This is a reconfigured open-source software product, with additional charges applicable for support and maintenance.
BIND 9 has undergone significant evolution, transforming into a highly versatile and feature-rich DNS system. It caters to a wide range of applications, making it a preferred choice. It stands as the earliest and most extensively deployed solution, boasting a large community of network engineers well-acquainted with BIND 9.
BIND 9 operates as a transparent open-source solution, licensed under MPL 2.0, allowing users to expand its functionality and actively participate in the community via an open Gitlab platform.
Key Features of BIND 9:
Response Rate Limiting (RRL): This enhancement to the “named” DNS server reduces the risk of “amplification attacks” by imposing rate limits on DNS responses.
Minimal ANY Responses: BIND 9 efficiently handles queries for ANY records, addressing potential abuse scenarios where such queries can result in disproportionately large responses.
DLZ – Dynamically Loadable Zones (DLZ): BIND 9 supports dynamic retrieval of zone data directly from external databases, enhancing flexibility in zone management.
Minimum Reload Time: Updating BIND 9 server zone files is streamlined through the remote name daemon control (rndc) utility, eliminating the need for server restarts.
HSM Support: Hardware Security Modules (HSMs) are employed to securely store key material outside of BIND 9, enhancing security measures.
DNSSEC with Inline Signing: BIND 9 offers comprehensive support for DNSSEC, featuring a mature, full-featured, and user-friendly implementation of this critical security feature.