[Pdns-users] Recursor - resolving local internal IPs?
Charles Sprickman
spork at bway.net
Mon Sep 22 02:58:51 UTC 2025
Hi all,
I know this is basic, but working on a small site where we just have two PDNS auth servers and two recursors, all on different hosts/jails and I want to be able to resolve a reverse/in-addr.arpa subnet.
At first I thought I was just shooting myself in the foot with a bad "dont_query" line, so I reduced that to just this:
outgoing:
dont_query:
- 127.0.0.0/8
also made sure rfc1918 is allowed:
serve_rfc1918: true (in the recursor section)
Then I looked at my old pre-YAML configs from a very, very dated version we were running, and realized that the recursor just didn't know to look locally to resolve "10.99.88.0/24".
So I added this:
recursor:
forward_zones:
- zone: 88.99.10.in-addr.arpa
forwarders:
- 10.99.88.247
- 10.99.88.250
I confirmed I have those IPs correct and that they answer for 10.99.88.0/24. When I add this stanza, powerdns starts, doesn't log anything and is then unkillable with anything other than a "kill -9". What am I missing here?
This is recursor version 5.2.4 talking to auth server 4.9.1 on FreeBSD 13.4.
Thanks,
Charles
More information about the Pdns-users
mailing list