Thanks - i didnt know this parameter - so basically this...
rec_control add-nta domain.example botched keyroll
Added Negative Trust Anchor for domain.example. with reason 'botched keyroll'
would set dnssec validations for domain.example. to "off"?
Am Mi., 11. Juni 2025 um 16:21 Uhr
Hi
I had a case where a customer who is using my pdns recursor for external
domain resolution had an application error due to failed dnssec validation
for the external Domain which his application depends on. I have
dnssec=validate configured in pdns recursor
The external domain had 4 Auth. DNS S
Hi
On 30/04/2025 09:19, Alessandro Lota via Pdns-users wrote:
> > If a specific reverse zone like a /24 exists, it could have precedence
> > over a /8 during resolution (NOT TESTED!!!).
>
> On the auth server: this will be fine. Many servers host a domain and
> its sub-domains: this is normal prac
Hi List
That's a good question — I've never tried creating overlapping .arpa
> domains before.
>
> If a specific reverse zone like a /24 exists, it could have precedence
> over a /8 during resolution (NOT TESTED!!!).
> You might also consider switching to a /16 zone instead of a /8, for more
> pre
Hi List
I use Powerdns Authoritative with Powerdns Recursor for Internal Zones.
Currently i have 300-400 Subnets in the 10.0.0.0/8 Range. Currently i have
only for 3 Subnets in this Range a Reverse zone configured in my Pdns Auth.
and PDNS Recursor. So i have...
10.0.10.in-addr.arpa
10.0.20.in-ad
Hi All
This was posted a half hour ago, and is probably related:
>
Yes - it was later yesterday confirmed by Linode that it was an issue at
linode DNS servers which generated the problems for some users in Italy and
Switzerland.
Thanks for your help
Hi
I have posted this on /r/dns too - maybe someone here knows how to deal
with that
I have basically the exact same problem as this guy yesterday here:
https://www.reddit.com/r/dns/comments/1j9qj97/dns_recursion_to_domains_hosted_by_linodecom_not/
-
My Powerdns Recursor cant resolve stuf
more
> records in the zone.
>
> If you should or not depends on how often and how you'll change them.
>
> Some web UIs might get slow if there are 3000 records in a zone, so try
> that out.
>
> Frank
>
>
> On 21 Feb 2025, at 11:52, rob777 via Pdns-users <
>
Hi
I have a theoretical question which i'm unsure about after AI und Forum
research.
- i have 300-400 IP Subnets (mostly /24 Subnets in 10.0.0/8 CIDR)
- The devices in these 300-400 Subnets have A records in a internal
Powerdns Zone internal.mydomain.com
- There are not that much devices in these
Hi Jan
I understand. What can be confusing while researching this is that there
seems to be different behaviors depending on which Tech you use (Powerdns,
Bind, Windows AD DNS..)
In my case (which basically is Scenario 1 of the Powerdns Docu
https://doc.powerdns.com/authoritative/guides/recursion
Hi Otto
Thanks for this reference to the RFC.
>Only answers directly coming from an authoritative server are supposed to
set the aa bit
I found some internet stuff where someone claims that the AA flag is even
not set if the answer comes from a cache in some constellations (bind
cache). I dont
Forwarders
Is my understanding of what i call "indirect" the same understanding as you
have with regards to your use of the word "indirectly"?
Regards
Am Sa., 2. Nov. 2024 um 08:17 Uhr schrieb Doug Freed via Pdns-users <
pdns-users@mailman.powerdns.com>:
> On Sa
Hi
>AUTHORITY has nothing to do with wether the answer is authoritative. You
need to look at the flags
Yes I've realized that after more research that the aa flag is the real
thing to look for.
The pdns-recursor runs on port 53 on the server and forward the queries for
the internal zone through
Hi
I'm in a testing phase of an internal powerdns setup which i will take into
production in a few weeks.
Setup:
- Primary Powerdns Authoritative 4.9 (hidden master, it is not used as a
resolver for clients)
- Secondary 1, Powerdns Recursor with Powerdns Authoritative (used as
resolver for clie
Hi
I have setup a Powerdns Master - Slave environment on Powerdns 4.9 with
sqlite3 Backend. I have configured the AXFR Zonetransfer and zone transfers
are working between Master and Slave. However one thing is that the format
of the serial is different when ich check the domains in sqlite3 config.
Hi
I want to install pdns authoritative server on the newly released Ubuntu
24.04 LTS
$ apt-get update
...
Fehl:5 http://repo.powerdns.com/ubuntu noble-auth-49 Release
404 Not Found [IP: 188.166.116.224 80]
E: Das Depot »http://repo.powerdns.com/ubuntu noble-auth-49 Release«
enthält keine R
16 matches
Mail list logo
