[dns-operations] Minimalistic DNS server for SOA and AXFR
Anand Buddhdev
anandb at ripe.net
Tue Jul 17 23:56:23 UTC 2012
On 17/07/2012 21:38, Jaap Akkerhuis wrote:
Hi Bert,
> Anand,
>
> Sorry to be obtuse, and of course, nothing on the internet needs a reason.
>
> But inquiring minds want to know. WHY are you inventing yet another
> nameserver when we have so many fine ones available already?
>
> As far as I understood he wanted something which would only provide AXFR,
> not a full blown server.
Jaap is correct. I only need to provide AXFR, and nothing else.
Since enquiring minds want to know: I'm doing some work on the RIPE NCC
reverse DNS provisioning system. At the moment, it works by reading in
DNS information from different sources, doing the necessary checks, and
then injecting the DNS information into a BIND view. This BIND view then
provides AXFR to a pair of DNSSEC signers, where the zones are signed
and AXFR'ed out to publication servers.
In this chain, the BIND view is used merely for accepting dynamic
updates, maintaining zones, and providing AXFR. If I can provide AXFR
out of the provisioning system directly to the signers, I don't need the
intermediate BIND view.
I know PowerDNS can do funky things, but since my needs are very simple,
I prefer to just code in the AXFR support into the provisioning code. In
fact, I did so earlier today, and tested it, and it appears to work as I
expect. It's not even very complicated, especially since I'm not writing
for any generic AXFR client, but for clients under my control.
As Duane said in another message, it's a great learning experience too.
Regards,
Anand
More information about the dns-operations
mailing list