[nsd-users] nsd zonefile format

Matthijs Mekking matthijs at NLnetLabs.nl
Wed Nov 10 06:16:14 UTC 2010


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

So, it looks like the problem is in ldns, not nsd. Will fix it there.

Best regards,
Matthijs

On 11/09/2010 04:31 PM, Andreas Schulze wrote:
> Am 09.11.2010 16:10 schrieb Matthijs Mekking:
>> May I ask you what version NSD you are using? I tried to load a similar
>> zone in the latest version and all records except the MX have a TTL of 1d.
> it's nsd-3.2.6 build from source an ldnsutils 1.6.5 
> to be precise: the zone in question is "t-isa.de"
> 
> the zonefile:
> --- snip
> $TTL 1d
> 
> t-isa.de.                                       SOA     (
>         nsd01.t-isa.de. hostmaster-soa.datev.de. 2010110902 4h 4444s 40d 40m )
> t-isa.de.                                       NS      nsd01.t-isa.de.
> t-isa.de.                                       NS      nsd02.t-isa.de.
> t-isa.de.                       300             MX      0 mailin11.t-isa.de.
> 
> t-isa.de.                                       TXT     "v=spf1 ip4=193.27.48.0/21 -all"
> t-isa.de.                                       SPF     "v=spf1 ip4=193.27.48.0/21 -all"
> 
> nsd01.t-isa.de.                                 A       193.27.50.9
> nsd02.t-isa.de.                                 A       193.27.54.9
> 
> ...
> --- snap
> 
> and thats what "ldns-read-zone t-isa.de" prints out:
> t-isa.de.       86400   IN      SOA     nsd01.t-isa.de. hostmaster-soa.datev.de. 2010110902 14400 4444 3456000 2400
> t-isa.de.       86400   IN      NS      nsd01.t-isa.de.
> t-isa.de.       86400   IN      NS      nsd02.t-isa.de.
> t-isa.de.       300     IN      MX      0 mailin11.t-isa.de.
> t-isa.de.       300     IN      TXT     "v=spf1 ip4=193.27.48.0/21 -all"
> t-isa.de.       300     IN      SPF     "v=spf1 ip4=193.27.48.0/21 -all"
> nsd01.t-isa.de. 300     IN      A       193.27.50.9
> nsd02.t-isa.de. 300     IN      A       193.27.54.9
> ...
> up to this point only ldns is involved.
> next players are ldns-signzone and zonec.
> public verifyable is this:
> 
> $ dig @nsd01.t-isa.de t-isa.de any +noall +answer| grep -v DNSKEY | grep -v RRSIG
> ;; Truncated, retrying in TCP mode.
> t-isa.de.               86400   IN      SOA     nsd01.t-isa.de. hostmaster-soa.datev.de. 2010110902 14400 4444 3456000 2400
> t-isa.de.               86400   IN      NS      nsd01.t-isa.de.
> t-isa.de.               86400   IN      NS      nsd02.t-isa.de.
> t-isa.de.               300     IN      MX      0 mailin11.t-isa.de.
> t-isa.de.               300     IN      TXT     "v=spf1 ip4=193.27.48.0/21 -all"
> t-isa.de.               3600    IN      TYPE51  \# 5 0100000100
> t-isa.de.               300     IN      TYPE99  \# 31 1E763D73706631206970343D3139332E32372E34382E302F3231202D 616C6C
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQEcBAEBAgAGBQJM2jiuAAoJEA8yVCPsQCW50O0IAJswc6Xx0BDKB9Qt8ocK1vTg
CaiTdTuNp6LUlHB+eMvfCGP15BciSYqH274VcFHtlIc63zVZqcw7U93/ZqITRUA9
rBrymkCq3B5nRryrSbMKGaUlGf4HbDucp1/zhZPUD08JVzcXrU5Sgf+ABinNXmkk
Ywsq22cR0jd/ZzAvP64EBaaKxt3wVOc4WXjvUL4tHPihCH57ACTYVRpl3ZvS4NXr
CVWUgotAgoWNDnw0M4TAchRZ3i6xUxdyWerS+lc7K8yqnxIAynAXKxk/wNiTgIdp
R1iIok80lbT2rier+P1usaa3c+KdzE0V5frqT4b1v8jQfe9nYuiq0jvVOfa90cE=
=mPIw
-----END PGP SIGNATURE-----



More information about the nsd-users mailing list