Hi,
On 08/03/2017 09:37 PM, Charles Sprickman wrote:
> FWIW, “trace-regex” gave me an error, so I just did a full trace and
> then cleaned up the results.
>
> https://gist.github.com/sporkman/1b1b01a3b33ca3e2029728cb90a1eee8
>
>> We can then find out the problem for you, or perhaps you see it al
> On Jul 29, 2017, at 5:19 AM, bert hubert wrote:
>
> On Sat, Jul 29, 2017 at 12:19:11AM -0400, Charles Sprickman wrote:
>> Here’s a few things I’ve tried:
>>
>> - Verify with DNSVIZ: http://dnsviz.net/d/dot.nyc.gov/dnssec/
>> - Update PowerDNS to powerdns-recursor-4.0.6
>> - Remove “scrub” ru
On Sat, Jul 29, 2017 at 12:19:11AM -0400, Charles Sprickman wrote:
> Here’s a few things I’ve tried:
>
> - Verify with DNSVIZ: http://dnsviz.net/d/dot.nyc.gov/dnssec/
> - Update PowerDNS to powerdns-recursor-4.0.6
> - Remove “scrub” rules from pf configuration
> - Change pf rules to be stateless
>
Howdy,
Kind of stumped at how to debug this and where the fault lies. I noticed that
we had some issues when customers were noting that emails to anyone at
“@dot.nyc.gov” were bouncing.
If I query my local powerdns recursor, I get a SERVFAIL. If I query a local
BIND server, I get a correct r
