Re: [Pdns-users] ODP: PDNS Recursor - force IPv6
On Tue, Nov 16, 2021 at 12:10:02PM +0100, Thomas Mieslinger via Pdns-users wrote: > For reasons, I have been unable to debug, my recursive servers > frequently only do IPv4 although IPv6 connected and authoritatives are > also IPv6 connected. > > Warming the recursors caches with dig ns-with-.example.com let > the recursor learn that the zones are also available over IPv6 with a > better latency. > > (I know that this is a hack... but sometimes, you know, a hack is better > than being called from NOC every 2 hours) > > (Sometimes IPv4 Servers are under attack while IPv6 works fine... and in > my case recurosor failed to switch/stay with IPv6) That is a known thing. Currently, if v4 nameserver addresses are in the cache, the recursor won't do an active lookup for v6 addresses. I plan to fix this some day. https://github.com/PowerDNS/pdns/issues/7542 -Otto > > Cheers > > Thomas > > > Am 16.11.21 um 10:58 schrieb Marcin Gondek via Pdns-users: > > Hi All, > > > > Correct, prioritize IPv6, fallback on timeout. > > As far is now not possible now, do we have chance to add it in newer > > version? > > > > Why this could be needed: > > If case of CGNAT/NAT and so on, some people may have resolver on their > > homes. > > They may have public IPv6 address but IPv4 shared which could be limited > > on nameservers side. > > > > Thanks, > > > > -- > > > > Marcin Gondek / Drixter > > http://fido.e-utp.net/ > > AS56662 > > > > > > > > *Od:* Brian Candler > > *Wysłane:* wtorek, 16 listopada 2021 10:48 > > *Do:* Otto Moerbeek > > *DW:* Marcin Gondek ; pdns-users@mailman.powerdns.com > > > > *Temat:* Re: [Pdns-users] PDNS Recursor - force IPv6 > > On 16/11/2021 08:57, Otto Moerbeek wrote: > > > > I set "query-local-address=0.0.0.0,::" to allow the recursor to use > > > > both. > > > I think since 4.5 we do the right thing and**only** use v6 if you set > > > query-local-address=:: > > > But that has the consequence that a lot of (v4 only) nameservers become > > > unreachable. > > > > Ah yes: sorry I misunderstood the OPs requirement "force usage of > > IPv6". They wanted something less strong: prioritise IPv6 (if both > > available). > > > > > > > > ___ > > Pdns-users mailing list > > Pdns-users@mailman.powerdns.com > > https://mailman.powerdns.com/mailman/listinfo/pdns-users > > > ___ > Pdns-users mailing list > Pdns-users@mailman.powerdns.com > https://mailman.powerdns.com/mailman/listinfo/pdns-users ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users
Re: [Pdns-users] ODP: PDNS Recursor - force IPv6
For reasons, I have been unable to debug, my recursive servers frequently only do IPv4 although IPv6 connected and authoritatives are also IPv6 connected. Warming the recursors caches with dig ns-with-.example.com let the recursor learn that the zones are also available over IPv6 with a better latency. (I know that this is a hack... but sometimes, you know, a hack is better than being called from NOC every 2 hours) (Sometimes IPv4 Servers are under attack while IPv6 works fine... and in my case recurosor failed to switch/stay with IPv6) Cheers Thomas Am 16.11.21 um 10:58 schrieb Marcin Gondek via Pdns-users: Hi All, Correct, prioritize IPv6, fallback on timeout. As far is now not possible now, do we have chance to add it in newer version? Why this could be needed: If case of CGNAT/NAT and so on, some people may have resolver on their homes. They may have public IPv6 address but IPv4 shared which could be limited on nameservers side. Thanks, -- Marcin Gondek / Drixter http://fido.e-utp.net/ AS56662 *Od:* Brian Candler *Wysłane:* wtorek, 16 listopada 2021 10:48 *Do:* Otto Moerbeek *DW:* Marcin Gondek ; pdns-users@mailman.powerdns.com *Temat:* Re: [Pdns-users] PDNS Recursor - force IPv6 On 16/11/2021 08:57, Otto Moerbeek wrote: I set "query-local-address=0.0.0.0,::" to allow the recursor to use both. I think since 4.5 we do the right thing and**only** use v6 if you set query-local-address=:: But that has the consequence that a lot of (v4 only) nameservers become unreachable. Ah yes: sorry I misunderstood the OPs requirement "force usage of IPv6". They wanted something less strong: prioritise IPv6 (if both available). ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users
Re: [Pdns-users] ODP: PDNS Recursor - force IPv6
PowerDNS Recursor is an open source project which happily accepts contributions, so yes, there is a 'chance to add it'. The first step would be to find out if an issue for this feature is already open in github.com/powerdns/pdns, and if not, enter one. On Tue, Nov 16, 2021 at 4:58 AM Marcin Gondek via Pdns-users wrote: > > Hi All, > > Correct, prioritize IPv6, fallback on timeout. > As far is now not possible now, do we have chance to add it in newer version? > > Why this could be needed: > If case of CGNAT/NAT and so on, some people may have resolver on their homes. > They may have public IPv6 address but IPv4 shared which could be limited on > nameservers side. > > Thanks, > > -- > > Marcin Gondek / Drixter > http://fido.e-utp.net/ > AS56662 > > > > Od: Brian Candler > Wysłane: wtorek, 16 listopada 2021 10:48 > Do: Otto Moerbeek > DW: Marcin Gondek ; pdns-users@mailman.powerdns.com > > Temat: Re: [Pdns-users] PDNS Recursor - force IPv6 > > On 16/11/2021 08:57, Otto Moerbeek wrote: > > I set "query-local-address=0.0.0.0,::" to allow the recursor to use both. > > I think since 4.5 we do the right thing and *only* use v6 if you set > query-local-address=:: > But that has the consequence that a lot of (v4 only) nameservers become > unreachable. > > Ah yes: sorry I misunderstood the OPs requirement "force usage of IPv6". > They wanted something less strong: prioritise IPv6 (if both available). > > > ___ > Pdns-users mailing list > Pdns-users@mailman.powerdns.com > https://mailman.powerdns.com/mailman/listinfo/pdns-users ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users