[Opendnssec-user] zonefetch

Randy Bush randy at psg.com
Tue Jun 5 15:28:26 UTC 2012

>> i wish to sign a zone fetched via zonefetch.xml on a host/interface
>> which is also running an authoritative daemon on port 53.  is the
>> convention to configure a secondary address on that interface and have
>> the [stealth] primary notify that secondary ip address on port 53?
>> should i not be nervous about a dropped notify?
> Would it be an option to use a port != 53?

probably, but puts more of a "configure something strange" burden on the
stealth primary.


More information about the Opendnssec-user mailing list