[Pdns-users] PowerDNS Authoritative Server 4.9.4, 4.8.5 and 4.7.5 released!

2025-02-07 Thread Miod Vallat via Pdns-users
In the northern hemisphere, the first week of February is often synonymous with dull, cold, snowy winter. To light your fire and bring a smile to your faces, we are releasing three new versions of the PowerDNS Authoritative Server. These versions, 4.9.4, 4.8.5 and 4.7.5, are bugfix versions and

Re: [Pdns-users] failover on NXDOMAIN

2025-02-07 Thread Brian Candler via Pdns-users
On 07/02/2025 11:51, Pavel Prostin wrote: Should I maintain RPZ records on this auxiliary server for internal hosts manually? My understanding is that RPZ only overrides responses and does not forward queries for unknown records. RPZ overrides responses, but any RR which doesn't have an RPZ ma

Re: [Pdns-users] failover on NXDOMAIN

2025-02-07 Thread Pavel Prostin via Pdns-users
thank you for your response. The case is more complex. There are two strictly separated DNS servers, one for internal and one for external hosts. For security reasons, external DNS resolution is generally prohibited. Only selected servers (such as the proxy) can access the external DNS in a separat

Re: [Pdns-users] failover on NXDOMAIN

2025-02-07 Thread Otto Moerbeek via Pdns-users
On Fri, Feb 07, 2025 at 10:58:06AM +, Brian Candler via Pdns-users wrote: > On 07/02/2025 10:54, Brian Candler via Pdns-users wrote: > > > > I've done this successfully with bind9. I've never tried it with > > pdns-recursor but it appears to be fully supported: > > > > https://doc.powerdns.c

Re: [Pdns-users] failover on NXDOMAIN

2025-02-07 Thread Brian Candler via Pdns-users
On 07/02/2025 10:54, Brian Candler via Pdns-users wrote: I've done this successfully with bind9. I've never tried it with pdns-recursor but it appears to be fully supported: https://doc.powerdns.com/recursor/lua-config/rpz.html Oh, and there's a blog about it: https://blog.powerdns.com/201

Re: [Pdns-users] failover on NXDOMAIN

2025-02-07 Thread Brian Candler via Pdns-users
On 07/02/2025 10:31, Pavel Prostin via Pdns-users wrote: I’m trying to configure the PowerDNS recursor to failover on NXDOMAIN. Here is the scenario: There are two DNS zones: internal and external. The problem is that *.example.com can either be used for an internal or

[Pdns-users] failover on NXDOMAIN

2025-02-07 Thread Pavel Prostin via Pdns-users
Dear All, I’m trying to configure the PowerDNS recursor to failover on NXDOMAIN. Here is the scenario: There are two DNS zones: internal and external. The problem is that *. example.com can either be used for an internal or an external host, and thus the record can exist on any DNS server. Possi