BIND 8 for NT

· Overview, Support, Keys
· Downloads
· Installing
· Configuration
· Operations
@ Upgrade from BIND4
· Run a Public DNS
· Is My Reverse Perverse?
· Is My DNS a Mess?
· BIND News
· CERT Advisory: BIND!
· Resources
· Bugs in BIND8 for NT

Other Sites by Len Conrad

· IMGate
A site that shows how to build and configure, using Open Source software (FreeBSD and postfix), relay-only mail hubs to add aggressive anti-spam defenses and increased reliabiilty and througput to Imail sites. Note that the IMGate approach is not dependent on Ipswitch Imail and so is applicable to any other brand of mail server.

Copywright agreement:

The relationship between the topic of DNS and BIND and the images of a cricket and a locust are trademarks of O'Reilly & Associates, Inc. Used with permission.

· Mail: Len Conrad

Upgrading from BIND4 to BIND8

Thanks to Barry Margolin for the info on this page.

Use named-bootconf to convert the named.boot file to named.conf format.

Notes from Len:
- named-bootconf.pl and named-bootconf.sh are found in bind-src.zip on our Download page
- An excellent and free PERL interperter for Win32 is available from ActiveState.
BIND 4-to-8 Upgrade Pitfalls:
BIND 8.2.2 strictly enforces the "no CNAME and other data" rule, whereas previous releases just warned.
BIND 4.9.5 and up default to "check-names primary fail", so names with underscores will be rejected. You can change the check-names option to relax this if necessary.
BIND 8.2.2 requires you to set the default TTL using the $TTL directive, rather than using the MinTTL field in the SOA record (but if there's no $TTL directive it will fall back to the old behavior and log a warning).
BIND 8 uses a dynamic source port for recursive queries, rather than port 53. If your firewall doesn't allow random high UDP ports back into the nameserver, you either have to change the firewall configuration or use the "query-source" option (I believe the named.conf that the above script creates has this as a commented-out line -- just uncomment it).