adding DS record via nsupdate
Jack Tavares
j.tavares at F5.com
Wed Feb 6 15:54:56 UTC 2013
Of course.
Thank you.
--
Jack Tavares
"How many more can we sell with this button?"
________________________________________
From: Mark Andrews [marka at isc.org]
Sent: Tuesday, February 05, 2013 19:58
To: Andrew Latham
Cc: Jack Tavares; bind-users at isc.org
Subject: Re: adding DS record via nsupdate
The update code has sanity checks. You can only add DS records
where delegating NS records exist. If you remove a delegating NS
rrset any DS records there will also be removed. This check is
done after all the records have been processed.
Mark
> server 127.0.0.1
> zone example
> key key.dv.isc.org xxxxxxxxxxxxyyyyyyyyyyyy
> update add oooooo.example 0 ns drugs.dv.isc.org
> update add oooooo.example 0 DS 10288 5 1 22F103696F795206A7373850444C6F4DA61D0076
> send
>
; <<>> DiG 9.10.0pre-alpha <<>> isc.org oooooo.example ds +norec
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 60240
;; flags: qr aa; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;oooooo.example. IN DS
;; ANSWER SECTION:
oooooo.example. 0 IN DS 10288 5 1 22F103696F795206A7373850444C6F4DA61D0076
;; Query time: 0 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Wed Feb 06 14:57:45 EST 2013
;; MSG SIZE rcvd: 163
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: marka at isc.org
More information about the bind-users
mailing list