On 30/04/2020 14:47, Giovanni Vecchi via Pdns-users wrote:
is there a way to force pdns recursor to reply with NXDOMAIN instead
of SERVFAIL in case of REFUSED replies by auth?
The scenario is the following:
- auth zones: good.beer and its subdomains
- rec forward every *.good.beer query to auth
In case clients ask for a non existent good.beer subdomain, auth will
reply with REFUSED to rec and rec will reply with SERVFAIL to client.
What are you running for the auth server?
If the auth server is authoritative for good.beer, why isn't it
responding with NXDOMAIN for a non-existent subdomain?
_______________________________________________
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/pdns-users
