BIND 9
Versatile, classic, complete name server software
Why use BIND 9?
BIND 9 has evolved to be a very flexible, full-featured DNS system. Whatever your application is, BIND 9 probably has the required features. As the first, oldest, and most commonly deployed solution, there are more network engineers who are already familiar with BIND 9 than with any other system.
BIND 9 is transparent open source, licensed under the MPL 2.0 license. Users are free to add functionality to BIND 9 and contribute back to the community through our open Gitlab.
If you want source code, download a current version from the ISC website or our FTP site. Or, install our updated ISC packages for Ubuntu, CentOS/Fedora, and the standard Debian package. If you prefer Docker, get our official Docker image.
Help is available via our community mailing list, or you may purchase a support subscription for expert, confidential, 24×7 support from the ISC team.
BIND Uses on the Internet
Almost every Internet connection starts with a DNS lookup
Before your mail server sends an email, before your web browser displays a web page, there is a DNS lookup to resolve a DNS name to an IP address. Watch this DNS Fundamentals presentation from Eddy Winstead of ISC or read A Warm Welcome to DNS by Bert Hubert of PowerDNS. You may also enjoy this blog post from Jeff Osborn of ISC about how the Root Server System operates.
BIND 9 on the Internet
BIND is used successfully for every application from publishing the (DNSSEC-signed) DNS root zone and many top-level domains, to hosting providers who publish very large zone files with many small zones, to enterprises with both internal (private) and external zones, to service providers with large resolver farms.
Getting Started
The BIND Administrative Reference Manual is the definitive command reference, but there are many other useful technical resources, including our knowledgebase, and the active user mailing list.
ISC Presentations
ISC technical staff frequently give talks at industry meetings. These can be an interesting source for random news and updates about BIND.
BIND Public GitLab Repo
The BIND team do most of their development work in a publicly-accessible, self-hosted GitLab instance. Anyone may read the issues and code there: to make a comment or add an issue, you must create a (free) account. Please note that we have an aggressive anti-abuse policy, out of necessity.
bind-users mailing list
The bind-users mailing list is a great community resource. Visit the list page to subscribe, or visit the list archives to read older posts. We hope everyone will participate on the list and help other users with patience and courtesy.
ISC has a well-developed system for handling software vulnerabilities responsibly. Here are some resources to help you secure your deployment.
ISC Software Defect and Vulnerability Disclosure Policy
This policy describes our committment and timeline for handling disclosures. This document explains how we score vulnerabilities, using the CVSS scoring system, to determine their severity.
Published BIND Security Advisories
View the BIND 9 Software Vulnerability Matrix for a listing of all the vulnerabilities that apply to current (not EOL) versions of BIND, or see the table which shows vulnerabilities by software version. Each vulnerability number is linked to the original Advisory document
BIND 9
We encourage you to check the Known Issues list before updating.
Support options
Latest News
Mailing List
Join the bind-users mailing list to offer help to or receive advice from other users.
Report a Bug
Before submitting a bug report, please ensure that you are running a current version. Then, if your issue is NOT a potential vulnerability, please log your report as an issue in our BIND GitLab project. If you think this bug may be a vulnerability, please open a confidential issue in our GitLab instance (preferred) or send an email to bind-security@isc.org.
Test your EDNS Compliance
Test a domain to ensure full reachability and compliance with EDNS standards.