Date: Mon, 1 Mar 2004 21:12:51 +0000 From: Matthew Seaman <m.seaman@infracaninophile.co.uk> To: Jason Williams <jwilliams@courtesymortgage.com> Cc: freebsd-questions@freebsd.org Subject: Re: Questions regarding BIND Message-ID: <20040301211251.GA4811@happy-idiot-talk.infracaninophile.co.uk> In-Reply-To: <5.2.1.1.0.20040301120148.00b0d390@pop.courtesymortgage.com> References: <5.2.1.1.0.20040301120148.00b0d390@pop.courtesymortgage.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--3MwIy2ne0vdjdPXF
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On Mon, Mar 01, 2004 at 12:07:39PM -0800, Jason Williams wrote:
> I'm using FreeBSD 4.9 and I have cvsup'd the ports and src tree. I made t=
he=20
> world, and now im looking to implement BIND.
> So the first question is, what is the best way to upgrade BIND? Would it =
be=20
> better to use the ports version, or to grab the source?
The easiest thing to do is just install from the dns/bind9 port. That
will get you the latest release from the bind9 series.
If you hunt through the archives of this list, you'll see a lot of
advice about defining 'NO_BIND' in /etc/make.conf and installing the
port with 'PORT_REPLACES_BASE_BIND9=3Dyes' in the make flags. While you
can do that, I personally think it's much better just to install under
the default perfix and leave the system version of bind alone. That
means you'll end up with /usr/bin/dig being the version from bind8,
and /usr/local/bin/dig being the version from bind9, but it's
trivially easy to set up aliases or modify your path so you run your
favourite version by default.
=20
> Secondly, is regarding my setup. This server will not be setup to be publ=
ic=20
> accessible. It is for our internal LAN.
> With that in mind, are there any How-to's for setting up BIND or getting=
=20
> started documents?
It depends how complicated your setup is. If you have absolutely no
connection to the internet, you'll have to supply your own root domain
and delegate yourself. If your nameserver can see the internet
servers, then you can just set up a private zone by configuring your
server with the zone data: so long as the clients ask that machine for
the data it is authoritative for, it will answer without checking the
delegation from the root.
> Also, is the book DNS and BIND (the O'Reilly book) pretty good? Worth=20
> buying..i may swing down to my local bookstore and buy it.
Absolutely recommended. Explains very clearly everything you need to
know to complete this task.
Cheers,
Matthew
--=20
Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks
Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey Marlow
Tel: +44 1628 476614 Bucks., SL7 1TH UK
--3MwIy2ne0vdjdPXF
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (FreeBSD)
iD8DBQFAQ6dTdtESqEQa7a0RAjzCAJ0W3DlIKywgM8voitS+/dckPliEUQCeOS9p
afA2Rbal1PGA9ERRJ/LeYrw=
=7oV6
-----END PGP SIGNATURE-----
--3MwIy2ne0vdjdPXF--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040301211251.GA4811>