[Opendnssec-develop] Inbound AXFR design

Ray.Bellis at nominet.org.uk Ray.Bellis at nominet.org.uk
Tue Sep 15 12:40:25 UTC 2009


> New signer tool, axfr_listener runs as daemon:
> - - Listen to NOTIFY messages.
> - - If no input file exists or if a NOTIFY is received from a master:
>   - do axfr request (nsd-xfer)
>   - write result back to axfr directory
>   - execute signer_engine_cli update

Are there any thoughts as to whether this daemon needs to honour the 
"refresh" and "expiry" times from the SOA, such that it periodically polls 
the master for the SOA even if it hasn't received a NOTIFY?

If it hasn't already been decided, consideration may need to be given as 
to whether the NOTIFY channel (and hence the axfr_listener) requires TSIG 
support.

Ray
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opendnssec.org/pipermail/opendnssec-develop/attachments/20090915/411cdfd9/attachment.htm>


More information about the Opendnssec-develop mailing list