Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [bind]

BIND is a free, open source software implementation of the Domain Name System (DNS) protocols. The name BIND stands for "Berkeley Internet Name Domain", because the software originated in the early 1980s at the University of California at Berkeley. BIND is currently maintained and developed by the Internet Systems Consortium, a non-profit public benefit corporation with a mission to support a free and open internet.

The DNS protocols are part of the core Internet standards. They specify the process by which one computer can find another computer on the basis of its name. What it means to say "BIND is an implementation of the DNS protocols" is that the BIND software distribution contains all of the software needed both to ask name service questions and to answer such questions.

The BIND software distribution contains several parts:

  • A Domain Name System server. This is a program called "named", which is pronounced "name-dee" and stands for "name daemon". It answers questions that are sent to it, following the rules specified in the DNS protocol standards. You can provide DNS service on the internet by installing this software on a server computer and giving it correct information about your domain names.
  • Utility programs used in the management of a nameserver, including programs to control operation of the server, to cryptographically sign domain resource records for use with DNSSEC, assist in key management and rollover, and perform other functions.
  • A Domain Name System "resolver library". A "resolver" is a program that resolves questions about names by sending those questions to appropriate servers and responding appropriately to the servers' replies. A "resolver library" is a collection of software components that a programmer can add to software being developed, which will give that software the ability to resolve names. For example, a programmer who was programming a new web browser does not need to create the part of it that looks up names in DNS; he or she can plug in the resolver library and then send questions to the library software components. This saves time (the programmer does not need to re-invent that particular wheel) and helps ensure that the new browser correctly follows the DNS standards.
  • Software tools for testing servers. These are the tools that we use for testing, and we include them in the distribution in case you would like to do your own testing, perhaps to make sure your server configuration is working properly.
2274 questions
61
votes
8 answers

Overriding some DNS entries in BIND for internal networks

I have an internal network with a DNS server running BIND, connected to the internet through a single gateway. My domain "example.com" is managed by an external DNS provider. Some of the entries in that domain, say "host1.example.com" and…
Remy Blank
  • 1,995
  • 3
  • 15
  • 11
53
votes
4 answers

What does the "IN" mean in a zone file?

Sometimes a record is listed as www IN A 192.168.1.1 and sometimes it is listed as www A 192.168.1.1. What is the purpose of the IN and when is it required/not required?
Tabitha
  • 1,005
  • 1
  • 8
  • 14
52
votes
4 answers

Bind to ports less than 1024 without root access

I would like to run applications I'm working on that binds to port numbers less than 1000 without requiring root access. I'm using Linux Mint and have root access to set it up. I would ideally like to be able to do it over SSH. Also happy hear if…
tarn
  • 625
  • 1
  • 5
  • 7
43
votes
10 answers

Run antivirus software on linux DNS servers. Does it make sense?

During a recent audit we were requested to install antivirus software on our DNS servers that are running linux (bind9). The servers were not compromised during the penetration testing but this was one of the recommendations given. Usually linux…
John Dimitriou
  • 533
  • 4
  • 5
40
votes
8 answers

DNS: trailing periods

When I edit my bind dns records, I need to add a trailing period for it to work. What is the point of this? How come when I use everydns.net, they do not require me to add a trailing period? Is this an implementation quirk?
Unknown
  • 1,685
  • 6
  • 20
  • 27
34
votes
3 answers

What is DNS Delegation?

In an answer to my previous question I noticed these lines: It's normally this last stage of delegation that is broken with most home user setups. They have gone through the process of buying a domain with a registrar/service provider, but have…
Nishan
  • 475
  • 1
  • 4
  • 8
28
votes
6 answers

Why aren't our DNS records propagating out into the internet?

We run the name servers for our domain on our network. We use bind/named. Lets call the domain example.com. One thing I've noticed recently, when I goto a website like http://network-tools.com and run queries on URLs defined on our name servers, I…
Jake Wilson
  • 8,814
  • 29
  • 97
  • 125
27
votes
7 answers

(network unreachable) error in my server logs

I'm getting lots of network unreachable lines in my Centos' messages log file. They seem they can't resolve to certain addresses which I do not have any ideas why my server has to resolve to them in the first place. Could anyone let me know the…
developer
  • 555
  • 2
  • 8
  • 16
25
votes
2 answers

SOA and Primary NS record (DNS)

The brunt of the question is this -- What is the relationship between the primary nameserver specified in the SOA record and the nameservers specified in the NS records. How are these things linked? When I query most websites, I get…
scraft3613
  • 490
  • 1
  • 5
  • 12
24
votes
4 answers

How to properly configure BIND forward zone for an internal DNS server?

I have: internal DNS server ns1.internal with IP 192.168.0.4. external DNS server with an external TLD mydns.example.com and internal IP 192.168.0.5. It's accessible both from the Internet (via a static NAT rule) and from the local network. I'm…
vadipp
  • 479
  • 2
  • 4
  • 12
24
votes
3 answers

Difference between Named and BIND

Can someone explain to me what the exact difference is between named and BIND?
Saif Bechan
  • 10,960
  • 10
  • 42
  • 63
22
votes
1 answer

My DNS server is pushing 20mbps, why?

I am running a DNS server in EC2, and it was pushing about 20mbps yesterday when I checked my billing dashboard and found 1.86 TB of used data this month. That's a big bill for my small project lab. I never noticed performance drops and didn't…
Russell Anthony
  • 223
  • 1
  • 5
20
votes
1 answer

When I have a * entry in my zone file, how can I treat a specific name as nonexistent?

On our main domain, example.com we're hosting a lot of websites. So we just added a * A/AAAA record to our zone and pointed it at our webserver. Sadly, this also causes Outlook to constantly hammer our webserver, because now autodiscover.example.com…
Oliver Salzburg
  • 4,635
  • 17
  • 55
  • 82
20
votes
11 answers

djbdns vs bind

I'm a newbie who wants to learn how to set up a DNS nameserver. Should I use djbdns, BIND, or something else? Current network requirements include subdomain support, SSL, and mail service, all on very light traffic. I'd like a solution that could…
chernevik
  • 725
  • 3
  • 10
  • 19
20
votes
4 answers

Wildcard DNS with BIND

I'm trying to setup BIND so that it catches any and all requests made to it, and points them to a specific set of NS servers, and a specific A record. I have around 500 domains, and I'm adding new ones at the rate of 10-15 a day, so I don't want to…
Jon Wu
  • 203
  • 1
  • 2
  • 4
1
2 3
99 100