From owner-freebsd-questions@FreeBSD.ORG Fri Dec 16 13:14:26 2011 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id AAF7C106566C for ; Fri, 16 Dec 2011 13:14:26 +0000 (UTC) (envelope-from iqbal@aroussi.name) Received: from mail-gx0-f182.google.com (mail-gx0-f182.google.com [209.85.161.182]) by mx1.freebsd.org (Postfix) with ESMTP id 2FF6F8FC08 for ; Fri, 16 Dec 2011 13:14:25 +0000 (UTC) Received: by ggnp1 with SMTP id p1so4204824ggn.13 for ; Fri, 16 Dec 2011 05:14:25 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=aroussi.name; s=google; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; bh=+pMyCn7XrQnavhO9UQTg/K3IcVtHu/JMs4/YuyWoIWk=; b=jBknbUi9XXQ3Q2ls0MWOyVHqdQB7YmCKos4r89ppN/wKx9SBT4nEJssY5HZAPdWvxS kFenBoj3/H8bPs/darx+XhAS8A7HdphoZkTwFNuRx9BK2aYQtdu2y8Jpt/1GEq3VSdd0 DJPmarEVoDpqnS3mRc6v1eerCq9/63qzNMIdQ= Received: by 10.182.216.105 with SMTP id op9mr3834227obc.57.1324041265338; Fri, 16 Dec 2011 05:14:25 -0800 (PST) MIME-Version: 1.0 Received: by 10.182.12.69 with HTTP; Fri, 16 Dec 2011 05:14:04 -0800 (PST) In-Reply-To: <4EEB37EE.6010904@infracaninophile.co.uk> References: <4EEB37EE.6010904@infracaninophile.co.uk> From: Iqbal Aroussi Date: Fri, 16 Dec 2011 13:14:04 +0000 Message-ID: To: Matthew Seaman Content-Type: text/plain; charset=ISO-8859-1 X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-questions@freebsd.org Subject: Re: Replacing FreeBSD Base System's BIND X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Dec 2011 13:14:26 -0000 Hi Matthew, thanks a lot for your detailed reply, as I will be using BIND for standard task. regular SOA for domain names no domain keys or DNSSEC. I think I'll stick with the version that comes pre-installed. Best Regards * -- * *Iqbal Aroussi* *+212 665 025 032* *iqbal@aroussi.name* On Fri, Dec 16, 2011 at 12:22, Matthew Seaman < m.seaman@infracaninophile.co.uk> wrote: > On 16/12/2011 10:04, Iqbal Aroussi wrote: > > After installing FreeBSD 8.2, I noticed it's using BIND 9.6 but in ports > > collection there is newer versions 9.7 and 9.8. > > I'd like to know if there is any advantages in upgrading BIND to 9.8 > > instead of using the base install version. > > I'd really appreciate if you can give me some hints of the best way to do > > it for future needs while retaining all the advantages > > of the base install configuration. > > I found this article on the net " > > http://static.closedsrc.org/articles/dn-articles/bind9.html" but it's > seems > > to be outdated > > * > > > > PS: I'm new FreeBSD convert user coming from Linux world :) > > It depends what you're using bind for. > > If you are serving domains to the public in something more than a > trivial way, then yes, using the latest ports version is recommended. > > Otherwise, there's little to choose one way versus the other. Using the > base system bind is less effort, and you'll get automatic patching of > any significant problems assuming you're keeping the system up to date > by any of the recognised methods. > > Also, if you do choose to use the ports version, to keep things simple, > I'd recommend not *replacing* the base system bind. This means you'll > still be able to use services like freebsd-update(8) without any hassle. > Simply install the ports version dns/bind98 under /usr/local, and then > something like this in your /etc/rc.conf will switch to using that > version. Note -- still uses the standard /etc/rc.d/named startup script. > > named_enable="YES" > named_program="/usr/local/sbin/named" > > You'll tend to get the base system version of applications like dig(1) > with this unless you tweak $PATH or some such. However, there's very > little difference between the client-side apps in recent bind versions, > and if you do happen to run into an area where there are significant > changes, all you need to do is run /usr/local/bin/dig instead. > > Cheers, > > Matthew > > -- > Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard > Flat 3 > PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate > JID: matthew@infracaninophile.co.uk Kent, CT11 9PW > >