This is a reconfigured open-source software product with additional charges for support and maintenance services.
BIND 9 has evolved into a highly flexible and feature-rich DNS system. It likely includes the necessary features for various applications. Being one of the earliest and most widely adopted solutions, BIND 9 is familiar to a larger number of network engineers compared to other systems.
BIND 9 operates as a fully transparent open-source software, licensed under MPL 2.0. Users have the freedom to enhance BIND 9’s functionality and actively contribute to the community through an open Gitlab platform.
Key Features of BIND 9:
Response Rate Limiting (RRL): This feature enhances the “named” DNS server by imposing rate limits on DNS responses, reducing the risk of “amplification attacks.”
Minimal ANY Responses: BIND 9 efficiently handles queries for ANY records, mitigating potential abuse that can result in excessively large responses.
DLZ – Dynamically Loadable Zones (DLZ): BIND 9 supports dynamic retrieval of zone data from external databases using DLZ, offering enhanced flexibility.
Minimum Reload Time: Updating BIND 9 server zone files is made easier with the remote name daemon control (rndc) tool, eliminating the need for server restarts.
HSM Support: Hardware Security Modules (HSMs) are employed for secure storage of key material, enhancing overall security.
DNSSEC with Inline Signing: BIND 9 provides comprehensive support for DNSSEC, offering a mature, feature-rich, and user-friendly implementation of this crucial security feature.