From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id 944E313888F for ; Sun, 11 Oct 2015 08:43:57 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 926EE21C013; Sun, 11 Oct 2015 08:43:44 +0000 (UTC) Received: from mail-wi0-f176.google.com (mail-wi0-f176.google.com [209.85.212.176]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 80E7321C005 for ; Sun, 11 Oct 2015 08:43:43 +0000 (UTC) Received: by wicgb1 with SMTP id gb1so115600012wic.1 for ; Sun, 11 Oct 2015 01:43:42 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=subject:to:references:from:message-id:date:user-agent:mime-version :in-reply-to:content-type:content-transfer-encoding; bh=8y8gie4KfkstiepV4NBax1PvrMi+zDEkcukP8jbcnPs=; b=uV1jAllzsZ22Waqx8c7ra7yWTl3jJI/z9xaO63Y4H/B3uwCCmsXQcn69GMeB3O6AQz kEaQrQdtr7GFCYdAPfe1Y5Zc+Y4tVAyvhjuXwLZFu/hnjnNbeJuKctjVUxMkCBPXR9/H kAqJZtU8wL1ans+efiR6dRDtoHRaYTwac48prVtJZ2sADnLK/CzNwkkX50FK6dPQWMrY jet90mwrb8uvloKhSCP9Ab+t1Vb4/tdnqtSG3V9/ZLZFkXd/xA5bEL7ViB8855kTYR56 J6pqaBCD96Chqt0J03d6+Chw8441P7FfiJl4l+Nlht9OedxusIoSZTBwTPEtHALpTNkK +Pmw== X-Received: by 10.194.172.1 with SMTP id ay1mr551484wjc.101.1444553022282; Sun, 11 Oct 2015 01:43:42 -0700 (PDT) Received: from [172.20.0.41] ([105.210.54.110]) by smtp.googlemail.com with ESMTPSA id hd1sm6019673wib.5.2015.10.11.01.43.40 for (version=TLSv1/SSLv3 cipher=OTHER); Sun, 11 Oct 2015 01:43:41 -0700 (PDT) Subject: Re: [gentoo-user] DNS server packages To: gentoo-user@lists.gentoo.org References: <561A114B.9020701@gmail.com> <1844843.IpbL7Lrp59@andromeda> From: Alan McKinnon Message-ID: <561A2115.6050707@gmail.com> Date: Sun, 11 Oct 2015 10:43:01 +0200 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.3.0 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 In-Reply-To: <1844843.IpbL7Lrp59@andromeda> Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: 7bit X-Archives-Salt: 973d6578-8b2b-464b-8f13-e446c21b1667 X-Archives-Hash: eef736cb4a1c01b7ec9de794d80d4d55 On 11/10/2015 10:18, J. Roeleveld wrote: > On Sunday, October 11, 2015 09:35:39 AM Alan McKinnon wrote: >> On 11/10/2015 04:13, James wrote: >>> Howdy, >>> >>> So I now have (5) statics and a fiber feed, with lots of room to grow. >>> >>> I need to setup DNS primary/secondary systems on gentoo. So right now I'm >>> looking for a suggested list of packages to install with Bind, iptables >>> and >>> DNSSEC-tools as these (2) gentoo dns servers will only run the minimum >>> packages to operate securely? >> >> auth or cache? >> >> First of all, bind is a pain to use. Reason: it's actually a reference >> implementation that as usual got forced into production use. It's slower >> than it could be because it deals with every possible corner case per RFC. >> >> As an auth server (few queries) it's OK >> As a cache (many queries), there are better servers out there. I prefer >> unbound. > > As it is related to this thread, which server would people recommend when the > DNS records are to be found in a database? > Reason I am asking: > I want to set up a lab environment with VMs coming and going. > These all need to have hostname/mac/ip stored and configured correctly. I don't understand. mac & IP go together in dhcp and arp hostname & IP go together in DNS & /etc/hosts hostname & mac & ip go together nowhere > Till now, I basically preconfigured Bind and DHCPd for a bunch of them. > I would prefer to be able to specify a hostname for this, but writing > something that keeps changing the configuration and keeping it in-sync with a > database is a bit overkill. arp updates when the host comes on-line dhcp & dns are separate from individual VMs, populating those services is part of provisioning them. Perhaps detail more what you are trying to accomplish? -- Alan McKinnon alan.mckinnon@gmail.com