Ping a Specific Port

Question

hardillb

Asked: 2015-12-26 10:37:42 +0800 CST2015-12-26 10:37:42 +0800 CST 2015-12-26 10:37:42 +0800 CST

Using DNSSEC with private TLD

772

I'm playing with DNSSEC for my domain, my DNS server is dual homed (with suitable limits on what can be queried on the public interface) and covers both my public domain, but also a private top level domain (.loc) that I use on my LAN.

I'm struggling to work out how to add a DS record for the .loc domain into my bind9 config. Because it is a Top Level Domain it would normally be listed root servers.

Can I add it to my zone file before the $ORIGIN statement?

1 Answers

Voted

Håkan Lindqvist · Answer 1 · 2015-12-26T11:06:23+08:00

Best Answer

Håkan Lindqvist

2015-12-26T11:06:23+08:002015-12-26T11:06:23+08:00

You can't really add a DS record for something that is not part of the tree, as there is no proper parent/child relationship for such a zone.

It should be possible to use trusted-keys on your internal validating resolvers to override the keys (or lack thereof) specified in DNS.

It's worth noting, however, that just picking an arbitrary TLD and using it internally is not a good practice. Especially so nowadays as the flood-gates have been opened and new public TLDs are registered all the time.

4

Using DNSSEC with private TLD

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?