Hello fellow dnsmasq users,
there is a topic on the IPFire support forums I would like to point you
to:
http://forum.ipfire.org/index.php?topic=11726.0
It appears that dnsmasq cannot verify resource records of a
DNSSEC-enabled domain. That domain uses RSA/SHA1-NSEC3-SHA1 for its
signatures. Al
I experienced that problem myself, posted about it on the mailing list
a few days ago.
At least it happens on my domain that has both a SHA-1 AND 256 hash.
I'm experiencing it with the version currently shipped in the current
stable OpenWRT version.
So you're not alone there. Too bad my other post
