[Pdns-users] ZoneToCache for root zone not working

Tue Dec 21 08:31:03 UTC 2021

Please use the rec_control trace-regex command to see what the recursor
actually does.

I guess it is verifying the data from the delegation in the
authoritative zone.

I have not yet had the time to test the zoneToCache feature, I'm
currently using https://github.com/miesi/nsrrsetd to keep the cache hot.

Am 21.12.21 um 09:06 schrieb Jahanzeb Arshad via Pdns-users:
> Thanks for the clarity.
>
> I tried to resolve some top level domains NS and still getting high latency.
>
>
> $ dig ae ns @localhost
>
> ;; omitting
>
> ;; ANSWER SECTION:
> ae. 3600 IN NS ns2.aedns.ae.
> ae. 3600 IN NS ns4.apnic.net.
> ae. 3600 IN NS nsext-pch.aedns.ae.
> ae. 3600 IN NS ns1.aedns.ae.
>
> *;; Query time: 152 msec*
>
>
> $ dig art ns @localhost
>
> ;; omitting
>
> ;; ANSWER SECTION:
> art. 164969 IN NS b.nic.art.
> art. 164969 IN NS c.nic.art.
> art. 164969 IN NS a.nic.art.
> art. 164969 IN NS d.nic.art.
>
> *;; Query time: 244 msec*
>
>
> --
>
> Regards
> *Jahanzeb Arshad*
> /VP Operations/
>
> On Tue, 2021-12-21 at 07:49 +0100, Otto Moerbeek wrote:
>> On Tue, Dec 21, 2021 at 10:28:53AM +0500, Jahanzeb Arshad via
>> Pdns-users wrote:
>>
>>> Greeting,
>>>
>>> I am having trouble in getting zonetocache working for the root zone. I
>>> am using PowerDNS Recursor 4.6.0.
>>>
>>> I have following in my /etc/powerdns/recursor.lua configuration:
>>>
>>> dofile("/usr/share/pdns-recursor/lua-config/rootkeys.lua")
>>> zoneToCache(".", "url", "https://www.internic.net/domain/root.zone
>>> <https://www.internic.net/domain/root.zone>", {
>>> refreshPeriod = 0 })
>>>
>>>
>>> When I start the server I get the following message in the logs:
>>>
>>> Dec 21 09:17:13 server.nayatel.com pdns-recursor[19209]: msg="Loaded
>>> zone into cache" subsystem="ztc" level=0 ts="1640060233.959"
>>> refresh="0" zone="."
>>>
>>>
>>> But when I do dig for the records in the root.zone I get high Query
>>> time. On subsequent queries I get 0 msec time which means it was cached
>>> after I did query for the record.
>>>
>>> $ dig b.nic.aaa
>>>
>>> ;; omitting output
>>>
>>> ;; ANSWER SECTION:
>>> b.nic.aaa. 86400 IN A 37.209.194.9
>>>
>>> ;; Query time: 512 msec
>>>
>>>
>>> --
>>> Regards
>>> Jahanzeb Arshad
>>
>> The root zone has no autoritative data for b.nic.aaa, only
>> non-authoritative data. Digging for b.nic.aaa asks for authoritiative
>> data.
>>
>> Non-autoritative data *will* be used to get the addresses of
>> namservers of delegated zones.
>>
>> Try asking your server for NS aaa. This query only uses root-zone
>> data. You should get an immediate response, including additional
>> data.
>>
>>         -Otto
>
> _______________________________________________
> Pdns-users mailing list
> Pdns-users at mailman.powerdns.com
> https://mailman.powerdns.com/mailman/listinfo/pdns-users