The BIND DNS suite with updated DNSSEC and DNS64 Maintained by:dougb@FreeBSD.org Port Added: 28 Jan 2012 05:28:38 Also Listed In:netipv6 License: not specified in port
BIND version 9 is a major rewrite of nearly all aspects of the underlying BIND
architecture. Some of the important features of BIND 9 are:
DNS Security: DNSSEC (signed zones), TSIG (signed DNS requests)
IP version 6: Answers DNS queries on IPv6 sockets, IPv6 resource records (AAAA)
Experimental IPv6 Resolver Library
DNS Protocol Enhancements: IXFR, DDNS, Notify, EDNS0
Improved standards conformance
Views: One server process can provide multiple "views" of the DNS namespace,
e.g. an "inside" view to certain clients, and an "outside" view to others.
Multiprocessor Support
BIND 9.9 includes a number of changes from BIND 9.8 and earlier releases,
including:
NXDOMAIN redirection
Improved startup and reconfiguration time, especially with large
numbers of authoritative zones
New "inline-signing" option, allows named to sign zones completely
transparently, including static zones
Many other new features, especially for DNSSEC
See the CHANGES file for more information on features.
WWW: https://www.isc.org/software/bind
To install the port:cd /usr/ports/dns/bind99/ && make install clean To add the package:pkg_add -r bind99
Configuration Options
===> The following configuration options are available for bind99-9.9.1:
SSL=on (default) "Building without OpenSSL removes DNSSEC"
LINKS=on (default) "Create conf file symlinks in /usr/local"
XML=on (default) "Support for xml statistics output"
IDN=off (default) "Add IDN support to dig, host, etc."
REPLACE_BASE=off (default) "Replace base BIND with this version"
LARGE_FILE=off (default) "64-bit file support"
SIGCHASE=off (default) "dig/host/nslookup will do DNSSEC validation"
IPV6=off (default) "IPv6 Support (autodetected by default)"
THREADS=on (default) "Compile with thread support"
DLZ_POSTGRESQL=off (default) "DLZ Postgres driver"
DLZ_MYSQL=off (default) "DLZ MySQL driver (single-threaded BIND)"
DLZ_BDB=off (default) "DLZ BDB driver"
DLZ_LDAP=off (default) "DLZ LDAP driver"
DLZ_FILESYSTEM=off (default) "DLZ filesystem driver"
DLZ_STUB=off (default) "DLZ stub driver"
===> Use 'make config' to modify these settings
Upgrade to BIND versions 9.9.1, 9.8.3, 9.7.6, and 9.6-ESV-R7,
the latest from ISC. These versions all contain the following:
Feature Change
* BIND now recognizes the TLSA resource record type, created to
support IETF DANE (DNS-based Authentication of Named Entities)
[RT #28989]
Bug Fix
* The locking strategy around the handling of iterative queries
has been tuned to reduce unnecessary contention in a multi-
threaded environment.
Each version also contains other critical bug fixes.
All BIND users are encouraged to upgrade to these latest versions.
By popular demand add a port for the newest BIND branch, 9.9.x. This will
stay as a -devel until it's formally released, which should be soon'ish.
BIND 9.9 includes a number of changes from BIND 9.8 and earlier releases,
including:
NXDOMAIN redirection
Improved startup and reconfiguration time, especially with large
numbers of authoritative zones
New "inline-signing" option, allows named to sign zones completely
transparently, including static zones
Many other new features, especially for DNSSEC
See the CHANGES file for more information on features.
https://kb.isc.org/article/AA-00592
