[Pdns-users] CNAME Resoluion

Markus Ehrlicher Markus.Ehrlicher at komsa.de
Mon Dec 5 11:36:04 UTC 2022 

Hello,

what does "pdnsutil check-zone icfd3.org" on the Master say?

best regards,
Markus

Von: Pdns-users <pdns-users-bounces at mailman.powerdns.com> Im Auftrag von Tony Annese via Pdns-users
Gesendet: Montag, 5. Dezember 2022 12:20
An: pdns-users at mailman.powerdns.com
Betreff: Re: [Pdns-users] CNAME Resoluion

Externe E-Mail

Vorsicht! Links und Anhänge können Schadcode enthalten oder nachladen. Auffällige E-Mails als Anhang bitte an virencheck at komsa.de<mailto:virencheck at komsa.de> zur Prüfung weiterleiten.



Those were wildcard entries for the whole domain icfd3.org.

I've removed those and get the same behavior. It also doesn't explain why barracuda058130353572.icfd3.org does resolve.

PDNS is my master server and ns.whidbey.net/ns.whidbey.com are my slaves. I just added testing.icfd3.org and it was pushed out to the 2 slaves but the CNAME for sip.icfd3.org isn't even being pushed out to the slaves.


From: Brian Candler <b.candler at pobox.com<mailto:b.candler at pobox.com>>
Date: Sunday, December 4, 2022 at 11:20 PM
To: Tony Annese <tony.annese at whidbeytel.com<mailto:tony.annese at whidbeytel.com>>, pdns-users at mailman.powerdns.com<mailto:pdns-users at mailman.powerdns.com> <pdns-users at mailman.powerdns.com<mailto:pdns-users at mailman.powerdns.com>>
Subject: Re: [Pdns-users] CNAME Resoluion
On 05/12/2022 05:03, Tony Annese via Pdns-users wrote:
Here is the unobfuscated data.

Thank you, because that now makes it possible to help you:

$ dig +norec @ns.whidbey.net. sip.icfd3.org. any
...

;; ANSWER SECTION:
sip.icfd3.org.        3600    IN    TXT    "v=spf1 mx include:ess.barracudanetworks.com include:spf.protection.outlook.com ~all"
sip.icfd3.org.        3600    IN    MX    0 d227914a.ess.barracudanetworks.com.
sip.icfd3.org.        3600    IN    MX    10 d227914b.ess.barracudanetworks.com.

You cannot have other resource records alongside a CNAME.  That's a requirement of the DNS, not of Powerdns specifically.

You should put A/AAAA records there.  Or if you want to avoid the duplication of information, you can look into ALIAS records which do this for you.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.powerdns.com/pipermail/pdns-users/attachments/20221205/15d23bc4/attachment.htm>

More information about the Pdns-users mailing list