[Pdns-users] implementing hyperlocal root-zone (IETF 103) concept using pdns_recursor and pdns authoritative

Thomas Mieslinger miesi at india.com
Fri Mar 15 13:56:02 UTC 2019 

Hello Pieter,

please find attached pdns config files. Please copy them to 
/etc/pdns-recorusor/cns1, change the ips in the config and start the 
recursor with

/usr/sbin/pdns_recursor --config-dir=/etc/pdns-recursor/cns1 
--config-name=cns1 --daemon=no

then you should be able to reproduce the traces that can be downloaded here:

https://www.dropbox.com/s/u9g2l02xh2brl6w/trace-regex-bbc-co-uk?dl=0

Best regards

Thomas

-------------- next part --------------
### managed by puppet
allow-from=0.0.0.0/0, ::/0
#allow-from-file=/etc/pdns-recursor/cns1/allowed_nets
auth-zones=united.test=/etc/pdns-recursor/cns1/db.united.test
any-to-tcp=no
#carbon-ourname=rec-pub-gb-glo-dis01
#carbon-server=graph-sink.server.lan
#carbon-interval=10
#chroot=/var/lib/pdns-recursor/cns1
client-tcp-timeout=5
#disable-edns=yes
dnssec=process
serve-rfc1918=on
dont-query=127.0.0.0/8,100.64.0.0/10,169.254.0.0/16,192.0.0.0/24,192.0.2.0/24,198.51.100.0/24,203.0.113.0/24,240.0.0.0/4,::1/128,::ffff:0:0/96,100::/64,2001:db8::/32
entropy-source=/dev/urandom
export-etc-hosts=no
forward-zones-file=/etc/pdns-recursor/cns1/forward.zones
latency-statistic-size=10000
local-address=10.255.255.3,217.160.80.250,10.73.192.42,2001:8d8:fe:53:72ec::1
local-port=53
query-local-address=0.0.0.0
query-local-address6=::
logging-facility=6
loglevel=4
lua-config-file=/etc/pdns-recursor/cns1/nta.lua
log-common-errors=no
minimum-ttl-override=0
max-cache-ttl=86400
max-negative-ttl=600
max-cache-entries=8000000
disable-packetcache=no
max-packetcache-entries=8000000
packetcache-ttl=120
packetcache-servfail-ttl=15
root-nx-trust=off
udp-truncation-threshold=1680
max-qperq=50
max-total-msec=7000
network-timeout=1970
server-down-max-fails=64
server-down-throttle-time=60
max-tcp-clients=300
max-tcp-per-client=0
no-shuffle=off
pdns-distributes-queries=no
processes=1
threads=8
max-mthreads=2048
quiet=on
server-id=rec-pub-gb-glo-dis01
setgid=pdns-recursor
setuid=pdns-recursor
single-socket=off
spoof-nearmiss-max=20
stack-size=200000
stats-ringbuffer-entries=200000
trace=off
version-string=PowerDNS-Recursor
-------------- next part --------------
A non-text attachment was scrubbed...
Name: nta.lua
Type: text/x-lua
Size: 16 bytes
Desc: not available
URL: <http://mailman.powerdns.com/pipermail/pdns-users/attachments/20190315/130e5fc3/attachment.bin>
-------------- next part --------------
.=217.160.80.247,217.160.81.247,217.160.82.247,217.160.83.247
arpa=217.160.80.247,217.160.81.247,217.160.82.247,217.160.83.247
in-addr.arpa=217.160.80.247,217.160.81.247,217.160.82.247,217.160.83.247
ip6-servers.arpa=217.160.80.247,217.160.81.247,217.160.82.247,217.160.83.247
ip6.arpa=217.160.80.247,217.160.81.247,217.160.82.247,217.160.83.247
ipv4only.arpa=217.160.80.247,217.160.81.247,217.160.82.247,217.160.83.247
mcast.net=217.160.80.247,217.160.81.247,217.160.82.247,217.160.83.247
root-servers.net=217.160.80.247,217.160.81.247,217.160.82.247,217.160.83.247
-------------- next part --------------
;
; BIND data file for local loopback interface
; managed by puppet
;
$TTL    604800
@       IN      SOA     localhost. root.localhost. (
                              2         ; Serial
                         604800         ; Refresh
                          86400         ; Retry
                        2419200         ; Expire
                         604800 )       ; Negative Cache TTL
;

@               IN      A               127.0.0.1
@               IN      TXT             "united.test auf rec-pub-gb-glo-dis01.server.lan."

alive   600     IN A    127.0.0.1
alive   600     IN AAAA ::1
alive   600     IN TXT  "cns1 instance on rec-pub-gb-glo-dis01 is alive"

More information about the Pdns-users mailing list