> In general I still have no answer to the question why I get no AA flag
> via the recursor.
With a BIND resolver you get an authoritative answer from the resolver
the *first* time this resolver receives an answer directly from the
authoritative server (presumably because this answer is *not* from
[please reply to list]
On 25/09/2018 11:22, Bernd Krueger-Knauber wrote:
At our customers routers we give them 2 IP adresses of recursers as NS
entries, which have no official NS entries pointing to them self (no
real NS).
Yes: recursors don't have NS records pointing at them. The clients
lear
On 25/09/2018 10:45, Bernd Krueger-Knauber wrote:
All the recursors who query your
authoritative domains will get the AA flag, since they're querying an
authoritative server directly.
Yes, and the pdns is also open for the complete internet, since it is
the SOA and have to be reachable for all
> On 25/09/2018 08:12, Bernd Krueger-Knauber wrote:
>> In general it is working: I can query own domains and foreign ones.
>> But ...
> Presumably through the recursor??
Yes.
>> If I querry the pdns directly (localhost 5300) with dig, I get the AA
>> flag.
>> If I querry via the recursor from 'out
On 25/09/2018 08:12, Bernd Krueger-Knauber wrote:
In general it is working: I can query own domains and foreign ones.
But ...
Presumably through the recursor??
If I querry the pdns directly (localhost 5300) with dig, I get the AA flag.
If I querry via the recursor from 'outside' I don't get it.
Hi,
I didn't found a solution for our problem online. So I'm here now.
We try to migrate an official ns from bind to powerdns, since we want to
give access the domain useres to their entries via web ui.
As written online, I placed the recursor infront of the pdns on the same
host with a mysql/mar
