This is a reconfigured open-source software product, with additional charges applicable for support and maintenance.
BIND 9 has evolved into a highly versatile and feature-rich DNS system. It likely possesses the necessary features for your specific application. As one of the oldest and most widely deployed solutions, BIND 9 enjoys a large user base, making it familiar to network engineers.
BIND 9 is fully open source and licensed under MPL 2.0, allowing users to enhance its functionality and contribute to the community through an open Gitlab.
Key Features of BIND 9:
Response Rate Limiting (RRL): Enhances the “named” DNS server by imposing rate limits on DNS responses to mitigate “amplification attacks.”
Minimal ANY Responses: Addresses the potential abuse of queries for ANY records, which can result in disproportionately large responses.
DLZ – Dynamically Loadable Zones (DLZ): Enables BIND 9 to dynamically retrieve zone data directly from an external database.
Minimum Reload Time: Allows updating server zone files using the remote name daemon control (rndc) utility without restarting BIND 9.
HSM Support: Hardware Security Modules (HSMs) enhance security by securely storing key material outside of BIND 9.
DNSSEC with Inline Signing: BIND 9 provides robust support for DNSSEC, offering a mature, feature-rich, and user-friendly implementation of this critical security feature