From owner-freebsd-ports@FreeBSD.ORG Thu Feb 27 23:27:45 2014 Return-Path: Delivered-To: freebsd-ports@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 05ECB381 for ; Thu, 27 Feb 2014 23:27:45 +0000 (UTC) Received: from albert.catwhisker.org (mx.catwhisker.org [198.144.209.73]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id C81E812F3 for ; Thu, 27 Feb 2014 23:27:44 +0000 (UTC) Received: from albert.catwhisker.org (localhost [127.0.0.1]) by albert.catwhisker.org (8.14.8/8.14.8) with ESMTP id s1RNRb6r034466 for ; Thu, 27 Feb 2014 15:27:37 -0800 (PST) (envelope-from david@albert.catwhisker.org) Received: (from david@localhost) by albert.catwhisker.org (8.14.8/8.14.8/Submit) id s1RNRbO8034465 for freebsd-ports@freebsd.org; Thu, 27 Feb 2014 15:27:37 -0800 (PST) (envelope-from david) Date: Thu, 27 Feb 2014 15:27:37 -0800 From: David Wolfskill To: freebsd-ports@freebsd.org Subject: dns/bind99 and the migration from FreeBSD 9.x -> 10.x Message-ID: <20140227232737.GV1630@albert.catwhisker.org> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="9JI8GIjjmo2K4enO" Content-Disposition: inline User-Agent: Mutt/1.5.22 (2013-10-16) X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 27 Feb 2014 23:27:45 -0000 --9JI8GIjjmo2K4enO Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable I am not at all clear how to perform a migration of machines that run authoritative nameservers from FreeBSD 9.x -> 10.x, given the current setup of the dns/bind99 port. I'm hoping for some clues, if not insight. I have been building & running both stable/9 & stable/10 (on different slices) for some time; I'm almost to the point of being ready to switch to stable/10 on my "production" machines (which implies that I would stop building & running stable/9, and that I would be rebuilding all ports under stable/10). I have done analogous migrations from 4.x -> 6.x; 6.x -> 7.x; 7.x -> 8.x, and 8.x -> 9.x; each has been successful (though some took longer than others to get there). (Updates prior tended to be re-installs from scratch. I rarely do that any more.) The big concern I have in this case is that each of the machines in question is running an authoritative nameserver. In preparation for this, once BIND was removed from stable/10, I had installed the dns/bind99 port on each of the machines (using default options -- in particular, I did *not* select "REPLACE_BASE") while running stable/9. As a result, the port continued to use the zone files from their locations from when BIND was part of base FreeBSD: /var/named/etc/namedb; I merely changed /etc/rc.conf to specify: named_program=3D"/usr/local/sbin/named" and on reboot, everything Just Worked. Now, normally when I do one of these migrations, I migrate the OS, and let the ports sit for a week or two (by installing the appropriate misc/compat*x port). Once things seem to be OK, I then use the process documented at the end of portmaster(8) to rebuild all of the ports under the new OS (and then resume my normal weekly update of OS & installed ports). Were I to use that migration approach in this instance, one of the immediate issues is that there would be no startup script to start named (as the port was built & installed under stable/9). Unless, of course, there's some approach I'm overlooking that would allow me to "stage" or "prepare" the stable/9 environment to be (much) more similar to the stable/10 environment...? Is there an approach that is intended for this sort of thing? Or an approach that others have used successfully? Thanks for suggestions; I'll be happy to summarize on-topic mail received off-list. (I'm subscribed to ports@, so no need to copy me on list mail.) Peace, david --=20 David H. Wolfskill david@catwhisker.org Taliban: Evil cowards with guns afraid of truth from a 14-year old girl. See http://www.catwhisker.org/~david/publickey.gpg for my public key. --9JI8GIjjmo2K4enO Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (FreeBSD) iQJ8BAEBCgBmBQJTD8noXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ4RThEMDY4QTIxMjc1MDZFRDIzODYzRTc4 QTY3RjlDOERFRjQxOTNCAAoJEIpn+cje9Bk7EXgP/RUFVjXFUqmR1HzKjDbovvy7 rKM6j3k/zA6JWybj9b6pWqHRUDyo2C76RNHeT7LYjXIrcMd2mlwz2DZvMfJDk2NX rK+0cQ9/Xd1qDjwuZ6lAWs8G1ypl5Il3nGPk65+rAP6U4SqE6P1LiiHhtySJzrAV a/bnrQYQkCOyoK2lBET1e/D93LXPKRzsfnjjInYHvPI51KDXiqITt0XG9EsM8s2Q TV3KTGjKvpAxMbiRnZAxzlvR0lo6LCd1xouBXW8meEDBN5SSZXFv7f5RA6wZDs6l 0A3q+tCeB1ZZNC+DHklVBwiaqmHhlBAwx2ylK2eyu2ZYo5XYWnTWcEjkwlUjjbBX Dd5O/C+qysClf8zwBnVCpra9/QjJ91uhAyGaPtUVmQGIajl356GTe90BIl57pwcn XMEUzaueKishwEf30yKnE/WfzvBbhLKeOYoRfkxJK/sHGbEF26UZSo1zN7bK0N/H tIHmsKOr6iK/6lY+WGNKXf4pKo7O4fwXSftEbFhx8XOMdiIXSHWLjf34g6aW61Lb trHUGtqguJBFyCBWbf+8ajg2hiQ6q2Qia2Lkknecy0LtfTyB04YahqonPHfM2MkQ Ew6eYYGcIUzd54Htl1XdXNNOcVzZ/oM6k3NhCfQIIZYZKNGqYPmZYfdNm+CXcnbe ePON1e8j1eZVC1HCeZjY =kN81 -----END PGP SIGNATURE----- --9JI8GIjjmo2K4enO--