From owner-freebsd-ports@freebsd.org  Sun Apr 16 05:28:01 2017
Return-Path: <owner-freebsd-ports@freebsd.org>
Delivered-To: freebsd-ports@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 3D12FD40B9C
 for <freebsd-ports@mailman.ysv.freebsd.org>;
 Sun, 16 Apr 2017 05:28:01 +0000 (UTC)
 (envelope-from kob6558@gmail.com)
Received: from mailman.ysv.freebsd.org (unknown [127.0.1.3])
 by mx1.freebsd.org (Postfix) with ESMTP id 1AF00CD3
 for <freebsd-ports@freebsd.org>; Sun, 16 Apr 2017 05:28:01 +0000 (UTC)
 (envelope-from kob6558@gmail.com)
Received: by mailman.ysv.freebsd.org (Postfix)
 id 1A3C4D40B9B; Sun, 16 Apr 2017 05:28:01 +0000 (UTC)
Delivered-To: ports@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 19D26D40B9A
 for <ports@mailman.ysv.freebsd.org>; Sun, 16 Apr 2017 05:28:01 +0000 (UTC)
 (envelope-from kob6558@gmail.com)
Received: from mail-pf0-x22b.google.com (mail-pf0-x22b.google.com
 [IPv6:2607:f8b0:400e:c00::22b])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id E80DCCD2;
 Sun, 16 Apr 2017 05:28:00 +0000 (UTC)
 (envelope-from kob6558@gmail.com)
Received: by mail-pf0-x22b.google.com with SMTP id s16so54304769pfs.0;
 Sat, 15 Apr 2017 22:28:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025;
 h=mime-version:sender:in-reply-to:references:from:date:message-id
 :subject:to:cc;
 bh=3JEuv8Bpkn7kCbB44bdWA8FAZ4w/sTNeNZAlYVzAszk=;
 b=U3om4OCfQx/HKudtJ1aSZcDnQUK7MN3AKPv2RKppHkYlAOEENayo3x4A9HzEI5hv1Q
 3XPWThmnDz/yEnMM3B7qr5Wh7NPqxC+3Kw9bOdUU/CaY8Dz7z9w8h+9jtTtlbj8Uug3Y
 9mBntF47YY9r+HGgmckQaQeoR4jQ/OcWVuEDaAhx8DYbDtQYkhlwWGRtMHYRQETuI/8X
 vfG+1Xo3YMaeBJBih8DMKBowIW76nV3fwnaGJQ7pF4PotCNR3QviIyf1jbqGUXbhQrOk
 nHymez2uyhFUZ5hA9wDKbCgTZFknIE5+iCo50MM8JtPL/u/PdYs8XV7Vr65PuZZyyf+1
 /C5Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:mime-version:sender:in-reply-to:references:from
 :date:message-id:subject:to:cc;
 bh=3JEuv8Bpkn7kCbB44bdWA8FAZ4w/sTNeNZAlYVzAszk=;
 b=TT5mxpD5DUvsBK8f6RTGMV13yMvRFaqcVMqjZNqyRV4ETHtIMsPqe2KjM5J1iQMiiZ
 tA2XQrRx4o7rq+PkkeX9I+bvHLtmsdZWUqYO5JKUiem5JqbERJzW9kCkfG23nM9V9BfY
 ffGSfJQ8usQ9hVHuzfaVp+A0n5g1aaAVV22Ag0yFf/hcf4WKctSW0xZ8LtCIgJXkEFg8
 lfe4CdJPDwePLMFKKzLBEHrLRbf+eHmWRhscD/o232k8zNUbhr2+e9SbL2ZX9iwY+2C+
 FXoCUzfDknlTaetlKD7/nQIPQ63O51HCvF//usohhEUc/GtUeoTsNaWpKVjJbmkhiakR
 DqMw==
X-Gm-Message-State: AN3rC/4jmtjtuYV3QEXDquJcvc97n2GiUu+/dXFPHHpJS0FMyKk8FkV4
 c4SD5SH0gdrVOVX6cpCGJHESd2GpGA==
X-Received: by 10.84.175.67 with SMTP id s61mr7425128plb.126.1492320480487;
 Sat, 15 Apr 2017 22:28:00 -0700 (PDT)
MIME-Version: 1.0
Sender: kob6558@gmail.com
Received: by 10.100.138.15 with HTTP; Sat, 15 Apr 2017 22:27:59 -0700 (PDT)
In-Reply-To: <db0f672e-d457-0e9b-cdb7-40576db8aaac@m5p.com>
References: <85573e9f-c0e7-1e30-6f95-2fec13e0ac26@gibfest.dk>
 <db0f672e-d457-0e9b-cdb7-40576db8aaac@m5p.com>
From: Kevin Oberman <rkoberman@gmail.com>
Date: Sat, 15 Apr 2017 22:27:59 -0700
X-Google-Sender-Auth: TxsGKzCYAmM95Dha5MHIKcVQqns
Message-ID: <CAN6yY1u=CgF-=DWj9rF3k0Zo=cMT26_ozW7x76FCXdMFWKCpDg@mail.gmail.com>
Subject: Re: default named.conf in bind ports and slaving from f-root
To: George Mitchell <george+freebsd@m5p.com>
Cc: Thomas Steen Rasmussen <thomas@gibfest.dk>,
 "ports@FreeBSD.org" <ports@freebsd.org>, Mathieu Arnold <mat@freebsd.org>
Content-Type: text/plain; charset=UTF-8
X-Content-Filtered-By: Mailman/MimeDel 2.1.23
X-BeenThere: freebsd-ports@freebsd.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: Porting software to FreeBSD <freebsd-ports.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-ports>,
 <mailto:freebsd-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports/>
List-Post: <mailto:freebsd-ports@freebsd.org>
List-Help: <mailto:freebsd-ports-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
 <mailto:freebsd-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 16 Apr 2017 05:28:01 -0000

On Sat, Apr 15, 2017 at 7:02 PM, George Mitchell <george+freebsd@m5p.com>
wrote:

> On 04/14/17 08:37, Thomas Steen Rasmussen wrote:
> > Hello,
> >
> > Cloudflare deployed a bunch (74 apparently) of new f-root dns
> > servers, which do not permit AXFR like the other f-root instances
> > do.
> > [...]
> > A good alternative could be to change named.conf to use
> > lax.xfr.dns.icann.org and iad.xfr.dns.icann.org as
> > described in [2]. My named.conf now looks like this:
> > [...]
>
> Does this issue affect me if I use type "hint" for zone "." like this:
>
> zone "." { type hint; file "/usr/local/etc/namedb/named.root"; };
>
> -- George
>

It does not have anything to do with "normal" operations using a hints
file. This only has an impact on those who transfer zones from a root
server. Many of the root servers do not allow AXFRs to reduce load.
--
Kevin Oberman, Part time kid herder and retired Network Engineer
E-mail: rkoberman@gmail.com
PGP Fingerprint: D03FB98AFA78E3B78C1694B318AB39EF1B055683