<html><head><meta http-equiv="Content-Type" content="text/html; charset=utf-8"><meta http-equiv="Content-Type" content="text/html; charset=utf-8"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; line-break: after-white-space;" class="">Hi,<div class=""><br class=""></div><div class="">So to get this right, you need to be able to have a secondary (the anycast provider) be able to AXFR all the individual domains, right? To configure that, you’d first setup all the domains as MASTER domains (as opposed to SLAVE or NATIVE), and set these settings in the config file: (replace 10.10.10.10/32 with the IP addresses your provider will give you). </div><div class=""><br class=""></div><div class="">allow-axfr-ips=10.10.10.10/32</div><div class="">master=yes</div><div class=""><br class=""></div><div class="">Also, be sure to read <a href="https://docs.powerdns.com/authoritative/modes-of-operation.html#master-operation" class="">https://docs.powerdns.com/authoritative/modes-of-operation.html#master-operation</a> regarding the master operation.</div><div class=""><br class=""></div><div class=""><br class=""><div class="">
<div dir="auto" style="word-wrap: break-word; -webkit-nbsp-mode: space; line-break: after-white-space;" class=""><div style="caret-color: rgb(0, 0, 0); color: rgb(0, 0, 0); font-family: "Avenir Next"; font-size: 13px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px; text-decoration: none;">Frank Louwers<br class="">PowerDNS Certified Consultant @ <a href="http://Kiwazo.be" class="">Kiwazo.be</a><br class=""><br class=""></div></div></div><div><br class=""><blockquote type="cite" class=""><div class="">On 5 Aug 2019, at 16:12, Stanford Mings <<a href="mailto:stanford@tech.vi" class="">stanford@tech.vi</a>> wrote:</div><br class="Apple-interchange-newline"><div class=""><div dir="ltr" class="">Hello All,<div class=""><br class=""></div><div class="">Thanks for the feedback. The project that I am working on is for a gTLD and I need to be able to have an Anycast provider do a zone transfer of all the domains for the TLD. I am almost certain there is a switch for it somewhere, I just don't know where.</div><div class=""><br class=""></div><div class=""><br clear="all" class=""><div class=""><div dir="ltr" class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr" class=""><div class=""><div dir="ltr" class="">Stanford T. Mings Jr. ~Technologist ~ <br class=""><a href="mailto:stanford@tech.vi" style="color:rgb(17,85,204)" target="_blank" class="">stanford@tech.vi</a> ~ <a href="http://www.tech.vi/" style="color:rgb(17,85,204)" target="_blank" class="">http://www.tech.vi</a> ~ <span style="font-size:small" class="">786-269-5718</span><br style="font-size:small" class=""><br class="">VI Technical Services, LLC ~ 9160 Estate Thomas ~ <br class="">Suite 195 ~ St. Thomas, VI, 00802<br class=""></div></div></div></div></div><br class=""></div></div><br class=""><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Mon, Aug 5, 2019 at 8:53 AM Matthias Cramer <<a href="mailto:matthias.cramer@iway.ch" class="">matthias.cramer@iway.ch</a>> wrote:<br class=""></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">If you transfer your zones this way, why do you not use mysql replication or a cluster and use native zones?<br class="">
<br class="">
DNS-zonetransfer and notifies do not have any method for deleting a zone as fas as I know.<br class="">
<br class="">
Regards<br class="">
<br class="">
Matthias<br class="">
<br class="">
On 05/08/2019 14:48, Curtis Maurand wrote:<br class="">
> I scripted it. I can't rely on pdns replication. The supermaster won't tell a slave to delete a zone for instance. Adding a new zone may or may not happen properly or in a<br class="">
> timely manner. Sometimes transfers just don't happen and even if they do, the signed zones won't work until they're rectified. Don't get me started on dnsdist. So to that end, I do:<br class="">
> <br class="">
> <br class="">
> <br class="">
> #!/bin/bash<br class="">
> # getdns.sh<br class="">
> mysqldump -u root -p<password> -h <my database host> --opt --databases powerdns >/tmp/pdns.dump.sql<br class="">
> <br class="">
> mysql -u root -p<password> powerdns </tmp/pdns.dump.sql<br class="">
> mysql -u root -p<password> powerdns </usr/local/bin/pdns.sql<br class="">
> /usr/bin/pdnsutil rectify-all-zones<br class="">
> <br class="">
> <br class="">
> pdns.sql contains.<br class="">
> <br class="">
> USE powerdns;<br class="">
> UPDATE domains SET type = 'SLAVE';<br class="">
> UPDATE domains SET master = '<my primary pdns host>';<br class="">
> <br class="">
> <br class="">
> <br class="">
> On 8/5/19 7:54 AM, frank+pdns--- via Pdns-users wrote:<br class="">
>> Hi Thomas,<br class="">
>><br class="">
>> A zone transfer will only include the contents of that particular zone, so I am a bit confused by your question. Could you rephrase it? (Or give an example how you would<br class="">
>> configure this in a another nameserver?)<br class="">
>><br class="">
>> Frank<br class="">
>> Frank Louwers<br class="">
>> PowerDNS Certified Consultant @ <a href="http://Kiwazo.be" class="">Kiwazo.be</a> <<a href="http://kiwazo.be/" rel="noreferrer" target="_blank" class="">http://Kiwazo.be</a>><br class="">
>><br class="">
>><br class="">
>><br class="">
>><br class="">
>><br class="">
>>> On 5 Aug 2019, at 13:49, Stanford Mings <<a href="mailto:stanford@tech.vi" target="_blank" class="">stanford@tech.vi</a> <mailto:<a href="mailto:stanford@tech.vi" target="_blank" class="">stanford@tech.vi</a>>> wrote:<br class="">
>>><br class="">
>>> Hello All,<br class="">
>>><br class="">
>>> This is a newbie question, so forgive me.<br class="">
>>><br class="">
>>> How do I configure PDNS to return all domains in a zone transfer ?<br class="">
>>><br class="">
>>> Stanford T. Mings Jr. ~Technologist ~ <br class="">
>>> <a href="mailto:stanford@tech.vi" target="_blank" class="">stanford@tech.vi</a> <mailto:<a href="mailto:stanford@tech.vi" target="_blank" class="">stanford@tech.vi</a>> ~ <a href="http://www.tech.vi/" rel="noreferrer" target="_blank" class="">http://www.tech.vi</a> <<a href="http://www.tech.vi/" rel="noreferrer" target="_blank" class="">http://www.tech.vi/</a>> ~ 786-269-5718<br class="">
>>><br class="">
>>> VI Technical Services, LLC ~ 9160 Estate Thomas ~ <br class="">
>>> Suite 195 ~ St. Thomas, VI, 00802<br class="">
>>> _______________________________________________<br class="">
>>> Pdns-users mailing list<br class="">
>>> <a href="mailto:Pdns-users@mailman.powerdns.com" target="_blank" class="">Pdns-users@mailman.powerdns.com</a> <mailto:<a href="mailto:Pdns-users@mailman.powerdns.com" target="_blank" class="">Pdns-users@mailman.powerdns.com</a>><br class="">
>>> <a href="https://mailman.powerdns.com/mailman/listinfo/pdns-users" rel="noreferrer" target="_blank" class="">https://mailman.powerdns.com/mailman/listinfo/pdns-users</a><br class="">
>><br class="">
>> Frank Louwers<br class="">
>> PowerDNS Certified Consultant @ <a href="http://Kiwazo.be" class="">Kiwazo.be</a> <<a href="http://kiwazo.be/" rel="noreferrer" target="_blank" class="">http://Kiwazo.be</a>><br class="">
>><br class="">
>><br class="">
>><br class="">
>><br class="">
>><br class="">
>> _______________________________________________<br class="">
>> Pdns-users mailing list<br class="">
>> <a href="mailto:Pdns-users@mailman.powerdns.com" target="_blank" class="">Pdns-users@mailman.powerdns.com</a><br class="">
>> <a href="https://mailman.powerdns.com/mailman/listinfo/pdns-users" rel="noreferrer" target="_blank" class="">https://mailman.powerdns.com/mailman/listinfo/pdns-users</a><br class="">
> <br class="">
> -- <br class="">
> Best Regards Curtis Maurand<br class="">
> mailto:<a href="mailto:curtis@maurand.com" target="_blank" class="">curtis@maurand.com</a><br class="">
> <br class="">
> _______________________________________________<br class="">
> Pdns-users mailing list<br class="">
> <a href="mailto:Pdns-users@mailman.powerdns.com" target="_blank" class="">Pdns-users@mailman.powerdns.com</a><br class="">
> <a href="https://mailman.powerdns.com/mailman/listinfo/pdns-users" rel="noreferrer" target="_blank" class="">https://mailman.powerdns.com/mailman/listinfo/pdns-users</a><br class="">
> <br class="">
<br class="">
<br class="">
-- <br class="">
Matthias Cramer / mc322-ripe Senior Network & Security Engineer<br class="">
iway AG Phone +41 43 500 1111<br class="">
Badenerstrasse 569 Fax +41 44 271 3535<br class="">
CH-8048 Zürich <a href="http://www.iway.ch/" rel="noreferrer" target="_blank" class="">http://www.iway.ch/</a><br class="">
GnuPG 1024D/2D208250 = DBC6 65B6 7083 1029 781E 3959 B62F DF1C 2D20 8250<br class="">
_______________________________________________<br class="">
Pdns-users mailing list<br class="">
<a href="mailto:Pdns-users@mailman.powerdns.com" target="_blank" class="">Pdns-users@mailman.powerdns.com</a><br class="">
<a href="https://mailman.powerdns.com/mailman/listinfo/pdns-users" rel="noreferrer" target="_blank" class="">https://mailman.powerdns.com/mailman/listinfo/pdns-users</a><br class="">
</blockquote></div>
_______________________________________________<br class="">Pdns-users mailing list<br class=""><a href="mailto:Pdns-users@mailman.powerdns.com" class="">Pdns-users@mailman.powerdns.com</a><br class=""><a href="https://mailman.powerdns.com/mailman/listinfo/pdns-users" class="">https://mailman.powerdns.com/mailman/listinfo/pdns-users</a><br class=""></div></blockquote></div><br class=""></div><div class=""><div dir="auto" style="word-wrap: break-word; -webkit-nbsp-mode: space; line-break: after-white-space;" class=""><div style="caret-color: rgb(0, 0, 0); color: rgb(0, 0, 0); font-family: "Avenir Next"; font-size: 13px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px; text-decoration: none;">Frank Louwers<br class="">PowerDNS Certified Consultant @ <a href="http://Kiwazo.be" class="">Kiwazo.be</a><br class=""><br class=""></div><div style="caret-color: rgb(0, 0, 0); color: rgb(0, 0, 0); font-family: "Avenir Next"; font-size: 13px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px; text-decoration: none;" class=""><br class=""></div><br class="Apple-interchange-newline"></div><br class="Apple-interchange-newline"></div></body></html>