[Pdns-users] PDNS to answer as NON-authoritative?
Aki Tuomi
cmouse at youzen.ext.b2.fi
Sun Jan 3 14:29:50 UTC 2016
If you want to use auth as recursor, you need to configure
recursor=<valid recursor IP>
allow-recursion=<list of networks that can recurse>
On Sat, Jan 02, 2016 at 09:55:54PM -0800, Michael Loftis wrote:
> PowerDNS is not the same as PowerDNS Recursor. The former only does
> authoritative which is your problem here.
>
> On Saturday, January 2, 2016, Luis Daniel Lucio Quiroz <
> luis.daniel.lucio at gmail.com> wrote:
>
> > Hello
> >
> > Wat am I missing? I have this:
> > launch=pipe,bind
> > pipe-command=/usr/local/libexec/latency.pdns.plugin
> > pipe-regex=^.*\.(mylocaldomain)\.(net);.*$
> > bind-config=/etc/named.pdns.conf
> > bind-check-interval=300
> > bind-ignore-broken-records=no
> > send-root-referral=lean
> > allow-recursion=192.168.7.0/24
> >
> > /etc/named.pdns.conf looks like this
> > zone "mylocaldomain.net" IN {
> > type master;
> > file "/var/named/data/mylocaldomain.net";
> > };
> >
> > zone "root-servers.net" IN {
> > type master;
> > file "/var/named/data/named.ca";
> > };
> >
> >
> > when I do a dig, or a host, i get this:
> >
> > dig google.com @PUBLICIP
> >
> > ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.37.rc1.el6_7.4 <<>> . @PUBLICIP
> > ;; global options: +cmd
> > ;; Got answer:
> > ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 29059
> > ;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 13, ADDITIONAL: 13
> > ;; WARNING: recursion requested but not available
> >
> > ;; QUESTION SECTION:
> > ;. IN A
> >
> > ;; AUTHORITY SECTION:
> > . 518400 IN NS a.root-servers.net.
> > . 518400 IN NS b.root-servers.net.
> > . 518400 IN NS c.root-servers.net.
> > . 518400 IN NS d.root-servers.net.
> > . 518400 IN NS e.root-servers.net.
> > . 518400 IN NS f.root-servers.net.
> > . 518400 IN NS g.root-servers.net.
> > . 518400 IN NS h.root-servers.net.
> > . 518400 IN NS i.root-servers.net.
> > . 518400 IN NS j.root-servers.net.
> > . 518400 IN NS k.root-servers.net.
> > . 518400 IN NS l.root-servers.net.
> > . 518400 IN NS m.root-servers.net.
> >
> > ;; ADDITIONAL SECTION:
> > a.root-servers.net. 3600000 IN A 198.41.0.4
> > a.root-servers.net. 3600000 IN AAAA 2001:503:ba3e::2:30
> > b.root-servers.net. 3600000 IN A 192.228.79.201
> > c.root-servers.net. 3600000 IN A 192.33.4.12
> > d.root-servers.net. 3600000 IN A 199.7.91.13
> > d.root-servers.net. 3600000 IN AAAA 2001:500:2d::d
> > e.root-servers.net. 3600000 IN A 192.203.230.10
> > f.root-servers.net. 3600000 IN A 192.5.5.241
> > f.root-servers.net. 3600000 IN AAAA 2001:500:2f::f
> > g.root-servers.net. 3600000 IN A 192.112.36.4
> > h.root-servers.net. 3600000 IN A 128.63.2.53
> > h.root-servers.net. 3600000 IN AAAA 2001:500:1::803f:235
> > i.root-servers.net. 3600000 IN A 192.36.148.17
> >
> > ;; Query time: 24 msec
> > ;;
> > ;; WHEN: Sun Jan 3 05:10:27 2016
> > ;; MSG SIZE rcvd: 484
> >
> >
> > or
> >
> > host google.com PUBLICIP
> > Using domain server:
> > Name: PUBLICIP
> > Address: PUBLICIP#53
> > Aliases:
> >
> >
> > As you see, there is no answer. I only get the root NS servers.
> >
> > --
> > Luis Daniel Lucio Quiroz
> > CISSP, CISM, CISA
> > Linux, VoIP and much more fun
> > www.okay.com.mx
> >
> > Need LCR? Check out LCR for FusionPBX with FreeSWITCH
> > Need Billing? Check out Billing for FusionPBX with FreeSWITCH
> >
>
>
> --
>
> "Genius might be described as a supreme capacity for getting its possessors
> into trouble of all kinds."
> -- Samuel Butler
> _______________________________________________
> Pdns-users mailing list
> Pdns-users at mailman.powerdns.com
> http://mailman.powerdns.com/mailman/listinfo/pdns-users
More information about the Pdns-users
mailing list