[ldns-users] drill -k <DS> ?
W.C.A. Wijngaards
wouter at NLnetLabs.nl
Tue Mar 8 09:53:59 UTC 2011
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi Gilles,
On 03/08/2011 10:37 AM, Gilles Massen wrote:
>
>>>> So:
>>>> drill <name> -k <ds> -D is not supported (or at least not like you
>>>> expect to).
>>>> drill <name> -k <ds> -D [-S|-T] is supported.
>>
>>> It look like this is a request for ldns-verify-zone, but then for
>>> a zone loaded in a nameserver?
>>
>> Now it does go towards the direction of unbound-host.
>
>>From a semantic point of view "ldns-verify-zone" sound more appropriate,
> but from a code point of view unbound-host does the job but is only
> missing the option to direct the query to a specific nameserver. Which,
> IMHO, would be useful for any unbound-host user.
But you can do this via the config file option:
unbound-host -C unbound.conf and put a stub-zone: "example.com"
stub-addr: 127.0.0.1 at 53 or something in there.
Most other unbound.conf features work as well (validation options,
zones, python module, ...), but some are not appropriate (i.e. daemon
pidfile location).
Best regards,
Wouter
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iEYEARECAAYFAk11/LcACgkQkDLqNwOhpPjzbwCfa6extYjZ9+iFD1SfUKQyaFgJ
B6kAn3McdjYeOk5rVf8SfsbfHGtMhupv
=MAaD
-----END PGP SIGNATURE-----
More information about the ldns-users
mailing list