<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<p>Hi Curtis</p>
<p>I run 5 powerdns server with MySQL replication over an OpenVPN
Tunnel for encryption. Two in Switzerland, one in Germany one in
Singapore and one in California, this now for several years,
without any replication problems.</p>
<p>Supermaster is only a concept for accepting notifies and the
crating zones for unknown zones. It it not a protocol extension.
All that goes over the wire is still the same old stuff.</p>
<p>Regards Matthias<br>
</p>
<p><br>
</p>
<div class="moz-cite-prefix">On 05/08/2019 19:01, Curtis Maurand
wrote:<br>
</div>
<blockquote type="cite"
cite="mid:76b33360-59de-26c7-cc75-df75e5a461aa@maurand.com">
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
Hello,<br>
<br>
I've been running powerdns pretty much since it came into
existence. I've been on this list forever. It's been very
helpful. I ran pdns out of spite for BIND. i figured you all
needed a better answer than I gave earlier.<br>
<br>
For what ever reason I did not receive Matthias' email directly.
Supermaster doesn't look to be part of the RFC, so why can't it
send deletions? It's already doing it for individual records.<br>
<br>
It's like dnsdist not getting a list of authoritative domains from
the db server that pdns talks to at startup and having to hard
code them into a file. I thought powerdns was developed to take
advantage of the database server. Why am I hard coding txt files
when I have this lovely database with a domains table full of
domains I'm authoritative for? Seems like an oversight to me.
Feels like I'm editing bind backend files again. Just invites
error. dnsdist doesn't need to maintain the connection. I'm
assuming it reads in a list from the file at startup and keeps the
table in memory for speed. I see no reason why it can't read the
names from the database at startup, then disconnect from the
dbserver. Hard coding txt files just invites mistakes and reminds
me of 1996.<br>
<br>
I've never been able to get MySQL replication to operate reliably
over a wide area network. I've tried several times with several
different versions of MySQL and MariaDB. I'm certainly not going
to try running cluster over a WAN. My DNS servers are
geographically diverse. 1 is in FL and one in ME. My little
script works better than anything else I've tried. <br>
<br>
Thanks for reading,<br>
<br>
Curtis<br>
<br>
<div class="moz-cite-prefix">On 8/5/19 10:12 AM, Stanford Mings
wrote:<br>
</div>
<blockquote type="cite"
cite="mid:CAPwAG9iTVYTyY+=UmURvtW37BwAy=oPaah2bJ-y_wH74wh8uHw@mail.gmail.com">
<div dir="ltr">Hello All,
<div><br>
</div>
<div>Thanks for the feedback. The project that I am working on
is for a gTLD and I need to be able to have an Anycast
provider do a zone transfer of all the domains for the TLD.
I am almost certain there is a switch for it somewhere, I
just don't know where.</div>
<div><br>
</div>
<div><br clear="all">
<div>
<div dir="ltr" class="gmail_signature"
data-smartmail="gmail_signature">
<div dir="ltr">
<div>
<div dir="ltr">Stanford T. Mings Jr. ~Technologist
~ <br>
<a href="mailto:stanford@tech.vi"
style="color:rgb(17,85,204)" target="_blank"
moz-do-not-send="true">stanford@tech.vi</a> ~ <a
href="http://www.tech.vi/"
style="color:rgb(17,85,204)" target="_blank"
moz-do-not-send="true">http://www.tech.vi</a> ~ <span
style="font-size:small">786-269-5718</span><br
style="font-size:small">
<br>
VI Technical Services, LLC ~ 9160 Estate Thomas ~ <br>
Suite 195 ~ St. Thomas, VI, 00802<br>
</div>
</div>
</div>
</div>
</div>
<br>
</div>
</div>
<br>
<div class="gmail_quote">
<div dir="ltr" class="gmail_attr">On Mon, Aug 5, 2019 at 8:53
AM Matthias Cramer <<a
href="mailto:matthias.cramer@iway.ch"
moz-do-not-send="true">matthias.cramer@iway.ch</a>>
wrote:<br>
</div>
<blockquote class="gmail_quote" style="margin:0px 0px 0px
0.8ex;border-left:1px solid
rgb(204,204,204);padding-left:1ex">If you transfer your
zones this way, why do you not use mysql replication or a
cluster and use native zones?<br>
<br>
DNS-zonetransfer and notifies do not have any method for
deleting a zone as fas as I know.<br>
<br>
Regards<br>
<br>
Matthias<br>
<br>
On 05/08/2019 14:48, Curtis Maurand wrote:<br>
> I scripted it. I can't rely on pdns replication. The
supermaster won't tell a slave to delete a zone for
instance. Adding a new zone may or may not happen properly
or in a<br>
> timely manner. Sometimes transfers just don't happen
and even if they do, the signed zones won't work until
they're rectified. Don't get me started on dnsdist. So to
that end, I do:<br>
> <br>
> <br>
> <br>
> #!/bin/bash<br>
> # getdns.sh<br>
> mysqldump -u root -p<password> -h <my database
host> --opt --databases powerdns >/tmp/pdns.dump.sql<br>
> <br>
> mysql -u root -p<password> powerdns
</tmp/pdns.dump.sql<br>
> mysql -u root -p<password> powerdns
</usr/local/bin/pdns.sql<br>
> /usr/bin/pdnsutil rectify-all-zones<br>
> <br>
> <br>
> pdns.sql contains.<br>
> <br>
> USE powerdns;<br>
> UPDATE domains SET type = 'SLAVE';<br>
> UPDATE domains SET master = '<my primary pdns
host>';<br>
> <br>
> <br>
> <br>
> On 8/5/19 7:54 AM, frank+pdns--- via Pdns-users wrote:<br>
>> Hi Thomas,<br>
>><br>
>> A zone transfer will only include the contents of
that particular zone, so I am a bit confused by your
question. Could you rephrase it? (Or give an example how you
would<br>
>> configure this in a another nameserver?)<br>
>><br>
>> Frank<br>
>> Frank Louwers<br>
>> PowerDNS Certified Consultant @ Kiwazo.be <<a
href="http://Kiwazo.be" rel="noreferrer" target="_blank"
moz-do-not-send="true">http://Kiwazo.be</a>><br>
>><br>
>><br>
>><br>
>><br>
>><br>
>>> On 5 Aug 2019, at 13:49, Stanford Mings <<a
href="mailto:stanford@tech.vi" target="_blank"
moz-do-not-send="true">stanford@tech.vi</a> <mailto:<a
href="mailto:stanford@tech.vi" target="_blank"
moz-do-not-send="true">stanford@tech.vi</a>>> wrote:<br>
>>><br>
>>> Hello All,<br>
>>><br>
>>> This is a newbie question, so forgive me.<br>
>>><br>
>>> How do I configure PDNS to return all domains
in a zone transfer ?<br>
>>><br>
>>> Stanford T. Mings Jr. ~Technologist ~ <br>
>>> <a href="mailto:stanford@tech.vi"
target="_blank" moz-do-not-send="true">stanford@tech.vi</a>
<mailto:<a href="mailto:stanford@tech.vi" target="_blank"
moz-do-not-send="true">stanford@tech.vi</a>> ~ <a
href="http://www.tech.vi" rel="noreferrer" target="_blank"
moz-do-not-send="true">http://www.tech.vi</a> <<a
href="http://www.tech.vi/" rel="noreferrer"
target="_blank" moz-do-not-send="true">http://www.tech.vi/</a>> ~ 786-269-5718<br>
>>><br>
>>> VI Technical Services, LLC ~ 9160 Estate Thomas
~ <br>
>>> Suite 195 ~ St. Thomas, VI, 00802<br>
>>> _______________________________________________<br>
>>> Pdns-users mailing list<br>
>>> <a
href="mailto:Pdns-users@mailman.powerdns.com"
target="_blank" moz-do-not-send="true">Pdns-users@mailman.powerdns.com</a>
<mailto:<a href="mailto:Pdns-users@mailman.powerdns.com"
target="_blank" moz-do-not-send="true">Pdns-users@mailman.powerdns.com</a>><br>
>>> <a
href="https://mailman.powerdns.com/mailman/listinfo/pdns-users"
rel="noreferrer" target="_blank" moz-do-not-send="true">https://mailman.powerdns.com/mailman/listinfo/pdns-users</a><br>
>><br>
>> Frank Louwers<br>
>> PowerDNS Certified Consultant @ Kiwazo.be <<a
href="http://Kiwazo.be" rel="noreferrer" target="_blank"
moz-do-not-send="true">http://Kiwazo.be</a>><br>
>><br>
>><br>
>><br>
>><br>
>><br>
>> _______________________________________________<br>
>> Pdns-users mailing list<br>
>> <a href="mailto:Pdns-users@mailman.powerdns.com"
target="_blank" moz-do-not-send="true">Pdns-users@mailman.powerdns.com</a><br>
>> <a
href="https://mailman.powerdns.com/mailman/listinfo/pdns-users"
rel="noreferrer" target="_blank" moz-do-not-send="true">https://mailman.powerdns.com/mailman/listinfo/pdns-users</a><br>
> <br>
> -- <br>
> Best Regards Curtis Maurand<br>
> mailto:<a href="mailto:curtis@maurand.com"
target="_blank" moz-do-not-send="true">curtis@maurand.com</a><br>
> <br>
> _______________________________________________<br>
> Pdns-users mailing list<br>
> <a href="mailto:Pdns-users@mailman.powerdns.com"
target="_blank" moz-do-not-send="true">Pdns-users@mailman.powerdns.com</a><br>
> <a
href="https://mailman.powerdns.com/mailman/listinfo/pdns-users"
rel="noreferrer" target="_blank" moz-do-not-send="true">https://mailman.powerdns.com/mailman/listinfo/pdns-users</a><br>
> <br>
<br>
<br>
-- <br>
Matthias Cramer / mc322-ripe Senior Network & Security
Engineer<br>
iway AG Phone +41 43 500 1111<br>
Badenerstrasse 569 Fax +41 44 271 3535<br>
CH-8048 Zürich <a href="http://www.iway.ch/"
rel="noreferrer" target="_blank" moz-do-not-send="true">http://www.iway.ch/</a><br>
GnuPG 1024D/2D208250 = DBC6 65B6 7083 1029 781E 3959 B62F
DF1C 2D20 8250<br>
_______________________________________________<br>
Pdns-users mailing list<br>
<a href="mailto:Pdns-users@mailman.powerdns.com"
target="_blank" moz-do-not-send="true">Pdns-users@mailman.powerdns.com</a><br>
<a
href="https://mailman.powerdns.com/mailman/listinfo/pdns-users"
rel="noreferrer" target="_blank" moz-do-not-send="true">https://mailman.powerdns.com/mailman/listinfo/pdns-users</a><br>
</blockquote>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<pre class="moz-quote-pre" wrap="">_______________________________________________
Pdns-users mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Pdns-users@mailman.powerdns.com" moz-do-not-send="true">Pdns-users@mailman.powerdns.com</a>
<a class="moz-txt-link-freetext" href="https://mailman.powerdns.com/mailman/listinfo/pdns-users" moz-do-not-send="true">https://mailman.powerdns.com/mailman/listinfo/pdns-users</a>
</pre>
</blockquote>
<br>
<div class="moz-signature">-- <br>
Best Regards Curtis Maurand<br>
<a class="moz-txt-link-freetext"
href="mailto:curtis@maurand.com" moz-do-not-send="true">mailto:curtis@maurand.com</a></div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<pre class="moz-quote-pre" wrap="">_______________________________________________
Pdns-users mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Pdns-users@mailman.powerdns.com">Pdns-users@mailman.powerdns.com</a>
<a class="moz-txt-link-freetext" href="https://mailman.powerdns.com/mailman/listinfo/pdns-users">https://mailman.powerdns.com/mailman/listinfo/pdns-users</a>
</pre>
</blockquote>
<pre class="moz-signature" cols="72">--
Matthias Cramer / mc322-ripe Senior Network & Security Engineer
iway AG Phone +41 43 500 1111
Badenerstrasse 569 Fax +41 44 271 3535
CH-8048 Zurich <a class="moz-txt-link-freetext" href="http://www.iway.ch/">http://www.iway.ch/</a>
GnuPG 1024D/2D208250 = DBC6 65B6 7083 1029 781E 3959 B62F DF1C 2D20 8250
</pre>
</body>
</html>