Replacing FreeBSD Base System's BIND

Iqbal Aroussi iqbal at aroussi.name
Fri Dec 16 13:14:26 UTC 2011 

Hi Matthew,

thanks a lot for your detailed reply, as I will be using BIND for standard
task. regular SOA for domain names
no domain keys or DNSSEC. I think I'll stick with the version that comes
pre-installed.

Best Regards
*


--
*
*Iqbal Aroussi*
 *+212 665 025 032*
 *iqbal at aroussi.name*





On Fri, Dec 16, 2011 at 12:22, Matthew Seaman <
m.seaman at infracaninophile.co.uk> wrote:

> On 16/12/2011 10:04, Iqbal Aroussi wrote:
> > After installing FreeBSD 8.2, I noticed it's using BIND 9.6 but in ports
> > collection there is newer versions 9.7 and 9.8.
> > I'd like to know if there is any advantages in upgrading BIND to 9.8
> > instead of using the base install version.
> > I'd really appreciate if you can give me some hints of the best way to do
> > it for future needs while retaining all the advantages
> > of the base install configuration.
> > I found this article on the net "
> > http://static.closedsrc.org/articles/dn-articles/bind9.html" but it's
> seems
> > to be outdated
> > *
> >
> > PS: I'm new FreeBSD convert user coming from Linux world :)
>
> It depends what you're using bind for.
>
> If you are serving domains to the public in something more than a
> trivial way, then yes, using the latest ports version is recommended.
>
> Otherwise, there's little to choose one way versus the other.  Using the
> base system bind is less effort, and you'll get automatic patching of
> any significant problems assuming you're keeping the system up to date
> by any of the recognised methods.
>
> Also, if you do choose to use the ports version, to keep things simple,
> I'd recommend not *replacing* the base system bind.  This means you'll
> still be able to use services like freebsd-update(8) without any hassle.
>  Simply install the ports version dns/bind98 under /usr/local, and then
> something like this in your /etc/rc.conf will switch to using that
> version.  Note -- still uses the standard /etc/rc.d/named startup script.
>
> named_enable="YES"
> named_program="/usr/local/sbin/named"
>
> You'll tend to get the base system version of applications like dig(1)
> with this unless you tweak $PATH or some such.  However, there's very
> little difference between the client-side apps in recent bind versions,
> and if you do happen to run into an area where there are significant
> changes, all you need to do is run /usr/local/bin/dig instead.
>
>        Cheers,
>
>        Matthew
>
> --
> Dr Matthew J Seaman MA, D.Phil.                   7 Priory Courtyard
>                                                  Flat 3
> PGP: http://www.infracaninophile.co.uk/pgpkey     Ramsgate
> JID: matthew at infracaninophile.co.uk               Kent, CT11 9PW
>
>

More information about the freebsd-questions mailing list