[Pdns-users] pdns+dnsdist doesn't act like authoritative server

Ted Fines Ted at odc.vu
Mon Jul 20 05:32:10 UTC 2020


System: Ubuntu 18.04
Pdns 4.1.13
Dnsdist - 1.2.1 (Lua 5.2.4)
Pdns-recursor 4.1.1

I set up only pdns at first, and made a fake domain, and when I'd query it, pdns would answer correctly, like an authoritative server.

But then after configuring dnsdist and pdns-recursor, it doesn't seem to think it is the authoritative server any more.  I followed the guide at https://docs.powerdns.com/authoritative/guides/recursion.html.  What am I missing?

Here are my config files:
/etc/powerdns/pds.conf:
# PowerDNS configuration file
# Replace ns1.example.com with your primary nameserver's hostname
default-soa-name=vanuatu.mywire.org
include-dir=/etc/powerdns/pdns.d
launch=
security-poll-suffix=
setgid=pdns
setuid=pdns

api=yes
# Replace <RANDOM_KEY> with a randomly generated key for API access
api-key=30daysinjune
master=yes
slave=no

webserver=yes
webserver-address=127.0.0.1
webserver-allow-from=113.11.246.207,127.0.0.1

local-address=127.0.0.1
local-port=5300

/etc/powerdns/recursor.conf:
local-address=127.0.0.1
local-port=5301
forward-zones=dom01.vu=127.0.0.1:5300
config-dir=/etc/powerdns
hint-file=/usr/share/dns/root.hints
include-dir=/etc/powerdns/recursor.d

local-address=127.0.0.1

quiet=yes

security-poll-suffix=
setgid=pdns
setuid=pdns

/etc/dnsdist/dnsdist.conf
---------------------------------
setLocal('78.46.186.16')
addLocal('127.0.0.1')
setACL({'0.0.0.0/0', '::/0'}) -- Allow all IPs access

newServer({address='127.0.0.1:5300', pool='auth'})
newServer({address='127.0.0.1:5301', pool='recursor'})

recursive_ips = newNMG()
recursive_ips:addMask('113.11.0.0/16') -- These network masks are the ones from allow-recursion in the Authoritative Server
recursive_ips:addMask('127.0.0.1/32') -- These network masks are the ones from allow-recursion in the Authoritative Server

addAction(NetmaskGroupRule(recursive_ips), PoolAction('recursor'))
addAction(AllRule(), PoolAction('auth'))





Protected by CyberHound Appliance
(http://cyberhound.com/)

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.powerdns.com/pipermail/pdns-users/attachments/20200720/fb3d8c04/attachment.htm>


More information about the Pdns-users mailing list