[Pdns-users] SERVFAIL on all requests
Dave Burkholder
dave at thinkwelldesigns.com
Mon May 25 19:57:22 UTC 2020
Hello everyone,
I'm trying to get pdns-recursor 4.3.1 to work at all on a Centos7
machine. When restarting the service, I got logs like:
May 25 15:26:40 system.cdc.lan pdns_recursor[11520]: Exception while performing security poll: more than 100 (max-qperq) queries sent while resolving powerdns.com
So I tripled max-qperq value and restarted pdns-recursor, and now get
logs like:
May 25 15:31:40 system.cdc.lan pdns_recursor[14524]: Enabled 'epoll' multiplexer
May 25 15:31:40 system.cdc.lan pdns_recursor[14524]: Done priming cache with root hints
May 25 15:31:40 system.cdc.lan pdns_recursor[14524]: Done priming cache with root hints
May 25 15:31:51 system.cdc.lan pdns_recursor[14524]: Exception while performing security poll: Too much time waiting for 3.1.security-status.secpoll.powerdns.com|DS, timeouts: 0, throttles: 195, queries: 62, 7009msec
If I do a lookup for lxer.com, I get logs like:
May 25 15:33:56 system.cdc.lan pdns_recursor[14524]: 2 [1/1] question for 'lxer.com|A' from 127.0.0.1:34253
May 25 15:33:56 system.cdc.lan pdns_recursor[14524]: 2 [1/1] answer to question 'lxer.com|A': 0 answers, 1 additional, took 26 packets, 262.302 netw ms, 265.788 tot ms, 0 throttled, 0 timeouts, 0 tcp connections, rcode=2
When I enable trace, I get lines like:
May 25 15:36:44 system.cdc.lan pdns_recursor[16801]: [2] bing.com: Got 3 answers from b.root-servers.net (199.9.14.201), rcode=0 (No Error), aa=0, in 6ms
May 25 15:36:44 system.cdc.lan pdns_recursor[16801]: [2] Removing record 'bing.com|A|204.79.197.200' in the answer section without the AA bit set received from .
May 25 15:36:44 system.cdc.lan pdns_recursor[16801]: [2] Removing record 'bing.com|A|13.107.21.200' in the answer section without the AA bit set received from .
May 25 15:55:15 system.cdc.lan pdns_recursor[16801]: [8] dell.com: Got 3 answers from j.root-servers.net (192.58.128.30), rcode=0 (No Error), aa=0, in 7ms
May 25 15:55:15 system.cdc.lan pdns_recursor[16801]: [8] Removing record 'dell.com|A|143.166.135.105' in the answer section without the AA bit set received from .
May 25 15:55:15 system.cdc.lan pdns_recursor[16801]: [8] Removing record 'dell.com|A|143.166.147.101' in the answer section without the AA bit set received from
It looks to me like pdns is _removing_ the correct answer -- that is, on
my network, dell.com *should *resolve to 143.166.147.101,and bing
*should *resolve to 13.107.21.200.
I'm at my wit's end. Any assistance would be much appreciated!
Regards,
Dave
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.powerdns.com/pipermail/pdns-users/attachments/20200525/798a39a1/attachment.htm>
More information about the Pdns-users
mailing list