[Pdns-users] Problem with how PowerDNS answers when not authoritative.

Fredrik Dahlberg drabantus at gmail.com
Wed Mar 6 12:48:01 UTC 2013


Hello,

I have a situation where PowerDNS Authoritative server answers queries
differently from how BIND does it, when it is not authoritative for a zone.

PowerDNS (3.2):
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 59699
;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; WARNING: recursion requested but not available

BIND (9.7.3):
;; ->>HEADER<<- opcode: QUERY, status: REFUSED, id: 16419
;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; WARNING: recursion requested but not available

The problem is that resolvers seem to treat this as a final answer, and
won't proceed to the next server.

Microsoft DNS (6.1):
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 42689
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

BIND (9.8.4):
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 57604
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

This creates a lot of problems where for example zone transfers fail, and
for example customer mail bounces because the sending mail server believes
there is no MX record.

Any clues on how to solve this?

Thanks,
//Fredrik
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.powerdns.com/pipermail/pdns-users/attachments/20130306/384f1f38/attachment.html>


More information about the Pdns-users mailing list