<div dir="ltr"><div><div><div><div>OK, dig outputs using the actual domain.<br></div><div>Also, a bit more info on the setup:<br></div>We have a PowerDNS server running on our local network handling the <a href="http://flcn.io" target="_blank">flcn.io</a> domain<br></div>We also have <a href="http://flcn.io" target="_blank">flcn.io</a> in Cloudflare DNS, for authorizing SSL certs with Let's Encrypt<br></div><br>----<br><a href="http://test1.flcn.io" target="_blank">test1.flcn.io</a> - CNAME in PowerDNS pointing to A record in PowerDNS. No record in Cloudflare<br></div><div>Works as expected<br><br>~# dig CNAME <a href="http://test1.flcn.io" target="_blank">test1.flcn.io</a><br><br>; <<>> DiG 9.11.1-P3 <<>> CNAME <a href="http://test1.flcn.io" target="_blank">test1.flcn.io</a><br>;; global options: +cmd<br>;; Got answer:<br>;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 9810<br>;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1<br><br>;; OPT PSEUDOSECTION:<br>; EDNS: version: 0, flags:; udp: 4096<br>;; QUESTION SECTION:<br>;<a href="http://test1.flcn.io" target="_blank">test1.flcn.io</a>. <wbr> IN CNAME<br><br>;; ANSWER SECTION:<br><a href="http://test1.flcn.io" target="_blank">test1.flcn.io</a>. 60 IN CNAME <a href="http://localhost.flcn.io" target="_blank">localhost.flcn.io</a>.<br><br>;; Query time: 0 msec<br>;; SERVER: 10.255.0.3#53(10.255.0.3)<br>;; WHEN: Fri Jul 21 13:37:16 UTC 2017<br>;; MSG SIZE rcvd: 73<br><br><br><br>~# dig A <a href="http://test1.flcn.io" target="_blank">test1.flcn.io</a><br><br>; <<>> DiG 9.11.1-P3 <<>> A <a href="http://test1.flcn.io" target="_blank">test1.flcn.io</a><br>;; global options: +cmd<br>;; Got answer:<br>;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 34653<br>;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1<br><br>;; OPT PSEUDOSECTION:<br>; EDNS: version: 0, flags:; udp: 4096<br>;; QUESTION SECTION:<br>;<a href="http://test1.flcn.io" target="_blank">test1.flcn.io</a>. <wbr> IN A<br><br>;; ANSWER SECTION:<br><a href="http://test1.flcn.io" target="_blank">test1.flcn.io</a>. 56 IN CNAME <a href="http://localhost.flcn.io" target="_blank">localhost.flcn.io</a>.<br><a href="http://localhost.flcn.io" target="_blank">localhost.flcn.io</a>. 1 IN A 127.0.0.1<br><br>;; Query time: 0 msec<br>;; SERVER: 10.255.0.3#53(10.255.0.3)<br>;; WHEN: Fri Jul 21 13:37:20 UTC 2017<br>;; MSG SIZE rcvd: 89<br><br><br>----<br></div><div><a href="http://test2.flcn.io" target="_blank">test2.flcn.io</a> - CNAME in PowerDNS pointing to <a href="http://www.google.com" target="_blank">www.google.com</a>. No record in Cloudflare<br></div><div>CNAME record look up works as expected. A record look up fails<br><br>~# dig CNAME <a href="http://test2.flcn.io" target="_blank">test2.flcn.io</a><br><br>; <<>> DiG 9.11.1-P3 <<>> CNAME <a href="http://test2.flcn.io" target="_blank">test2.flcn.io</a><br>;; global options: +cmd<br>;; Got answer:<br>;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 63029<br>;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1<br><br>;; OPT PSEUDOSECTION:<br>; EDNS: version: 0, flags:; udp: 1680<br>;; QUESTION SECTION:<br>;<a href="http://test2.flcn.io" target="_blank">test2.flcn.io</a>. <wbr> IN CNAME<br><br>;; ANSWER SECTION:<br><a href="http://test2.flcn.io" target="_blank">test2.flcn.io</a>. 60 IN CNAME <a href="http://www.google.com" target="_blank">www.google.com</a>.<br><br>;; Query time: 24 msec<br>;; SERVER: 10.255.0.3#53(10.255.0.3)<br>;; WHEN: Fri Jul 21 13:37:27 UTC 2017<br>;; MSG SIZE rcvd: 70<br><br>~# dig A <a href="http://test2.flcn.io" target="_blank">test2.flcn.io</a><br><br>; <<>> DiG 9.11.1-P3 <<>> A <a href="http://test2.flcn.io" target="_blank">test2.flcn.io</a><br>;; global options: +cmd<br>;; Got answer:<br>;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 54281<br>;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1<br><br>;; OPT PSEUDOSECTION:<br>; EDNS: version: 0, flags:; udp: 4096<br>;; QUESTION SECTION:<br>;<a href="http://test2.flcn.io" target="_blank">test2.flcn.io</a>. <wbr> IN A<br><br>;; Query time: 0 msec<br>;; SERVER: 10.255.0.3#53(10.255.0.3)<br>;; WHEN: Fri Jul 21 13:37:32 UTC 2017<br>;; MSG SIZE rcvd: 42<br><br><br>----<br></div><div><a href="http://test3.flcn.io" target="_blank">test3.flcn.io</a> - CNAME record in PowerDNS pointing to <a href="http://www.amazon.com" target="_blank">www.amazon.com</a>. CNAME record in Cloudflare pointing to <a href="http://bbc.co.uk" target="_blank">bbc.co.uk</a><br></div><div>CNAME looks works as expected. A record look up gets the record from Cloudflare<br><br>~# dig CNAME <a href="http://test3.flcn.io" target="_blank">test3.flcn.io</a><br><br>; <<>> DiG 9.11.1-P3 <<>> CNAME <a href="http://test3.flcn.io" target="_blank">test3.flcn.io</a><br>;; global options: +cmd<br>;; Got answer:<br>;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 42909<br>;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1<br><br>;; OPT PSEUDOSECTION:<br>; EDNS: version: 0, flags:; udp: 1680<br>;; QUESTION SECTION:<br>;<a href="http://test3.flcn.io" target="_blank">test3.flcn.io</a>. <wbr> IN CNAME<br><br>;; ANSWER SECTION:<br><a href="http://test3.flcn.io" target="_blank">test3.flcn.io</a>. 60 IN CNAME <a href="http://www.amazon.com" target="_blank">www.amazon.com</a>.<br><br>;; Query time: 22 msec<br>;; SERVER: 10.255.0.3#53(10.255.0.3)<br>;; WHEN: Fri Jul 21 13:37:41 UTC 2017<br>;; MSG SIZE rcvd: 70<br><br>~# dig A <a href="http://test3.flcn.io" target="_blank">test3.flcn.io</a><br><br>; <<>> DiG 9.11.1-P3 <<>> A <a href="http://test3.flcn.io" target="_blank">test3.flcn.io</a><br>;; global options: +cmd<br>;; Got answer:<br>;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 18384<br>;; flags: qr rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 0, ADDITIONAL: 1<br><br>;; OPT PSEUDOSECTION:<br>; EDNS: version: 0, flags:; udp: 4096<br>;; QUESTION SECTION:<br>;<a href="http://test3.flcn.io" target="_blank">test3.flcn.io</a>. <wbr> IN A<br><br>;; ANSWER SECTION:<br><a href="http://test3.flcn.io" target="_blank">test3.flcn.io</a>. 16 IN CNAME <a href="http://bbc.co.uk" target="_blank">bbc.co.uk</a>.<br><a href="http://bbc.co.uk" target="_blank">bbc.co.uk</a>. 16 IN A 212.58.246.78<br><a href="http://bbc.co.uk" target="_blank">bbc.co.uk</a>. 16 IN A 212.58.246.79<br><a href="http://bbc.co.uk" target="_blank">bbc.co.uk</a>. 16 IN A 212.58.244.22<br><a href="http://bbc.co.uk" target="_blank">bbc.co.uk</a>. 16 IN A 212.58.244.23<br><br>;; Query time: 20 msec<br>;; SERVER: 10.255.0.3#53(10.255.0.3)<br>;; WHEN: Fri Jul 21 13:37:48 UTC 2017<br>;; MSG SIZE rcvd: 129<br><br><br>----<br><a href="http://test4.flcn.io">test4.flcn.io</a> - No records in PowerDNS. A CNAME record in Cloudflare pointing to <a href="http://www.google.com">www.google.com</a>.<br>Works as expected (no records found, since looking in PowerDNS)<br>~# dig CNAME <a href="http://test4.flcn.io">test4.flcn.io</a><br><br>; <<>> DiG 9.11.1-P3 <<>> CNAME <a href="http://test4.flcn.io">test4.flcn.io</a><br>;; global options: +cmd<br>;; Got answer:<br>;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23113<br>;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1<br><br>;; OPT PSEUDOSECTION:<br>; EDNS: version: 0, flags:; udp: 1680<br>;; QUESTION SECTION:<br>;<a href="http://test4.flcn.io">test4.flcn.io</a>. IN CNAME<br><br>;; AUTHORITY SECTION:<br><a href="http://flcn.io">flcn.io</a>. 60 IN SOA <a href="http://ns1.flcn.io">ns1.flcn.io</a>. <a href="http://hostmaster.falcon.io">hostmaster.falcon.io</a>. 1500646426 10800 3600 604800 3600<br><br>;; Query time: 23 msec<br>;; SERVER: 10.255.0.3#53(10.255.0.3)<br>;; WHEN: Fri Jul 21 14:15:51 UTC 2017<br>;; MSG SIZE rcvd: 100<br><br>~# dig A <a href="http://test4.flcn.io">test4.flcn.io</a><br><br>; <<>> DiG 9.11.1-P3 <<>> A <a href="http://test4.flcn.io">test4.flcn.io</a><br>;; global options: +cmd<br>;; Got answer:<br>;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46486<br>;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1<br><br>;; OPT PSEUDOSECTION:<br>; EDNS: version: 0, flags:; udp: 1680<br>;; QUESTION SECTION:<br>;<a href="http://test4.flcn.io">test4.flcn.io</a>. IN A<br><br>;; AUTHORITY SECTION:<br><a href="http://flcn.io">flcn.io</a>. 60 IN SOA <a href="http://ns1.flcn.io">ns1.flcn.io</a>. <a href="http://hostmaster.falcon.io">hostmaster.falcon.io</a>. 1500646426 10800 3600 604800 3600<br><br>;; Query time: 19 msec<br>;; SERVER: 10.255.0.3#53(10.255.0.3)<br>;; WHEN: Fri Jul 21 14:15:56 UTC 2017<br>;; MSG SIZE rcvd: 100<br></div><div class="gmail_extra"><br><br><br clear="all"><div><div class="gmail-m_-6002317311788537558gmail_signature"><div dir="ltr"><table>
<tbody><tr>
<td colspan="2">
<div>
<span><b>Rune Tor Sørensen</b></span>
</div>
<div>
<span>Site Reliability Engineer</span>
</div>
</td>
</tr>
<tr>
<td colspan="2">
<div>
<a href="tel:+4531722097" value="+4531722097" target="_blank">+45 3172 2097</a>
</div>
<div>
<a href="https://www.linkedin.com/in/runets" target="_blank">LinkedIn</a>
<a href="https://twitter.com/Areian" target="_blank">Twitter</a>
</div>
</td>
</tr>
<tr>
<td>
<div><b>Copenhagen</b></div>
<div>Falcon.io Aps</div>
<div>H.C. Andersens Blvd. 27</div>
<div>1553 Copenhagen</div>
<div>CVR no.: 33362226</div>
</td>
</tr>
<tr>
<td colspan="2">
<div>
<a href="https://www.falcon.io/?utm_source=Employee%20emails&utm_medium=email&utm_content=Rune%20Tor%20S%C3%B8rensen&utm_campaign=Mail%20signature" target="_blank">
<img src="http://more.falcon.io/rs/154-TKC-606/images/falconio-black.png" alt="Falcon.io">
</a>
</div>
<div>Meet Your Customers</div>
</td>
</tr>
</tbody></table></div></div></div>
<br><div class="gmail_quote">On Fri, Jul 21, 2017 at 12:07 PM, Aki Tuomi <span dir="ltr"><<a href="mailto:cmouse@cmouse.fi" target="_blank">cmouse@cmouse.fi</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">
<div bgcolor="#FFFFFF"><div><div class="gmail-m_-6002317311788537558h5">
<p><br>
</p>
<br>
<div class="gmail-m_-6002317311788537558m_-1966403583796995536moz-cite-prefix">On 21.07.2017 15:04, Rune Sørensen
wrote:<br>
</div>
<blockquote type="cite">
<div dir="ltr">
<div>
<div>
<div>
<div>
<div>Hey gurus.<br>
<br>
</div>
I have a strange issue with CNAME records that I hope
you can help me solve, or at least clarify why it is
like this.<br>
<br>
</div>
I have a CNAME, <a href="http://service.my-domain.com" target="_blank">service.my-domain.com</a>,
pointing to <a href="http://host.other-domain.com" target="_blank">host.other-domain.com</a>.<br>
</div>
Now, if the A record for <a href="http://host.other-domain.com" target="_blank">host.other-domain.com</a>
is managed by my PowerDNS, this works fine.<br>
</div>
If, on the other hand, <a href="http://host.other-domain.com" target="_blank">host.other-domain.com</a> is hosted
by third party, the recursor functionality of PowerDNS seems
strange. In stead of trying to resolve <a href="http://host.other-domain.com" target="_blank">host.other-domain.com</a>
on the upstream server, it tries to resolve the original
request, i.e. <a href="http://service.my-domain.com" target="_blank">service.my-domain.com</a>.<br>
<br>
</div>
Is this expected behaviour? Or have I botched my configuration
somehow?<br>
<div>
<div>
<div>
<div><br clear="all">
<div>
<div>
<div>
<div class="gmail-m_-6002317311788537558m_-1966403583796995536gmail_signature">
<div dir="ltr">
<table>
<tbody>
<tr>
<td colspan="2">
<div> <span><b>Rune Tor Sørensen</b></span>
</div>
<div> <span>Site Reliability Engineer</span>
</div>
</td>
</tr>
<tr>
<td colspan="2">
<div> <a href="tel:+4531722097" value="+4531722097" target="_blank">+45 3172
2097</a> </div>
<div> <a href="https://www.linkedin.com/in/runets" target="_blank">LinkedIn</a>
<a href="https://twitter.com/Areian" target="_blank">Twitter</a>
</div>
</td>
</tr>
<tr>
<td>
<div><b>Copenhagen</b></div>
<div>Falcon.io Aps</div>
<div>H.C. Andersens Blvd. 27</div>
<div>1553 Copenhagen</div>
<div>CVR no.: 33362226</div>
</td>
</tr>
<tr>
<td colspan="2">
<div> <a href="https://www.falcon.io/?utm_source=Employee%20emails&utm_medium=email&utm_content=Rune%20Tor%20S%C3%B8rensen&utm_campaign=Mail%20signature" target="_blank"> <img alt="Falcon.io"> </a> </div>
<div>Meet Your Customers</div>
</td>
</tr>
</tbody>
</table>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
<br>
</blockquote></div></div>
Can you send some dig outputs?<span class="gmail-m_-6002317311788537558HOEnZb"><font color="#888888"><br>
<br>
Aki<br>
</font></span></div>
<br>______________________________<wbr>_________________<br>
Pdns-users mailing list<br>
<a href="mailto:Pdns-users@mailman.powerdns.com" target="_blank">Pdns-users@mailman.powerdns.co<wbr>m</a><br>
<a href="https://mailman.powerdns.com/mailman/listinfo/pdns-users" rel="noreferrer" target="_blank">https://mailman.powerdns.com/m<wbr>ailman/listinfo/pdns-users</a><br>
<br></blockquote></div><br></div></div>