nsd
nsd copied to clipboard
NLnetLabs
The NLnet Labs Name Server Daemon (NSD) is an authoritative, RFC compliant DNS nameserver.
This allows to have less cryptic errors in scripts, specially automated ones.
I'm running Ubuntu Server 24.04 (LTS), which comes with NSD v4.8.0. The documentation and manpage are stated that: 1. Remote control (aka. `control-enable`) is disabled by default, [see documentation here](https://nsd.docs.nlnetlabs.nl/en/latest/manpages/nsd.conf.html?highlight=control+enable#control)....
I use NSD as a secondary name server on Ubuntu. When NSD is asked to write a zone into the zonefile, for example using `sudo nsd-control write example.com`, journalctl shows...
When piped into, nsd-checkzone cannot open /dev/stdin: ``` 130 ~% echo foobar | nsd-checkzone foo /dev/stdin [2024-09-05 19:50:06.195] nsd-checkzone[828]: error: Cannot open /dev/stdin, no such file zone foo file /dev/stdin...
What it says on the tin. See @anandb-ripencc's comment on #323.
Currently errors related to certificates for Mutual TLS are logged via `DEBUG`. Which means they are not available in release builds. Use a method, like normal log at level 5...
Andreas Schulze provided some feedback on the Mutual TLS feature on the [nsd-users](https://lists.nlnetlabs.nl/pipermail/nsd-users/2024-July/003326.html) mailing list. * I used an IPv6 network for my zone transfer tests and have the impression,...
Andreas Schulze correctly mentioned on the [nsd-users](https://lists.nlnetlabs.nl/pipermail/nsd-users/2024-July/003326.html) mailing list NOTIFY does not yet support Mutual TLS. We should look into supporting TLS connections for outgoing NOTIFY queries.
Andreas Schulze gave some feedback on the mutual tls(-auth) (#185 and #337) feature on the [nsd-users](https://lists.nlnetlabs.nl/pipermail/nsd-users/2024-July/003326.html) mailing list. It appears certificates specified with `client-cert` are read on opening a connection....