On Wed, Jan 19, 2022 at 11:31:07AM +0000, Laura Smith wrote: > Hi > > OpenBSD NSD slave is driving me nuts with the following message in the logs > "Could not tcp connect to X Operation timed out". > > The answer sounds obvious, but I can: > > - Ping the IP > - Do a "dig @$auth_server_ip $auth_domain" > > Both respond normally. > > What am I missing here ? Connectivity clearly works ? PF is clearly not > dropping inbound port 53 on the master ? > > THanks > > Laura
Hi, you need to use the +tcp option with dig to test TCP functionality. DNS is tcp and udp on port 53 and if the remote end doesn't support it they are breaking the RFC. Hope that helps, -peter
