Send NOTIFY to DNS secondaries #374

New Issue

Open

opened 2026-06-12 13:18:25 +02:00 by felixalb · 0 comments

felixalb commented 2026-06-12 13:18:25 +02:00

Owner

Copy Link

Copy Source

Some friend organizations (NVG, NTNU, Uninett) mirrors/slaves our DNS configurations. Currently, we allow TRANSFERs/axfr from them, so they can fetch, copy and serve entire zones for us.

However, when we update records, instead of waiting for TTL expiry, we can proactively push updates to their DNS servers with NOTIFY, so they immediately get the new zones. Read the nsd documentation, write some notify config, test and push to https://git.pvv.ntnu.no/Drift/PVV-DNS.

The relevant configuration should probably go somewhere near https://git.pvv.ntnu.no/Drift/PVV-DNS/src/branch/main/nsd.conf.nix#L42

Some friend organizations (NVG, NTNU, Uninett) mirrors/slaves our DNS configurations. Currently, we allow TRANSFERs/axfr from them, so they can fetch, copy and serve entire zones for us. However, when we update records, instead of waiting for TTL expiry, we can proactively push updates to their DNS servers with NOTIFY, so they immediately get the new zones. Read the nsd documentation, write some notify config, test and push to https://git.pvv.ntnu.no/Drift/PVV-DNS. The relevant configuration should probably go somewhere near https://git.pvv.ntnu.no/Drift/PVV-DNS/src/branch/main/nsd.conf.nix#L42

felixalb added the enhancementdns labels 2026-06-12 13:18:25 +02:00

felixalb added this to the Kanban project 2026-06-12 13:18:54 +02:00

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

No results found.

Labels

Clear labels

dns

Involves modifications to dvask

exploration

See the galaxy!

gitea

mail

epost nord

new stuff

Adds a new service / new functionality

openstack

NUTN OpenStack, more like closed stack

services

Everything regarding selfhosted services

software

Everything regarding homebrewn software

art

The issue needs someone to be creative

backup

big

No, not bug, **big** - this is gonna take a while

blocked

This issue/PR depends on one or more other issues/PRs

bug

Something is not working, and it's not the shield hero

comprehensive first issue

Do this as your first issue, and learn a lot of things

crash report

Report an oopsie

disputed

kranglefanter

documentation

Documentation changes required

duplicate

This issue or pull request already exists

enhancement

New feature

good first issue

Get your hands dirty with a new project here

logging

networking

TTM4100

nixos

Requires changes to our nixos setup

question

More information is needed

salt

Requires changes to our salt setup

security

Skommel

servers n' hardware

Regards hardware, servers or VMs

simple first issue

Done in nix no time

wontfix

This won't be fixed

No Label dns enhancement

Milestone

No items

No Milestone

Projects

Clear projects

No project Kanban

Assignees

Clear assignees

adriangl (Adrian Gunnar Lauterer) albertba (Albert Bayazidi) alfhj (Alf Helge Jakobsen) bjornoka (Bjornar Orjansen Kaarevik) chrisfjo (Christian Fredrik Johnsen) chrivi (Christoffer Viken) danio (Daniel Lovbrotte Olsen) davidk (David Kaasen) dungby (Dung-Bai Yen) eirikwit (Eirik Witterso) felixalb (Felix Albrigtsen) frero (Fredrik Robertsen) jonmro (Jon Martinus Rodtang) jovre (Jo Vassbotn Remvik) karolds (Karoline Dyve Samuelsen) knuta (Knut Auvor Grythe) krisleri (Kristoffer Longva Eriksen) larshhan (Lars Halvor Hansen) olived (Oliver Didriksen-Kolstad) oysteikt (Oystein Kristoffer Tveit) pederbs (Peder Bergebakken Sundt) root (rot) torsteno (Torstein Nordgård-Hansen) vegardbm (Vegard Bieker Matthey) yorinad (Yorin Anne De Jong)

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: Drift/issues#374