[Opendnssec-develop] Inbound AXFR design
Ray.Bellis at nominet.org.uk
Ray.Bellis at nominet.org.uk
Tue Sep 15 12:40:25 UTC 2009
> New signer tool, axfr_listener runs as daemon:
> - - Listen to NOTIFY messages.
> - - If no input file exists or if a NOTIFY is received from a master:
> - do axfr request (nsd-xfer)
> - write result back to axfr directory
> - execute signer_engine_cli update
Are there any thoughts as to whether this daemon needs to honour the
"refresh" and "expiry" times from the SOA, such that it periodically polls
the master for the SOA even if it hasn't received a NOTIFY?
If it hasn't already been decided, consideration may need to be given as
to whether the NOTIFY channel (and hence the axfr_listener) requires TSIG
support.
Ray
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opendnssec.org/pipermail/opendnssec-develop/attachments/20090915/411cdfd9/attachment.htm>
More information about the Opendnssec-develop
mailing list