok8Bk6rE3o4xXsbkKOMEGpF7S356OS7R/Q0F3Qyzyf<br>
kWRfEQ/Ov2xSw930fS5DsxO+vVNLu55q4Pmg0IZAQDeLJoLFee/zOEBjj/bpWio7<br>
Beg+b+fbYyVg2v2C9AqVBC8vazWjykt5Abpb+Kdhv5IU2ARVLm/nLxh/5co85L8f<br>
NGUyJ0Ntx10YgTrrV7o+rwufRidGlRk4S/lVcilPGzvHx5D4NztUNSk1xauaSetn<br>
/evGWN5ZSbVmxYRU/hymrRKSsZAIr2HDJiBis3kKjovc/EMpSBUHi3EKMDIUnun8<br>
KN9wEJEK+URjWx206pnj453Vb8nihBIfX8GFw2XhGyize21bd/++KwwagElAQ2Jj<br>
TTfFo6XYWQZwzWY1suLXtbzlfLGZu74LPWuB6WFPSMrPUPrwF5uSqk8iEthz69KY<br>
eHU+JDq007nE9njR7ifo4hihxzWmQF6SQREAnf53dFX0rTiaBKctEC4/9Q3yHoIc<br>
xi9IiTZItii2FlTClYAcKJM2vUaXvxcKJnl8zZITZz1aI4J9He5vCQBLItjubu+r<br>
iIbBrZ9u+kXYbvcz8n2i<br>
=ChtX<br>
-----END PGP SIGNATURE-----<br>
</blockquote></div><br></div>