<div>Hi,</div>
<div> </div>
<div>Is it possible to configure BIND for IPV4 and IPV6 in the same server?</div>
<div> </div>
<div>Regards,</div>
<div>Jagan</div>
<div> </div>
<div><br><br> </div>
<div class="gmail_quote">On Thu, Oct 25, 2012 at 9:35 PM, John Miller <span dir="ltr"><<a href="mailto:johnmill@brandeis.edu" target="_blank">johnmill@brandeis.edu</a>></span> wrote:<br>
<blockquote style="BORDER-LEFT:#ccc 1px solid;MARGIN:0px 0px 0px 0.8ex;PADDING-LEFT:1ex" class="gmail_quote">Thanks, Phil. This makes perfect sense--unlike TCP, there's nothing inherent in UDP to make sure that packets come back from the right IP.<br>
<br>Thank you also for explaining this in terms of the socket APIs. This is something I've only barely touched on--time for me to play around a bit and write some code. I'd also just been doing an rndc stop/start to update the listening sockets--just what's bundled into the initscript. I'll keep reconfig in mind--might come in handy.<br>
<br>Aside: realized that I didn't reply to the list last time--doing so now.<br><br>John<br><br>On 10/25/2012 11:53 AM, Phil Mayers wrote:<br>
<blockquote style="BORDER-LEFT:#ccc 1px solid;MARGIN:0px 0px 0px 0.8ex;PADDING-LEFT:1ex" class="gmail_quote">On 25/10/12 15:54, John Miller wrote:<br><br>
<blockquote style="BORDER-LEFT:#ccc 1px solid;MARGIN:0px 0px 0px 0.8ex;PADDING-LEFT:1ex" class="gmail_quote">Is BIND associating each request with a particular socket, then? It<br>would certainly make sense if that were the case. This was something I<br>
didn't fully realize.<br></blockquote><br>Yes.<br><br>
<blockquote style="BORDER-LEFT:#ccc 1px solid;MARGIN:0px 0px 0px 0.8ex;PADDING-LEFT:1ex" class="gmail_quote">Something else I didn't fully realize was that by default, BIND binds to<br>_each_ of the available IP addresses on the system--_not_ to 0.0.0.0, as<br>
happens with other network daemons (e.g. sshd).<br></blockquote><br>It does this because the cross-platform AF_INET socket APIs are limited.<br>Binding a socket to each separate IP and replying from the same socket<br>is the simplest cross-platform way to guarantee that UDP replies come<br>
from the right IP.<br><br>AF_INET6 has a newer API which solves this, and if you "lsof -i :53"<br>you'll see that bind only opens one socket for IPv6/UDP (unless you are<br>on a system which doesn't implement RFC 3493/3542, in which case it<br>
falls back to one socket per IPv6 address).<br><br>TCP-based daemons can ignore this, because the TCP stack takes care of it.<br><br>Note that bind doesn't detect new IPs immediately - you need to do "rndc<br>reconfig" or wait for the timer ("interface-interval" in the "options"<br>
block).<br></blockquote>
<div class="HOEnZb">
<div class="h5">______________________________<u></u>_________________<br>Please visit <a href="https://lists.isc.org/mailman/listinfo/bind-users" target="_blank">https://lists.isc.org/mailman/<u></u>listinfo/bind-users</a> to unsubscribe from this list<br>
<br>bind-users mailing list<br><a href="mailto:bind-users@lists.isc.org" target="_blank">bind-users@lists.isc.org</a><br><a href="https://lists.isc.org/mailman/listinfo/bind-users" target="_blank">https://lists.isc.org/mailman/<u></u>listinfo/bind-users</a><br>
</div></div></blockquote></div><br>