Audit the consistency of zone files on DNS servers

Stephane Bortzmeyer bortzmeyer at
Fri Mar 14 13:11:34 UTC 2014

On Fri, Mar 14, 2014 at 12:33:47PM +0000,
 Phil Mayers <p.mayers at> wrote 
 a message of 25 lines which said:

> dig @server zone axfr >file
> diff file file.real

diff is not clever enough, you'll find many spurious differences. Try
feeding the two files (the local one and the AXFRed one) through
named-compilezone to canonicalize them.

(I actually use a non-BIND tool, ldns-read-zone)

