Is YADIFA better than NSD3?
I have a couple of dozen domain name zones, and I was disappointed in how with NSD3 you have to do a lot of copy-pasting between the zone configurations in order to set up the zones.
The zone files themselves can easily be shared (just use the "@" notation), but it seemed like "notify" and "provide-xfr" had to be repeated for every single zone every single time, causing lots of copy-pasting and somewhat of a headache to maintain or modify later on (especially since Linode DNS slave setup is not centralised, so you have to list each IP individually).
Is YADIFA any better? Also, for a couple of dozen of zones, each having only a couple of records, which server is likely to use the least amount of resources? Or any other IPv6 NS auth server that's worth looking at?
C.
1 Reply
include so that there is less copy pasting. I use nsd3, and I have a lot of zones served by a hidden nsd3 master with the Linode nameservers as slaves. This is what my nsd3 configuration file structure looks like (/usr/local/etc/nsd/):
keys (dir containing dnssec keys and such)
zones (dir containing actual zonefiles)
slaves.conf
nsd.conf
zones.conf
nsd.conf
server:
blah blah blah
include: /usr/local/etc/nsd/zones.conf
zones.conf
zone:
name: examplezone.tld
zonefile: /usr/local/etc/nsd/zones/examplezone.tld.zone
include: /usr/local/etc/nsd/slaves.conf
slaves.conf
#ns1.linode.com
notify: the.ip.addr.here NOKEY
provide-xfr: the.ip.addr.here NOKEY
#ns2.linode.com
notify: the.ip.addr.here NOKEY
provide-xfr: the.ip.addr.here NOKEY
#ns3.linode.com
notify: the.ip.addr.here NOKEY
provide-xfr: the.ip.addr.here NOKEY
#ns4.linode.com
notify: the.ip.addr.here NOKEY
provide-xfr: the.ip.addr.here NOKEY
#ns5.linode.com
notify: the.ip.addr.here NOKEY
provide-xfr: the.ip.addr.here NOKEY
Hopefully this helps. There probably is a better way to do it, but this works for me, and is pretty simple.