[dns-operations] differ
cstamas+dns at cstamas.hu
cstamas+dns at cstamas.hu
Mon Nov 13 12:10:24 UTC 2023
On 11/13/23 12:35, cstamas+dns at cstamas.hu wrote:
> hi,
> Nov 13, 2023 11:26:15 Matthew Richardson <matthew-l at itconsult.co.uk>:
>
[...]
>> which runs as a daily job via cron. Obviously, this only does the
>> recording into a git repo, but does not do any alerting
> For alerting and stopping a zone before XFR to secondaries nsd verifier functionality can be used. A script can store a previous value and allow new zones only if the tests (supplied by you) are met e.g. the size of the zone should change x% at max, not more.
> Bump in the wire verifier.
Also for those who are using opendnssec - "NotifyCommand" is a place where one can hook in something similar.
https://www.opendnssec.org/wp-content/uploads/2009/06/opendnssec-start-guide.pdf#subsection.2.1
Regards,
Tamás
More information about the dns-operations
mailing list