question about RPZ file transfers
Tony Finch
dot at dotat.at
Thu Nov 5 21:18:47 UTC 2020
Chuck Crisler <ccrislerathome at gmail.com> wrote:
>
> I am writing about a problem that I have encountered. We are using 9.11.5.
> The package is integrated into our middleware box to provide DNS services.
> I am responsible for 2 projects involving RPZs. The second is to support
> transferring updated RPZs from a configured master server to the slave
> servers. I discovered that the default transfer format is binary/raw, which
> I can't seem to use. There is a zone clause 'masterfile-format text' which
> seems like it should force a text format. However, in my code version when
> using this clause, this asserts at name.c, line 958 with RPZs.
Can you provide a verbatim copy of the error message, please?
> I haven't been able to find a way to get BIND to load a binary or raw
> file. The problem is that our product runs in a cluster with between 2
> to 50 separate instances of BIND. I have implemented a mechanism that
> only 1 instance will download a file from the master server and we can
> distribute that file to all instances in the cluster. I just can't seem
> to load the binary file.
It sounds like you are copying the zone files around out of band (with
rsync or similar non-DNS software). I think it is a lot easier to use
zone transfers, i.e. configure all your replicas as secondaries that
transfer the zones from your staging / fan-out server. Then you won't have
to worry about zone file formats at all, and all the replicas will be
motified of changes as soon as the fan-out server receives them.
Tony.
--
f.anthony.n.finch <dot at dotat.at> http://dotat.at/
safeguard the balance of nature and the environment
More information about the bind-workers
mailing list