[Pdns-users] DNSSEC UDP problems

steffannoord at gmail.com steffannoord at gmail.com
Tue Mar 9 12:13:33 UTC 2021 

Hello,

Suddenly im getting DNSSE|C warnings.
Any idees what im missing here?

When analysing the dns with dnsviz.net im seeing

" The server(s) were not responsive to queries over UDP. (2a00:1bd0:740:1:2::2, 2a00:1bd0:740:1:46::162)


I dont understand why,
I disabled the firewall for testing

netstat -tulpn | grep pdns
tcp        0      0 0.0.0.0:53              0.0.0.0:*               LISTEN      861967/pdns_server
tcp6       0      0 :::53                   :::*                    LISTEN      861967/pdns_server
udp        0      0 0.0.0.0:11597           0.0.0.0:*                           861967/pdns_server
udp        0      0 0.0.0.0:53              0.0.0.0:*                           861967/pdns_server
udp6       0      0 :::12790                :::*                                861967/pdns_server
udp6       0      0 :::53                   :::*                                861967/pdns_server



Mar  9 13:07:30 ns1 systemd[1]: Starting PowerDNS Authoritative Server...
Mar  9 13:07:30 ns1 pdns_server[861967]: Loading '/usr/lib64/pdns/libgmysqlbackend.so'
Mar  9 13:07:30 ns1 pdns_server[861967]: This is a standalone pdns
Mar  9 13:07:30 ns1 pdns_server[861967]: Listening on controlsocket in '/run/pdns/pdns.controlsocket'
Mar  9 13:07:30 ns1 pdns_server[861967]: UDP server bound to 0.0.0.0:53
Mar  9 13:07:30 ns1 pdns_server[861967]: UDP server bound to [::]:53
Mar  9 13:07:30 ns1 pdns_server[861967]: TCP server bound to 0.0.0.0:53
Mar  9 13:07:30 ns1 pdns_server[861967]: TCP server bound to [::]:53
Mar  9 13:07:30 ns1 pdns_server[861967]: PowerDNS Authoritative Server 4.5.0-alpha0.810.master.ge95f1270a (C) 2001-2021 PowerDNS.COM BV
Mar  9 13:07:30 ns1 pdns_server[861967]: Using 64-bits mode. Built using gcc 8.3.1 20191121 (Red Hat 8.3.1-5) on Mar  4 2021 17:46:55 by root at 8780793e1b61.
Mar  9 13:07:30 ns1 pdns_server[861967]: PowerDNS comes with ABSOLUTELY NO WARRANTY. This is free software, and you are welcome to redistribute it according to the terms of the GPL version 2.
Mar  9 13:07:30 ns1 pdns_server[861967]: DNS Proxy launched, local port 33452, remote 208.67.220.220:53
Mar  9 13:07:30 ns1 pdns_server[861967]: Not validating response for security status update, this is a non-release version
Mar  9 13:07:30 ns1 pdns_server[861967]: Master/slave communicator launching
Mar  9 13:07:30 ns1 pdns_server[861967]: Creating backend connection for TCP
Mar  9 13:07:30 ns1 pdns_server[861967]: About to create 3 backend threads for UDP
Mar  9 13:07:30 ns1 systemd[1]: Started PowerDNS Authoritative Server.
Mar  9 13:07:30 ns1 pdns_server[861967]: Done launching threads, ready to distribute questions
Mar  9 13:07:30 ns1 pdns_server[861967]: Cleared signature cache.

Met vriendelijke groet,
Steffan Noord

More information about the Pdns-users mailing list