[Pdns-users] Recursor

Aki Tuomi cmouse at youzen.ext.b2.fi
Wed Apr 23 12:18:27 UTC 2014


You've managed to claim your server authoritative for . zone, this is probably
not a good thing. This might break more things for you. Do you have authoritative server in front of the recursor?

Aki

On Wed, Apr 23, 2014 at 02:14:30PM +0200, Johan Kooijman wrote:
> Aki,
> 
> Indeed, the client had the search domain jkit.nl. Removed that, but.. still
> no luck:
> 
> [14:06:44 jkooijman /home/jkooijman]$ dig @<IP> cnn.com
> 
> ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.23.rc1.el6_5.1 <<>> @<IP> cnn.com
> ; (1 server found)
> ;; global options: +cmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39298
> ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
> 
> ;; QUESTION SECTION:
> ;cnn.com.                       IN      A
> 
> ;; AUTHORITY SECTION:
> .                       300     IN      SOA     ns1.jkit.nl.
> hostmaster.jkit.nl. 1 10800 3600 604800 3600
> 
> ;; Query time: 3 msec
> ;; SERVER: <IP>#53(<IP>)
> ;; WHEN: Wed Apr 23 14:07:30 2014
> ;; MSG SIZE  rcvd: 82
> 
> 
> 
> On Wed, Apr 23, 2014 at 2:06 PM, Aki Tuomi <cmouse at youzen.ext.b2.fi> wrote:
> 
> > You have search parameter in /etc/resolv.conf, and host command uses that.
> > Now, you have a *.jkit.nl IN MX record, which in turn gets used by host
> > and
> > gethostbyname when asked for it.
> >
> > Easy fix. Remove search jkit.nl from /etc/resolv.conf and stop using host
> > =)
> >
> > use dig instead.
> >
> > Aki
> >
> > On Wed, Apr 23, 2014 at 01:49:17PM +0200, Johan Kooijman wrote:
> > > Hi all,
> > >
> > > I'm seeing  something I cannot explain. I've setup my pdns daemon to send
> > > requests for recursions to Google DNS for now. But when I execute a host
> > > lookup, I'm seeing this:
> > >
> > > *[13:35:42 jkooijman /home/jkooijman]$ host cnn.com <http://cnn.com>
> > <IP>*
> > > *Using domain server:*
> > > *Name: <hostname>*
> > > *Address: <IP>#53*
> > > *Aliases:*
> > >
> > > *cnn.com.jkit.nl <http://cnn.com.jkit.nl> mail is handled by 10
> > > mail.jkit.nl <http://mail.jkit.nl>*.
> > >
> > > Now.. jkit.nl is a domain in the DNS database itself, but I don't really
> > > understand why pdns adds it to my query.
> > >
> > > My config:
> > >
> > > setuid=pdns
> > > setgid=pdns
> > > launch=gmysql
> > > gmysql-host=localhost
> > > gmysql-user=<username>
> > > gmysql-password=<password>
> > > gmysql-dbname=dns
> > > disable-axfr=no
> > > allow-axfr-ips=127.0.0.1/32 <more IP's>
> > > allow-recursion=127.0.0.1/32 <more IP's>
> > > recursor=8.8.8.8
> > > local-address=<IP>
> > > loglevel=2
> > >
> > > Am I missing something here?
> > >
> > > --
> > > Met vriendelijke groeten / With kind regards,
> > > Johan Kooijman
> >
> > > _______________________________________________
> > > Pdns-users mailing list
> > > Pdns-users at mailman.powerdns.com
> > > http://mailman.powerdns.com/mailman/listinfo/pdns-users
> >
> >
> 
> 
> -- 
> Met vriendelijke groeten / With kind regards,
> Johan Kooijman
> 
> T +31(0) 6 43 44 45 27
> F +31(0) 162 82 00 01
> E mail at johankooijman.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: Digital signature
URL: <http://mailman.powerdns.com/pipermail/pdns-users/attachments/20140423/4596dd10/attachment-0001.sig>


More information about the Pdns-users mailing list