[Pdns-users] DNSSEC UDP problems

steffannoord at gmail.com steffannoord at gmail.com
Tue Mar 9 12:20:01 UTC 2021 

I dont think so
Im getting warnings from SIDN

validation failure <crazyforprint.nl. AAAA IN>: no signatures from 127.0.0.1
IPv6 address rec

Met vriendelijke groet,
Steffan Noord 

-----Oorspronkelijk bericht-----
Van: Klaus Darilion <klaus.darilion at nic.at> 
Verzonden: dinsdag 9 maart 2021 13:18
Aan: steffannoord at gmail.com
Onderwerp: AW: [Pdns-users] DNSSEC UDP problems

Maybe just a routing problem form dnsviz.net? dnsviz is known to have
someimtes IPv6 routing problems.

regards
Klaus

> -----Ursprüngliche Nachricht-----
> Von: Pdns-users <pdns-users-bounces at mailman.powerdns.com> Im Auftrag 
> von Steffan via Pdns-users
> Gesendet: Dienstag, 9. März 2021 13:14
> An: pdns-users at mailman.powerdns.com
> Betreff: [Pdns-users] DNSSEC UDP problems
> 
> Hello,
> 
> Suddenly im getting DNSSE|C warnings.
> Any idees what im missing here?
> 
> When analysing the dns with dnsviz.net im seeing
> 
> " The server(s) were not responsive to queries over UDP.
> (2a00:1bd0:740:1:2::2, 2a00:1bd0:740:1:46::162)
> 
> 
> I dont understand why,
> I disabled the firewall for testing
> 
> netstat -tulpn | grep pdns
> tcp        0      0 0.0.0.0:53              0.0.0.0:*               LISTEN
> 861967/pdns_server
> tcp6       0      0 :::53                   :::*                    LISTEN
861967/pdns_server
> udp        0      0 0.0.0.0:11597           0.0.0.0:*
> 861967/pdns_server
> udp        0      0 0.0.0.0:53              0.0.0.0:*
861967/pdns_server
> udp6       0      0 :::12790                :::*
861967/pdns_server
> udp6       0      0 :::53                   :::*
861967/pdns_server
> 
> 
> 
> Mar  9 13:07:30 ns1 systemd[1]: Starting PowerDNS Authoritative Server...
> Mar  9 13:07:30 ns1 pdns_server[861967]: Loading 
> '/usr/lib64/pdns/libgmysqlbackend.so'
> Mar  9 13:07:30 ns1 pdns_server[861967]: This is a standalone pdns Mar  
> 9 13:07:30 ns1 pdns_server[861967]: Listening on controlsocket in 
> '/run/pdns/pdns.controlsocket'
> Mar  9 13:07:30 ns1 pdns_server[861967]: UDP server bound to 
> 0.0.0.0:53 Mar  9 13:07:30 ns1 pdns_server[861967]: UDP server bound 
> to [::]:53 Mar  9 13:07:30 ns1 pdns_server[861967]: TCP server bound 
> to 0.0.0.0:53 Mar  9 13:07:30 ns1 pdns_server[861967]: TCP server 
> bound to [::]:53 Mar  9 13:07:30 ns1 pdns_server[861967]: PowerDNS 
> Authoritative Server 4.5.0-alpha0.810.master.ge95f1270a (C) 2001-2021 
> PowerDNS.COM BV Mar  9 13:07:30 ns1 pdns_server[861967]: Using 64-bits 
> mode. Built using gcc
> 8.3.1 20191121 (Red Hat 8.3.1-5) on Mar  4 2021 17:46:55 by 
> root at 8780793e1b61.
> Mar  9 13:07:30 ns1 pdns_server[861967]: PowerDNS comes with 
> ABSOLUTELY NO WARRANTY. This is free software, and you are welcome to 
> redistribute it according to the terms of the GPL version 2.
> Mar  9 13:07:30 ns1 pdns_server[861967]: DNS Proxy launched, local 
> port 33452, remote 208.67.220.220:53 Mar  9 13:07:30 ns1 
> pdns_server[861967]: Not validating response for security status 
> update, this is a non-release version Mar  9 13:07:30 ns1 
> pdns_server[861967]: Master/slave communicator launching Mar  9 
> 13:07:30 ns1 pdns_server[861967]: Creating backend connection for TCP 
> Mar  9 13:07:30 ns1 pdns_server[861967]: About to create 3 backend 
> threads for UDP Mar  9 13:07:30 ns1 systemd[1]: Started PowerDNS 
> Authoritative Server.
> Mar  9 13:07:30 ns1 pdns_server[861967]: Done launching threads, ready 
> to distribute questions Mar  9 13:07:30 ns1 pdns_server[861967]: 
> Cleared signature cache.
> 
> Met vriendelijke groet,
> Steffan Noord
> 
> _______________________________________________
> Pdns-users mailing list
> Pdns-users at mailman.powerdns.com
> https://mailman.powerdns.com/mailman/listinfo/pdns-users

More information about the Pdns-users mailing list