[Pdns-users] forward zone VS rpz with recursor?
Brian Candler
b.candler at pobox.com
Thu Feb 12 09:07:46 UTC 2026
On 12/02/2026 08:51, sthaug at nethelp.no wrote:
> On one of the .no ccTLD servers, around 1% of the queries have RD
> set. I have no idea if this is typical - but clearly, "must not"
> does not completely reflect actual query traffic.
Interesting, thanks for sharing.
TBH, I didn't check against the RFCs. What I was trying to say is that
pdns-recursor is behaving correctly by not setting RD on outgoing
requests by default. It gives a degree of protection against Bad Things™
happening in certain misconfigurations, like when there's a lame
delegation to a recursive server.
More information about the Pdns-users
mailing list