[Pdns-users] Rcode 3 NXDOMAIN for existing CNAME
Chris Hofstaedtler | Deduktiva
chris.hofstaedtler at deduktiva.com
Mon Mar 13 10:41:57 UTC 2023
* Christoph <cm at appliedprivacy.net> [230312 19:52]:
> > When there is an xNAME chain, the RCODE field is set as follows:
> >
> > When an xNAME chain is followed, all but the last query cycle
> > necessarily had no error. The RCODE in the ultimate DNS response
> > MUST BE set based on the final query cycle leading to that
> > response. If the xNAME chain was terminated by an error, it will
> > be that error code.
>
> Is it possible to construct a query that asks the server
> to not follow the chain?
>From what I can tell, there is no way of not getting NXDOMAIN here.
TTBOMK, clients talking directly to an authoritative server must be
prepared for this scenario. They need to implement all of DNS, not
just the wire protocol for a single query.
--
Chris Hofstaedtler / Deduktiva GmbH (FN 418592 b, HG Wien)
www.deduktiva.com / +43 1 353 1707
More information about the Pdns-users
mailing list