nanog mailing list archives

Re: updating & checking DNS zone files

From: Jeroen Massar <jeroen () unfix org>
Date: Sun, 06 Jul 2008 21:45:13 +0200

Jay R. Ashworth wrote:

On Sat, Jul 05, 2008 at 04:07:28PM -0500, travis+ml-nanog () subspacefield org wrote:

Apart from using Bernstein's tinydns, anyone have any scripts
for looking for problems in zone files or for incrementing the
serial number reliably?


Well, all my networks are tiny, and I've only recently started having
to stir DNS zones again, but named-checkconf seems to give good hints.

There are also some public-facing things at domtools.com, and of course
dnsreport.com... but I see DNSreport went for-pay.


http://www.ZoneCheck.fr

Of course not one is the full-check, thus you'll have to combine acouple of them or write your own check.

I (well the script ;) also check the delegations from the root down andverify that all the nameservers in that tree think that they are thesame SOA-wise and delegation-wise. You'll be astonished how often thingsbreak up in the tree that can cause rather odd and not easily foundfailures otherwise.


Greets,
 Jeroen

Attachment: signature.asc
Description: OpenPGP digital signature

Current thread:

updating & checking DNS zone files travis+ml-nanog (Jul 05)
- Re: updating & checking DNS zone files Luke S Crawford (Jul 05)
- Re: updating & checking DNS zone files jbratton (Jul 05)
- Message not available
  - Re: updating & checking DNS zone files Paul Bertain (Jul 05)
    - Re: updating & checking DNS zone files Stephane Bortzmeyer (Jul 08)
- Re: updating & checking DNS zone files Jay R. Ashworth (Jul 06)
  - dns-operations@ mailing list? (Re: updating & checking DNS zone files) Paul Vixie (Jul 06)
  - Re: updating & checking DNS zone files Jeroen Massar (Jul 06)
- Re: updating & checking DNS zone files Jo Rhett (Jul 09)