[bind10-dev] BIND 10 in the wild

Shane Kerr shane at isc.org
Tue Mar 16 14:18:28 UTC 2010 

All,

I'm running BIND 10 as a secondary for my test zone now.


It's running on b10-ns.time-travellers.org:

shane at madras:/etc/bind/zones.shane/time-travellers.org$ host b10-ns.time-travellers.org
b10-ns.time-travellers.org has address 85.17.60.232


We can look at the zone, time-travellers.nl.eu.org:

shane at madras:/etc/bind/zones.shane/time-travellers.org$ dig @85.17.60.232 time-travellers.nl.eu.org -t ns

; <<>> DiG 9.6.1-P1 <<>> @85.17.60.232 time-travellers.nl.eu.org -t ns
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 8377
;; flags: qr aa rd; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 0
;; WARNING: recursion requested but not available

;; QUESTION SECTION:
;time-travellers.nl.eu.org.	IN	NS

;; ANSWER SECTION:
time-travellers.nl.eu.org. 3600	IN	NS	borg.c-l-i.net.
time-travellers.nl.eu.org. 3600	IN	NS	b10-ns.time-travellers.org.
time-travellers.nl.eu.org. 3600	IN	NS	madras.curryboys.net.

;; Query time: 1 msec
;; SERVER: 85.17.60.232#53(85.17.60.232)
;; WHEN: Tue Mar 16 15:14:51 2010
;; MSG SIZE  rcvd: 139



We can check the version:

shane at madras:/etc/bind/zones.shane/time-travellers.org$ dig @85.17.60.232 -c ch -t txt version.bind

; <<>> DiG 9.6.1-P1 <<>> @85.17.60.232 -c ch -t txt version.bind
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 61903
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0
;; WARNING: recursion requested but not available

;; QUESTION SECTION:
;version.bind.			CH	TXT

;; ANSWER SECTION:
version.bind.		0	CH	TXT	"BIND10 0.0.0 (pre-alpha)"

;; AUTHORITY SECTION:
version.bind.		0	CH	NS	version.bind.

;; Query time: 44 msec
;; SERVER: 85.17.60.232#53(85.17.60.232)
;; WHEN: Tue Mar 16 15:15:04 2010
;; MSG SIZE  rcvd: 81


I wonder if it's signed?

shane at madras:/etc/bind/zones.shane/time-travellers.org$ dig @85.17.60.232 +dnssec www.time-travellers.nl.eu.org

; <<>> DiG 9.6.1-P1 <<>> @85.17.60.232 +dnssec www.time-travellers.nl.eu.org
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55550
;; flags: qr aa rd; QUERY: 1, ANSWER: 0, AUTHORITY: 7, ADDITIONAL: 1
;; WARNING: recursion requested but not available

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags: do; udp: 4096
;; QUESTION SECTION:
;www.time-travellers.nl.eu.org.	IN	A

;; AUTHORITY SECTION:
time-travellers.nl.eu.org. 3600	IN	SOA	madras.curryboys.net. shane_kerr.yahoo.com. 2010031602 86400 7200 604800 3600
time-travellers.nl.eu.org. 3600	IN	SOA	madras.curryboys.net. shane_kerr.yahoo.com. 2010031602 86400 7200 604800 3600
time-travellers.nl.eu.org. 3600	IN	RRSIG	SOA 5 4 3600 20100326130704 20100316130704 41228 time-travellers.nl.eu.org. j7eRQVKtjmpIfRPrdVlJ2g9GR66yjT3J3adNUSmu3XROXTPKE2vQeYGt 8keRZ4DKtMHg9DFIQ9EFbMmuNOs2Ww==
smtp.time-travellers.nl.eu.org.	3600 IN	NSEC	time-travellers.nl.eu.org. CNAME RRSIG NSEC
smtp.time-travellers.nl.eu.org.	3600 IN	RRSIG	NSEC 5 5 3600 20100326130704 20100316130704 41228 time-travellers.nl.eu.org. K1nVIqe5txKYPEngjZrVmFUeGZQwvfQVBw5nrtFt4MivbRGS9qy03DBI fksZosPOtZeYtfW9avSDUff4Ybm1bg==
time-travellers.nl.eu.org. 3600	IN	NSEC	imap.time-travellers.nl.eu.org. A NS SOA MX RRSIG NSEC DNSKEY
time-travellers.nl.eu.org. 3600	IN	RRSIG	NSEC 5 4 3600 20100326130704 20100316130704 41228 time-travellers.nl.eu.org. Qs+5PDHlACECv9BaJPferC76T2ZcOQgBwN0hIKn7u/igqFNsch2Y5XDx 1GOxyyk09xPSXHNuCPNzQnrzPdclSA==

;; Query time: 3 msec
;; SERVER: 85.17.60.232#53(85.17.60.232)
;; WHEN: Tue Mar 16 15:16:49 2010
;; MSG SIZE  rcvd: 588


Why yes, yes it is. Of course, this zone doesn't have a web server.
Maybe mail?

shane at madras:/etc/bind/zones.shane/time-travellers.org$ dig @85.17.60.232 +dnssec smtp.time-travellers.nl.eu.org

; <<>> DiG 9.6.1-P1 <<>> @85.17.60.232 +dnssec smtp.time-travellers.nl.eu.org
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 54499
;; flags: qr aa rd; QUERY: 1, ANSWER: 4, AUTHORITY: 4, ADDITIONAL: 1
;; WARNING: recursion requested but not available

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags: do; udp: 4096
;; QUESTION SECTION:
;smtp.time-travellers.nl.eu.org.	IN	A

;; ANSWER SECTION:
smtp.time-travellers.nl.eu.org.	3600 IN	CNAME	saturn.time-travellers.nl.eu.org.
smtp.time-travellers.nl.eu.org.	3600 IN	RRSIG	CNAME 5 5 3600 20100326130704 20100316130704 41228 time-travellers.nl.eu.org. m9OCTJm/qhxdygp3rEhX/hJpFoczALOmLs4DBJvM/MVyTqzXB5CRlhiR 6Qla1DMa34LbcFp8ADrbhbnV72YFFg==
saturn.time-travellers.nl.eu.org. 3600 IN A	85.17.60.232
saturn.time-travellers.nl.eu.org. 3600 IN RRSIG	A 5 5 3600 20100326130704 20100316130704 41228 time-travellers.nl.eu.org. OyWEllefmrKZA3s5vmMIBe36EwmWTkSSmLMygBCmHGOt8yPaTLsWZbSD DLYZWIeW0YGbSnO+ukFbG9IM955iCg==

;; AUTHORITY SECTION:
time-travellers.nl.eu.org. 3600	IN	NS	borg.c-l-i.net.
time-travellers.nl.eu.org. 3600	IN	NS	b10-ns.time-travellers.org.
time-travellers.nl.eu.org. 3600	IN	NS	madras.curryboys.net.
time-travellers.nl.eu.org. 3600	IN	RRSIG	NS 5 4 3600 20100326130704 20100316130704 41228 time-travellers.nl.eu.org. jRFknYbABvZTI90SBejuYFXIDv53P5Ch3kH2QEwT5k0jz/bt2oo7mleX ZZJyj20mk9nSfy76VysDfQsnodFKrg==

;; Query time: 2 msec
;; SERVER: 85.17.60.232#53(85.17.60.232)
;; WHEN: Tue Mar 16 15:17:22 2010
;; MSG SIZE  rcvd: 555


There we go. I'll work on getting axfr-in working later today or
tomorrow.

--
Shane

More information about the bind10-dev mailing list