BIND version 9 is a major rewrite of nearly all aspects of the underlying BIND
architecture. Some of the important features of BIND 9 are:
DNS Security: DNSSEC (signed zones), TSIG (signed DNS requests)
IP version 6: Answers DNS queries on IPv6 sockets, IPv6 resource records (AAAA)
Experimental IPv6 Resolver Library
DNS Protocol Enhancements: IXFR, DDNS, Notify, EDNS0
Improved standards conformance
Views: One server process can provide multiple "views" of the DNS namespace,
e.g. an "inside" view to certain clients, and an "outside" view to others.
Multiprocessor Support
See the CHANGES file for more information on new features.
The dnsreflector daemon listens for DNS queries on a local UDP port
and answers with records pointing back to localhost. Combined with
packet filter pf(4) this works as a bandwidth efficient spamtrap.
DNSPerf and ResPerf Provide Communication Providers with Predictive
Planning Tools to Scale Networks.
Two tools, DNSPerf and ResPerf deliver accurate performance metrics
of Domain Name Services (DNS). These tools are easy-to-use and
simulate real Internet workloads to provide the necessary insight
that carriers need to plan and deploy network services.
DNSPerf measures Authoritative Domain Name services and is designed
to simulate network conditions by self-pacing the query load.
Caching services performance and workload profile differ significantly
from Authoritative Domain services; therefore a different tool is
needed. ResPerf is designed specifically to simulate Caching Domain
Name services. To test a caching server, ResPerf systematically
increases the query rate and monitors the response rate.
The dnsproxy daemon is a proxy for DNS queries. It forwards these
queries to two previously configured nameservers: one for authoritative
queries and another for recursive queries. The received answers are sent
back to the client unchanged. No local caching is done.
BIND version 9 is a major rewrite of nearly all aspects of the underlying BIND
architecture. Some of the important features of BIND 9 are:
DNS Security: DNSSEC (signed zones), TSIG (signed DNS requests)
IP version 6: Answers DNS queries on IPv6 sockets, IPv6 resource records (AAAA)
Experimental IPv6 Resolver Library
DNS Protocol Enhancements: IXFR, DDNS, Notify, EDNS0
Improved standards conformance
Views: One server process can provide multiple "views" of the DNS namespace,
e.g. an "inside" view to certain clients, and an "outside" view to others.
Multiprocessor Support
See the CHANGES file for more information on new features.
WHAT IS DNSTRACER?
dnstracer determines where a given Domain Name Server (DNS) gets
its information from, and follows the chain of DNS servers back to
the servers which know the data.
Its behaviour is similar to ntptrace(8), which does it for the
NTP protocol.
To quote from the SourceForge project description:
gh-tool is a command-line interface to gethostby*, in libresolv/libc.
It allows one to check the local system's notion of an IP->DNS or
DNS->IP mapping, including aliases, directly, rather than digging for
mappings in DNS, which may or may not be relevant.
gen6dns is a tool to generate static DNS records (AAAA and PTR) for hosts
using Stateless Address Autoconfig (SLAAC). If you have a list of hostnames,
mac addresses and ipv6 subnets gen6dns generates the appropriate AAAA and
PTR records for you. It supports different scopes and the generation of
view (split) specific files.
The libbind functions have been separated from the BIND suite as of
BIND 9.6.0. Originally from older versions of BIND, they have been
continually maintained and improved but not installed by default with
BIND 9. This standard resolver library contains the same historical
functions and headers included with many Unix operating systems.
In fact, most implementations are based on the same original code.
ISC's libbind provides the standard resolver library, along with header
files and documentation, for communicating with domain name servers,
retrieving network host entries from /etc/hosts or via DNS, converting
CIDR network addresses, performing Hesiod information lookups, retrieving
network entries from /etc/networks, implementing TSIG transaction/request
security of DNS messages, performing name-to-address and address-to-name
translations, and utilizing /etc/resolv.conf for resolver configuration.
mdnsd is a very lightweight, simple, portable, and easy to integrate open
source implementation of Multicast DNS (part of Zeroconf, also called
Rendezvous by Apple) for developers. It supports both acting as a Query and
a Responder, allowing any software to participate fully on the
.localnetwork.
-- Dan Pelleg
daniel+mdnsd@pelleg.org