[Pdns-users] Explicit Notification (from the users pov)
Markus Lauer
mlauer at key-systems.net
Thu Dec 9 08:14:21 UTC 2010
Hi List!
I'm experimenting with a chain of hidden masters.
PDNS (hidden master) --NOTIFY--> OPENDNSSEC (hidden master) --NOTIFY-->
PUBLIC PRIMARY
(AXFRs the other way round)
Problem is: PDNS notifies only hosts it finds in the NS records of the changed
zone. I don't know how to loop-in a second hidden master. In BIND there's a
configuration option for this:
options {
also-notify { [opendnssecip]; }; // all zones
notify explicit;
};
(See http://www.zytrax.com/books/dns/ch7/xfer.html#notify)
You can achieve a similar behaviour with PDNS by calling "pdns_control notify-
host" (http://doc.powerdns.com/master.html). This ignores the NS records from
zone and only notifies the explicit IP.
Is there a way to get automatic explicit notifies?
I send the same mail to pdns-dev with an rough idea on how to change pdns to
allow explicit notifies. But maybe someone here in pdns-users has an idea for
an alternative setup.
Please see also the blog entry from Jan-Piet Mens:
http://blog.fupps.com/2010/09/15/hints-on-getting-powerdns-to-use-opendnssec-
for-signing-zones/
Regards,
Markus Lauer.
More information about the Pdns-users
mailing list