[Dnssec-trigger] dnssec-trigger release 0.6
W.C.A. Wijngaards
wouter at NLnetLabs.nl
Fri Oct 21 14:38:50 UTC 2011
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi Paul,
On 10/21/2011 04:34 PM, Paul Wouters wrote:
> On Fri, 21 Oct 2011, W.C.A. Wijngaards wrote:
>
>> It exists:
>> tcp80: <IP>
>> tcp443: <IP>
>> in dnssec-trigger.conf adds more entries. Just add more of these lines
>> to enable more servers. The nlnetlabs server is there as a start (you
>> can remove the lines with .42 in them to disable if you do not want to
>> send queries to nlnetlabs).
>
> I stand corrected. Guess it works so well I haven't looked in the config
> file for ages :)
Yes it got snuck in there a while ago. Did not mention it in changelog
that big, and reading the config file for random changes does seem a bit
wasteful. :-)
It'll probe a random server to test. Then submit all of them to
unbound, 1.4.14 will do a server-selection based on ping (and rtt-banding).
It picks on random tcp80-ip4, one random tcp80-ip6, one random
tcp443-ip4 and one random tcp443-ip6 to probe. It would be good if
servers have good uptime, though, probably, not bad for short outages
(since other portnumber is likely to work and so on).
Best regards,
Wouter
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.15 (GNU/Linux)
Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org/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=CFZ/
-----END PGP SIGNATURE-----
More information about the dnssec-trigger
mailing list