djbdns patches

mike_tcis · December 15, 2004, 12:17:28 PM

What patches are folks applying to djbdns? It seems that there are several patches necessary to fix "issues" with stock djbdns:

http://homepages.tesco.net./~J.deBoynePollard/FGA/djbdns-problems.html" target="_blank"> http://homepages.tesco.net./~J.deBoynePollard/FGA/djbdns-pro blems.html

This guy seems to have rolled most of the common patches into a big uber-patch:

http://martin.paljak.pri.ee/dns/" target="_blank">http://martin.paljak.pri.ee/dns/

--Mike

matt · December 16, 2004, 08:32:58 AM

Why are you so anxious to patch djbdns? Have you had a specific problem with it? I didn't think so.

mike_tcis · December 16, 2004, 09:22:51 AM

matt wrote on Thu, 16 December 2004 09:32

Why are you so anxious to patch djbdns? Have you had a specific problem with it? I didn't think so.

The primary reason I applied the patch was to get dnscache and tinydns listening on multiple IPs. Yes, I know the DJB approved (tm) way is to run multiple instances of the daemons, but that just seems silly (IMHO).

We have acquired several ISPs over the years (and renumbered ourselves into ARIN space a few years back) and have multiple resolver IPs hardcoded into customer T1/DSL/etc routers/machines, so we have the need for about 12 different IPs to be serviced by dnscache.

--Mike

matt · December 16, 2004, 09:35:08 AM

OK, I stand corrected.

I didn't mean to state that there are no valid reasons for patching djbdns, just that unless you have a specific reason for it, then don't bother.

For example, the only patches I've ever used were the one I had written for me so that tinydns would read from two data.cdb files, and the multiple IP patch, for reasons similar to what you cite. The tinydns multiple data patch is only useful in certain environments (like when you have hundreds of thousands of zones to deal with) and I ended up find a better way to run my multiple dnscaches without the multi-IP patch.

http://www.tnpi.biz/internet/dns/dnscache-scaling.shtml" target="_blank">http://www.tnpi.biz/internet/dns/dnscache-scaling.shtml

Matt

mike_tcis · December 16, 2004, 10:06:28 AM

This patch is particularly interesting:

http://dustman.net/andy/djbware/tinydns-datadir/" target="_blank">http://dustman.net/andy/djbware/tinydns-datadir/

Of course, I suspect to really use it effectively that NicTool would have to be modified to write the data files out in whatever structure you define. I can see where this would make things easier to manage and more scalable (e.g. only write/update data files that have changed), but I can also see where it would add a bit of complexity as well.

--Mike

etherealnet · March 24, 2005, 02:01:58 PM

Is the tinydns patch so it read from two data.cdb files available anywhere ?

matt · March 24, 2005, 02:09:50 PM

Unfortunately not. That patch was written by a programmer in the employ of one of my former employers. Unlike myself, he DID sign the proprietary rights policy of the employer and thus, they own the rights to that work and I can't give it away.

etherealnet · March 24, 2005, 03:45:48 PM

Lol, smart man..wish he had been so smart, would be a great thing to have.