On Mon, 14 Sep 2020, Mark Andrews wrote:
[...] All the queries to the recursive server with this configuration not answered by the server will leak. The configuration needs “forward only;” to be added to prevent the leak. We see this all the time.zone “non-existant-tld” { type forward; forwarders { <address>; }; forward only; };
Worth making note of! :-)
Remember forwarding started off as a performance measure. Falling back to talking to the root servers is desired in that scenario.
-- Fred Morris
_______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users