Re: [Pdns-users] Recursor Cache entries per record

2022-11-29 Thread Giovanni Vecchi via Pdns-users
he same > cache. > > > > Winfried > > > > > > Am 28. November 2022 18:37:19 MEZ schrieb Giovanni Vecchi via Pdns-users > : > > >Hi guys, > > > > > >I'm doing some tests on recursor 4.7.4 and I would some confirmation > from > &

[Pdns-users] Recursor Cache entries per record

2022-11-28 Thread Giovanni Vecchi via Pdns-users
Hi guys, I'm doing some tests on recursor 4.7.4 and I would some confirmation from you about caching behaviour: I understood that enabling pdns-distributes-queries, cached entries are served only in case of matching query hash, so different clients (with different source ip) will not hit cache for

Re: [Pdns-users] [E] Re: Powerdns on AWS Instances

2021-04-28 Thread Giovanni Vecchi via Pdns-users
Hi Chhavi, I can confirm you can use AWS ELB (Network Load Balancer) in order to Load Balance DNS queries: I configured it too in our production environment. I created a single target group containing all the EC2 instances where rec is installed in order to balance 53/UDP port and 53/TCP is used f

Re: [Pdns-users] Force NXDOMAIN status response

2020-04-30 Thread Giovanni Vecchi via Pdns-users
Hi Brian, you're right: after creating good.beer solved the issue. Thanks a lot! On Thu, 30 Apr 2020 at 17:39, Brian Candler wrote: > On 30/04/2020 16:28, Giovanni Vecchi via Pdns-users wrote: > > I think I understood what's going on: only subdomain zones were created &

Re: [Pdns-users] Force NXDOMAIN status response

2020-04-30 Thread Giovanni Vecchi via Pdns-users
On 30/04/2020 15:55, Giovanni Vecchi via Pdns-users wrote: > > auth is 4.3.0 and it reply with REFUSED for unknown zones because of > > that: https://blog.powerdns.com/2015/03/02/from-noerror-to-refused/ > > Have you tested it? An unknown zone is not the same as a subdomain of a >

Re: [Pdns-users] Force NXDOMAIN status response

2020-04-30 Thread Giovanni Vecchi via Pdns-users
Hi Brian, auth is 4.3.0 and it reply with REFUSED for unknown zones because of that: https://blog.powerdns.com/2015/03/02/from-noerror-to-refused/ On Thu, 30 Apr 2020 at 16:49, Brian Candler wrote: > On 30/04/2020 14:47, Giovanni Vecchi via Pdns-users wrote: > > is there a way to f

[Pdns-users] Force NXDOMAIN status response

2020-04-30 Thread Giovanni Vecchi via Pdns-users
Hi guys, is there a way to force pdns recursor to reply with NXDOMAIN instead of SERVFAIL in case of REFUSED replies by auth? The scenario is the following: - auth zones: good.beer and its subdomains - rec forward every *.good.beer query to auth In case clients ask for a non existent good.beer

Re: [Pdns-users] Auth and Recursor dedicated logging only

2020-04-10 Thread Giovanni Vecchi via Pdns-users
> > regards > > Klaus > > > > > -Ursprüngliche Nachricht- > > > Von: Pdns-users Im Auftrag > > > von Otto Moerbeek via Pdns-users > > > Gesendet: Donnerstag, 9. April 2020 19:47 > > > An: Giovanni Vecchi > > > Cc: pdns-users@

[Pdns-users] Auth and Recursor dedicated logging only

2020-04-09 Thread Giovanni Vecchi via Pdns-users
Hi guys, how to configure both auth and recursor to log only on syslog facility (and not on stdout)? >From docu it seems that syslog logging is an addition only. Thanks -- Giovanni Vecchi Infrastructure Lead Engineer, Certego +39-059-735

Re: [Pdns-users] IPv4 shared address space (100.64.0.0/10) Reverse Zone

2020-04-03 Thread Giovanni Vecchi via Pdns-users
03/04/2020 08:36, Giovanni Vecchi via Pdns-users wrote: > > is there a way to create a single reverse zone for 100.64.0.0/10 in Auth > Server? > > Reverse delegation is done on octet boundaries, so you'll need to create > 64.100.in-addr.arpa to 127.100.in-addr.arpa inclusive.

[Pdns-users] IPv4 shared address space (100.64.0.0/10) Reverse Zone

2020-04-03 Thread Giovanni Vecchi via Pdns-users
Hi guys, is there a way to create a single reverse zone for 100.64.0.0/10 in Auth Server? Thanks -- Giovanni Vecchi Infrastructure Lead Engineer, Certego +39-059-735

Re: [Pdns-users] Subdomains and zones

2020-04-02 Thread Giovanni Vecchi via Pdns-users
rdns.com> wrote: > Hi, > > On 30/3/20 4:35 pm, Giovanni Vecchi via Pdns-users wrote: > > Hi guys, > > > > are there any best practices about subdomains in terms of zones and > > record-set configuration? > > At the moment I can image only 2 viable configurat

[Pdns-users] Subdomains and zones

2020-03-30 Thread Giovanni Vecchi via Pdns-users
Hi guys, are there any best practices about subdomains in terms of zones and record-set configuration? At the moment I can image only 2 viable configuration: - subdomain/zone pairs for each subdomain and record-set for hostname in subdomain zone - root zone only and record-sets containing subdomai

Re: [Pdns-users] Recursor and subdomain forward

2020-03-23 Thread Giovanni Vecchi via Pdns-users
Got it Brian. Thanks a lot. On Mon, 23 Mar 2020 at 14:38, Brian Candler wrote: > On 23/03/2020 13:28, Giovanni Vecchi via Pdns-users wrote: > > > *sudo rec_control get-parameter forward-zones forward-zones=""* > > From rec logs: > > > *Mar 23 13:21:05 ser

Re: [Pdns-users] Recursor and subdomain forward

2020-03-23 Thread Giovanni Vecchi via Pdns-users
8:37, Brian Candler wrote: > On 20/03/2020 17:18, Giovanni Vecchi via Pdns-users wrote: > > I think the problem was that following zone forwarding need to be > configured with "forwarding-zone*+*=" directive, but if I didn't find any > feedback in the documentation (

Re: [Pdns-users] Recursor and subdomain forward

2020-03-20 Thread Giovanni Vecchi via Pdns-users
Hi Brian, I missed that in configuration file multiple "forwarding-zone=" entries were present for different zone: I only wrote you the first of them that queries were failing, I'm sorry. I think the problem was that following zone forwarding need to be configured with "forwarding-zone*+*=" direct

Re: [Pdns-users] Recursor and subdomain forward

2020-03-20 Thread Giovanni Vecchi via Pdns-users
Trust Anchors:domain.sec* Same result disabling DNSSEC at all. Thanks On Fri, 20 Mar 2020 at 12:03, Brian Candler wrote: > On 20/03/2020 10:56, Giovanni Vecchi via Pdns-users wrote: > > @Brian: my bad, my local domain isn't an ".local" one but ".sec", so &g

Re: [Pdns-users] Recursor and subdomain forward

2020-03-20 Thread Giovanni Vecchi via Pdns-users
X forward-zones=domain.sec=127.0.0.1:5300 PS: recursor and authoritative are installed in the same server, querying the second one directly on port 5300 from localhost is ok On Fri, 20 Mar 2020 at 11:49, Brian Candler wrote: > On 20/03/2020 10:38, Giovanni Vecchi via Pdns-users

[Pdns-users] Recursor and subdomain forward

2020-03-20 Thread Giovanni Vecchi via Pdns-users
Hi guys, is there a "smart" way to instruct recursor to forward zone and each own "subdomain" to an authoritative server? Something like this: forward-zone=*.domain.local= The expectation is that queries to every level starting from domain.local (ex: hello.domain.local, good.night.domain.local,

Re: [Pdns-users] 4.2 to 4.3 Authoritative Upgrade path

2020-03-17 Thread Giovanni Vecchi via Pdns-users
rote: > Hi Giovanni, > > On 3/17/20 12:15 PM, Giovanni Vecchi via Pdns-users wrote: > > thanks for your quick reply. > > If 4.2 queries do not ask for that field, I can't figure out what could > > go wrong, isn't it? > > Otherwise, what's the best u

Re: [Pdns-users] 4.2 to 4.3 Authoritative Upgrade path

2020-03-17 Thread Giovanni Vecchi via Pdns-users
ry powerdns instances -> start powerdns instances? Thanks a lot Thanks On Tue, 17 Mar 2020 at 09:39, Pieter Lexis via Pdns-users < pdns-users@mailman.powerdns.com> wrote: > Hi Giovanni, > > On 3/16/20 6:11 PM, Giovanni Vecchi via Pdns-users wrote: > > my scenario is t

[Pdns-users] 4.2 to 4.3 Authoritative Upgrade path

2020-03-16 Thread Giovanni Vecchi via Pdns-users
Hi guys, my scenario is the following: - several 4.2 Authoritative servers - multi-master database configuration (Percona XtraDB Cluster for instance) In order to upgrade to 4.3 and avoid downtime, is it safe to upgrade the database schema first and every server then? Thanks a lot __