[Pdns-users] implementing hyperlocal root-zone (IETF 103) concept using pdns_recursor and pdns authoritative

Thomas Mieslinger miesi at india.com
Wed Mar 13 14:34:40 UTC 2019

Hi Pieter,

thank you for your reply.

removing the + does not help.

The public ips listed will work for you, if you want to try it yourself.

I'll prepare a trace-regex.

Best regards


On 3/13/19 3:16 PM, Pieter Lexis wrote:
> Hi Thomas,
> On 3/13/19 2:07 PM, Thomas Mieslinger wrote:
>> And added the following to my pdns_recursor config:
>> dnssec=process
>> forward-zones-file=/etc/pdns-recursor/anytest2/forward.zones
>> lua-config-file=/etc/pdns-recursor/anytest2/nta.lua
>> forward.zones contains:
>> +.=,,,,2001:8d8:fe:53:616e:7973:6c76:310a,2001:8d8:fe:53:616e:7973:6c76:330a,2001:8d8:fe:53:616e:7973:6c76:320a,2001:8d8:fe:53:616e:7973:6c76:340a
> The '+' indicates that you send the query to the auth with the RD bit
> set. That means the recursor will expect the upstream to do the
> recursorsion, which it shouldn't do. Can you remove the '+' from the
> lines and retry?
> You only want to retrieve the delegations from the auth, not have the
> auth do the rest of the lookups.
> Cheers,
> Pieter

More information about the Pdns-users mailing list