Re: [Pdns-users] Lua Script to block a list of domains and redirect to a block page

> On 02/13/2023 8:38 AM EET Clifford Dsouza via Pdns-users > wrote: > > > Hi, > > > I am using powerdns recursor 4.8.2 and the lua version is Lua 5.1.4 > > > Am trying to achieve the function to block a list of domains via the below > lua script and then redirect the request to a local

Re: [Pdns-users] Overlay or pass-through support in PDNS?

On 3 August 2022 6.53.11 UTC, Winfried Angele via Pdns-users wrote: >Hi Eli, > >On 03.08.22 01:43, eli glynn via Pdns-users wrote: >> I've recently inherited a really ugly mess at my company, involving a muddle >> of PowerDNS, Route53, NS1, and just about every mixed up interaction you >>

Re: [Pdns-users] remotebackend: Cannot connect to socket: No such file or directory

This is why you should always use /run and not /tmp... Sockets belong under /run// in systemd world. [Service] RuntimeDirectory=remotebackend .. and put socket to /run/remotebackend/remotebackend.sock Aki > On 05/04/2022 7:31 PM Mohamed Lrhazi via Pdns-users > wrote: > > > Oh, it was 

Re: [Pdns-users] Is it possible to filter tsig-key dnsupdate access?

To contradict Kevin, there is at least something https://doc.powerdns.com/authoritative/dnsupdate.html#update-policy Aki > On 04/28/2022 10:34 PM Kevin P. Fleming via Pdns-users > wrote: > > > There is no existing mechanism to do that. > > On Thu, Apr 28, 2022 at 2:32 PM Djerk Geurts via

Re: [Pdns-users] user level api token

You could make a feature request at https://github.com/PowerDNS/pdns/issues/new/choose Aki > On 01/15/2022 11:27 PM Kevin P. Fleming via Pdns-users > wrote: > > > Unfortunately not, there is only one token for the server. > > On Sat, Jan 15, 2022 at 4:24 PM zozoo.io via Pdns-users >

Re: [Pdns-users] recursor fail to resolve

fferent > IP address.  if that makes a difference. > > root@ns1:~# rec_control trace-regex s-s.mx > ok > ok > ok > > On 5/1/2020 11:37 AM, Aki Tuomi wrote: > >> On 05/01/2020 6:31 PM Sergio P Cesar via Pdns-users > >> wrote: > >> > >>

Re: [Pdns-users] recursor fail to resolve

> On 05/01/2020 6:31 PM Sergio P Cesar via Pdns-users > wrote: > > > I am new with pdns, just installed a resolver 4.3.0-rc2 to learn and all > seems to work but stumbled into an issue I cant resolve. > > My mailserver failed to deliver email to a few domains, in tracking it I > found

Re: [Pdns-users] SERVFAIL on backend failure - is this possible?

50x errors, invalid responses). During tests we >> forced HTTP 500 response, and got NXDOMAIN unfortunately. Is there a >> way to provide REFUSED/SERVFAIL in case http backend is misbehaving? >> >> On Wed, Feb 26, 2020 at 9:23 AM Aki Tuomi wrote: >>> Hi! >&

Re: [Pdns-users] SERVFAIL on backend failure - is this possible?

Hi! It is not really supported to split domains like this. You need to host the entire domain in remote backend. Aki On 26.2.2020 2.00, Vytenis A via Pdns-users wrote: > Hi Bert, > > Thanks for a prompt reply. > > This is currently on my local test VM, it's waay past midnight, I can > put it on

Re: [Pdns-users] How can I prevent that SOA and ANY queries are passed to a backend if NAPTR was requested?

Hi! Please see the following excellent blog post about this topic: https://blog.powerdns.com/2015/06/23/what-is-a-powerdns-backend-and-how-do-i-make-it-send-an-nxdomain/ Also if you need to reply NAPTR+TXT, you save time with replying those in ANY reply, as PowerDNS will cache your reply. Aki

Re: [Pdns-users] How to optimize cache hit ratio

On 5.8.2019 12.14, 姜伯洋 wrote: > Hello everyone > [root@ops-dns-recursor-3 ~]# rec_control get-all|grep cache > cache-entries121 > cache-hits0 > cache-misses12 > max-cache-entries300 > max-packetcache-entries50 > negcache-entries4 > packetcache-entries7 > packetcache-hits51 >

Re: [Pdns-users] pdnsutil and MySQL connection aborted

On Wed, May 08, 2019 at 05:27:34PM +0200, Thomas Plant via Pdns-users wrote: > Hello, > > I installed PDNS 4.1.8 fresh from the powerdns repos. Configured MySQL > and for testing I imported our ~3000 domains into pdns using pdnsutil > load-zone. > All was imported happily, data is just fine. But

Re: [Pdns-users] DNSSEC NSEC vs. NSEC3 broad vs. inclusive vs. narrow

While the DNSCurve page provides excellent information about how your DNS data can be figured out using NSEC/NSEC3, it does fail to answer why DNS data should be considered private in the first place. If your security model relies on people not finding out your magical DNS record names, you might

Re: [Pdns-users] Two sqlite backends, only one getting queried

On 17.10.2018 17.09, LordEidi wrote: > On 17.10.18 14:34, bert hubert wrote: >> On Wed, Oct 17, 2018 at 01:52:19PM +0200, LordEidi wrote: >>> PowerDNS starts and runs without an error. But when queried I only get >>> answers to records which are in the first sqlite DB. The content of the >>>

Re: [Pdns-users] allow-from and recursion

uration example for all 3 pdns, > pdns-recursor and dnsdist,  I can use for a simple setup like mine. We > do have ipv4 and ipv6 addresses for our servers. > > Thanks again. > > Sergio > > > > On 08/05/2018 08:37 AM, Aki Tuomi wrote: > > On Sat, Aug

Re: [Pdns-users] allow-from and recursion

ddresses the > server will respond to and still respond to any query to domains itself > hosts . > > How can I configure pdns and pdns-recursor to respond to queries from > anyone to the authoritative server but only recurse to the allowed list? > without having an open

Re: [Pdns-users] How to use GeoIP2 database with PowerDNS

gt; On May 27, 2018 at 8:19 AM Chris Jones <cpjone...@gmail.com> wrote: > > Thanks for documenting Aki. I look forward to this bug being resolved. > > Regards, > Chris. > > On Sun, May 27, 2018, 4:15 PM Aki Tuomi < cmo...@cmouse.fi > mailto:cmo..

Re: [Pdns-users] How to use GeoIP2 database with PowerDNS

gt; ;; MSG SIZE rcvd: 90 > > And finally, the record under services: > > *cpjones@ubuntu:~$* dig www.geo.example.org @14.201.167.71 > > ; <<>> DiG 9.10.3-P4-Ubuntu <<>> www.geo.example.org @14.201.167.71 > ;; global options: +cmd > ;; connection

Re: [Pdns-users] Unable to create Zone using pdns REST API

> Hi there, > > I am trying to create a new zone using the REST API, and I am getting a > very generic error message saying *{ "error": "Creating domain > 'testdomain.com .' failed" }* > > Can someone please advise if the following JSON is valid or not? > > POST to

Re: [Pdns-users] How to use GeoIP2 database with PowerDNS

On Sat, May 26, 2018 at 08:14:15PM +1000, Chris Jones wrote: > Hi there, > > I have successfully setup a pdns instance using the geoip backend and a > copy of the legacy GeoIP database (from > https://dev.maxmind.com/geoip/legacy/install/country/). Throughout the > MaxMind website, I read that

Re: [Pdns-users] Error with rec_control reload

On 07.05.2018 12:01, MRob wrote: > On 2018-05-07 07:16, Aki Tuomi wrote: >> On 07.05.2018 09:58, MRob wrote: >>> On 2018-05-07 06:50, Aki Tuomi wrote: >>>> On 07.05.2018 09:48, MRob wrote: >>>>> Hi can anyone explain what this means and if it is im

Re: [Pdns-users] Error with rec_control reload

On 07.05.2018 09:58, MRob wrote: > On 2018-05-07 06:50, Aki Tuomi wrote: >> On 07.05.2018 09:48, MRob wrote: >>> Hi can anyone explain what this means and if it is important or can be >>> ignored? I only find unanswered mailing list posts about it. >>> >

Re: [Pdns-users] Error with rec_control reload

On 07.05.2018 09:48, MRob wrote: > Hi can anyone explain what this means and if it is important or can be > ignored? I only find unanswered mailing list posts about it. > > $ sudo rec_control reload-lua-script > pdns_recursor: Error dealing with control socket request: Unable to > send message

Re: [Pdns-users] About SOA-EDIT AND SOA-EDI-API

|"soa_edit_api| MAY be set. If it is set, on changes to the contents of a zone made through the API, the SOA record will be edited according to the SOA-EDIT-API rules." (https://doc.powerdns.com/md/httpapi/api_spec/) SOA-EDIT: When serving this zone, modify the SOA serial number in one of several

Re: [Pdns-users] Could not retrieve security status update / spamhaus.org unable to query

On Fri, Dec 29, 2017 at 12:02:13AM +0100, Sophie Loewenthal wrote: > Hi everyone, > > > I had this message in my logs in a new installation with a new VPS provider, > and wonder if this is them or pdns_resolver blocking, > > Dec 28 22:42:11 mx10 pdns_recursor[7093]: Could not retrieve security

Re: [Pdns-users] ZeroMQ query

On Fri, Nov 10, 2017 at 12:05:41PM -0800, Chris Stradtman wrote: > Hello all, > > I'm working with PDNS with a zermoq backend. I may be missing something, > but it appears if there is an interruption in the communications between > the zeromq server and > the powerdns instance, powerdns just

Re: [Pdns-users] Attempt to print an unset dnsname

On 07.11.2017 17:01, Brian Candler wrote: > On 07/11/2017 14:57, Klaus Darilion wrote: >> But whatever I try I do not receive a core dump. > > Not answering your question directly, but what about running pdns > directly under gdb? > > gdb ./my_pdns_binary > run args... > bt > >

Re: [Pdns-users] Performance drop after upgrade from auth 3.4.11 to 4.0.4

On 22.09.2017 11:35, Klaus Darilion wrote: > > Am 21.09.2017 um 20:20 schrieb Aki Tuomi: >> Statements are supposed to prepared once, not per every query. > Indeed, that is the case, the "prepare" is only done once. > > But I see that simple SELECTs are w

Re: [Pdns-users] geoIP with SQL Backend?

On 19.09.2017 21:53, Klaus Darilion wrote: > Hi! > > I found this old thread: > > Re: [Pdns-users] PowerDNS with GeoIP and MySQL > Am 03.04.2016 um 12:33 schrieb Aki Tuomi: >> At the moment geoip backend does not support SQL database, there is >> geosql backend in t

Re: [Pdns-users] PowerDNS and CNAMEs

On 21.07.2017 15:04, Rune Sørensen wrote: > Hey gurus. > > I have a strange issue with CNAME records that I hope you can help me > solve, or at least clarify why it is like this. > > I have a CNAME, service.my-domain.com , > pointing to host.other-domain.com

Re: [Pdns-users] Problems resolving specific domain with pdns_recursor 4

http://dnsviz.net/d/bankofsingapore.com/dnssec/ it looks rather wild Aki On 20.07.2017 16:00, Christian Renner wrote: > Hi > > We currently face issues in resolving bankofsingapore.com with all our PDNS 4 > installations (4.0.4 and 4.0.6). Sometimes resolving works, sometimes not >

Re: [Pdns-users] Reverse PTR

On 27.06.2017 15:54, Délsio Cabá wrote: > Dear, > > We need to follow the below instructions for BIND. > How can we do this with PDNS? > > If you are using Bind, once you have defined a naming convention for a > portion of your space you can use the powerful $GENERATE directive > (described in

Re: [Pdns-users] Solaris 11 SPARC pdns recursor compilation

> On April 11, 2017 at 8:31 PM Дмитрий Клим wrote: > > > Hello guys, > I'm using pdns recursor 3.7.3 now (Solaris 11 sparc) which was compiled > from sources. > And I have an issue with pdns recursor upgrade to version 4.0.4. > Did you run make clean in the middle?

Re: [Pdns-users] API problem - domain name not conanical

Add a dot at the end. Aki On 04.04.2017 04:26, j...@archer.net wrote: > Hi All… > > Using the API, and calling it with POST, when I call: > > dns1.mydomain.com:8081/api/v1/servers/localhost/zones > > > With this data: > > { >

Re: [Pdns-users] PowerDNS GeoIP wildcard domain

On Thu, Mar 23, 2017 at 09:17:50AM +0800, Phang WM wrote: > Hi, > Currently, I am able to configure the PowerDNS with GeoIP. However, the > following configuration for wildcard does not work. > > services: > "abc.example.com": [ '%co.abc.example.com','default.abc.example.com'] >

Re: [Pdns-users] Can't start pdns 4.x on Debian after install from pdns repo

On Fri, Mar 31, 2017 at 10:14:14PM -0400, j...@archer.net wrote: > Hi All… > > I just installed pdns 4.x on Debian Jesse. I followed the instructions on the > wen site and the package appeared to install correctly, but I get the error > pasted below when I try to start it. I am trying to use it

Re: [Pdns-users] GeoIP Backend with replication to slave for redundancy

On 21.02.2017 03:36, Phang WM wrote: > Hi, > Is it possible to configure the GeoIP Backend with replication to > slave (DNS Master-Slave) for redundancy? > > Thanks > > > ___ > Pdns-users mailing list > Pdns-users@mailman.powerdns.com >

Re: [Pdns-users] pdns_recursors trusts addtional section where it better shouldn't

On 17.02.2017 12:11, Thomas Mieslinger wrote: > On 17.02.17 10:58, bert hubert wrote: >> On Fri, Feb 17, 2017 at 10:49:08AM +0100, Thomas Mieslinger wrote: >>> ovh changed its MX A records and now my employers Mail relays can't >>> send >>> email to ovh. >> >> Have you attempted to talk to OVH

Re: [Pdns-users] remote backend questions

On Fri, Feb 10, 2017 at 06:07:38PM -0500, Jeff Weber wrote: > I've been working on implementing a remote backend and I've got a few > questions now that I've gotten far enough along that queries are > answered with my initial attempts. > > I'm using the http connector and I've noticed that the

Re: [Pdns-users] PDNS 4 0 0-alpha2 Hit and Miss

On 2016-12-19 11:00 AM, Palm Internet wrote: > Hi Brian > > Here is the result > > pdnsutil check-zone derbyshireweddingevents.co.uk > Error: stou > This error usually means that your domains table has NULL where number is expected, or the number cannot be represented as 2^32 integer, or is

Re: [Pdns-users] GSQLBackend lookup query:Attempt to bind more parameters

On 12.12.2016 10:50, Palm Internet wrote: > > Hi guys > > > > After updating my PDNS and eventually getting V4.0.1 up and running, I > get the following error > > > > Backend reported permanent error which prevented lookup (GSQLBackend > lookup query:Attempt to bind more parameters than

Re: [Pdns-users] /api/v1/servers/localhost/zones/example.com STL Exception:All data was not consumed

Have you tried pdnsutil check-zone example.com Aki On Fri, Dec 09, 2016 at 11:14:25PM +1100, Peter Nunn wrote: > > -- > Peter Nunn > Director, InfoTeq Pty. Ltd. > pn...@intq.it > 0412 174 230 > 03 9017 2707 > Hi guys, > > I have just been forced to upgraded pdns because of a server crash >

Re: [Pdns-users] Remote backend docs

On 05.12.2016 13:56, Mike Cardwell wrote: > * on the Mon, Dec 05, 2016 at 01:34:07PM +0200, Aki Tuomi wrote: > >>> Just got started with PowerDNS. Developing an application using the >>> Remote backend, but the docs at >>> https://doc.powerdns.com/md/a

Re: [Pdns-users] DDNS with TSIG not working, need assistance

On Mon, Nov 14, 2016 at 05:19:20AM -0800, MRob wrote: > On 2016-11-13 21:21, Aki Tuomi wrote: > >On Sun, Nov 13, 2016 at 05:56:50PM -0800, mro...@insiberia.net wrote: > >>I'm having a hard time knowing how to debug this message: > >> > >>Packet for domain

Re: [Pdns-users] DDNS with TSIG not working, need assistance

On Sun, Nov 13, 2016 at 05:56:50PM -0800, mro...@insiberia.net wrote: > I'm having a hard time knowing how to debug this message: > > Packet for domain 'local.' denied: can't find TSIG key with name > 'tsig.key.local.' and algorithm 'hmac-sha512.' > > Is that a small bug that is reporting the

Re: [Pdns-users] Creating SRV records (for DNS-SD purposes)

On Mon, Oct 17, 2016 at 12:32:30PM -0700, Daniel Miller wrote: > Obviously I'm doing something wrong - just have no clue what. More > so than usual. > > Previously I've been using the PowerAdmin web GUI. Worked great - > but seems like it's lacking recent development. And I couldn't get > my

Re: [Pdns-users] Overly long label during label decompression

On Mon, Sep 26, 2016 at 10:46:07AM +0200, Pavel Ondřej wrote: > Hi, > > how can I fix this error in recursor? > > Sep 26 10:36:40 dns-rec1 pdns_recursor[951]: PIPE function we executed > created exception: Overly long label during label decompression (87) > > Thank you Pavel By contacting the

Re: [Pdns-users] TSIG updates fail with NOAUTH error

On Wed, Sep 14, 2016 at 09:52:30AM -0500, Kenneth Marshall wrote: > Hi, > > I am trying to get TSIG updates to work to a pdns-3.4.9 slave and > they fail with a NOAUTH error. It looks like even though the key > is correct and allowed in the domainmetadata that because it is > designated a 'SLAVE'

Re: [Pdns-users] b2b-migrate

On Tue, Aug 30, 2016 at 11:53:48AM +0200, Carlos HyD wrote: > Hi, I’m trying to migrate zones using b2b-migrate from a 2.9 database, > upgraded to 3.1 mysql schema to pdns 4 with this config: > > launch=gmysql,gmysql:server2 > gmysql-host=127.0.0.1 > gmysql-user= > gmysql-password=X >

Re: [Pdns-users] TSIG signed notifications in 4.x

On Mon, Aug 29, 2016 at 04:36:17PM +0200, Christof Meerwald wrote: > On Mon, 29 Aug 2016 17:22:38 +0300, Aki Tuomi wrote: > > On Mon, Aug 29, 2016 at 01:18:05PM +0200, Christof Meerwald wrote: > >> so the intention is to allow AXFRs from a set of static IPs and > >&g

Re: [Pdns-users] TSIG signed notifications in 4.x

On Mon, Aug 29, 2016 at 01:18:05PM +0200, Christof Meerwald wrote: > Hi, > > so the intention is to allow AXFRs from a set of static IPs and > additionally from any IP with a valid TSIG signature. > > This seemed to work quite fine with 3.x when setting TSIG-ALLOW-AXFR > on the master for the

Re: [Pdns-users] ;; WARNING: recursion requested but not available

On Mon, Jul 25, 2016 at 12:21:01PM +, Oscar wrote: > > > > yes, I thought that the warning done the error, but the error SERVFAIL coming > from DB, that is the link where I took the tutorial used the old DB, so in > /var/log/message pdns written: > Jul 25 03:09:41 localhost pdns[4161]:

Re: [Pdns-users] Problem with powerdns

On Mon, Jul 11, 2016 at 10:21:03AM +, Jordan Cook wrote: > Hello, > > I'm running PowerDNS Authoritative Server 4.0.0-alpha2 and we have a few > problems. > > We're seing lots of these errors in logs: > > Jul 11 11:18:04 ns01 pdns[31603]: Exception: All data was not consumed > Jul 11

Re: [Pdns-users] Support for GSS-TSIG (RFC 3645) in PDNS 4.x

On Tue, May 10, 2016 at 02:37:42PM +0530, Dharmesh wrote: > Hi, > > I was going through the documentation of PDNS 3.x and there it was > mentioned that HSS-TSIG feature is experimental and subjected to change in > future releases, but in PDNS 4.x i am not able to get the details of this > feature

Re: [Pdns-users] PowerDNS with GeoIP and MySQL

On Thu, Mar 31, 2016 at 02:22:50PM -0400, Lonnie Cumberland wrote: > Greetings All, > > In the very distant past, I think that I set up PowerDNS some many years > ago but have not really used it since that time. Because of this, I would > not say that I'm a bit new to setting up PowerDNS and hope

Re: [Pdns-users] LUA Script Suggestion

On Wed, Feb 10, 2016 at 11:21:05PM +, Federico Olivieri wrote: > Hi guys, > > A quick e-mail to ask a suggestion for a LUA script (or a similar > functionality) in power dns recursor to redirect all in-addr.arpa and > ip6.arpa to an external DNS server! Thank you! > > Federico It can be

Re: [Pdns-users] Master to slave does not replicate zones

On Sat, Dec 05, 2015 at 12:49:03AM -0300, Roberto Quiñones wrote: > > Hello, > > First a whole greeting and very grateful for your help, I regret that I > write English is very bad and I am forced to use a translator. > > Well I happen to have 2 servers and VPS with centos 6.7 in both PowerDNS

Re: [Pdns-users] Multiple A records cause AXFR failure

You can also try pdnssec check-zone zonename to find out why it's broken. It works even if you aren't using dnssec. Aki On Sun, Nov 22, 2015 at 11:37:25AM +0100, l...@consolejunkie.net wrote: > Hi a b, > > Based on your queries below, you seem to not be using the default > table schema and

Re: [Pdns-users] pdns 3.4.7 crashes or behaves strange

Can you provide gdb output? Aki On Tue, Nov 17, 2015 at 07:49:29PM +0100, Klaus Darilion wrote: > Hi! > > I have update our pdns from 3.3.3 to 3.4.7. As always I built the > packages myself (using the debian-pdns folder in the tarball) on Ubuntu > 10.04. I updated the DB schema, but when I

Re: [Pdns-users] pdns 3.4.7 crashes or behaves strange

cho "/tmp/core.%e.sig%s.%p" > /proc/sys/kernel/core_pattern > > before starting pdns. > > regards > Klaus > > On 17.11.2015 19:55, Aki Tuomi wrote: > > Can you provide gdb output? > > > > Aki > > > > On Tue, Nov 17, 2015 at 07:49:29

Re: [Pdns-users] strange servfail

eries). I have no > idea where that malformed type is coming from. When I disable the > backend with the custom queries everything is ok with this domain, > but like I said, I cannot figure out why Powerdns does what it does > when both backends are active. > > Martijn > >

Re: [Pdns-users] strange servfail

Is it possible for you to provide actual data? Also, - have you turned on dnssec support? gmysql-dnssec=yes - can you provide the actual line(s) from mysql database - can you run pdnssec check-zone zone Aki On Thu, Oct 29, 2015 at 08:18:29PM +0100, Martin wrote: > > > Hi, > > Thanks for

Re: [Pdns-users] Alphabetic Case support (?)

Hi! Please file a feature request at https://github.com/PowerDNS/pdns/issues so this might happen. Aki On Sat, Oct 10, 2015 at 05:55:49PM +0100, Federico Olivieri wrote: > Hi guys! > > Any feedback from that? By the way...Well done in Berlin!!! > > 2015-10-09 13:59 GMT+01:00 Federico Olivieri

Re: [Pdns-users] rec_controll explanation

On Sun, Oct 04, 2015 at 12:31:22PM +0100, Federico Olivieri wrote: > Hi All, > > I'm looking for a good sould that can spend 5 minutes to giv me more > details about some rec_controlll output. I already checked the reursor > static page but, unfortunatelly, it is not sufficient for my level of >

Re: [Pdns-users] My DNS 87.81.223.210 - Please, help me to use it :)

On Thu, Oct 01, 2015 at 04:32:30PM +0100, Federico Olivieri wrote: > Hi All, > > I' ve just joined this forum because I'm trying someone that can help me to > use my DNS server cache resolver. It is part of a my project developed this > summer. > Is a Debian server that run PowerDNS and is

Re: [Pdns-users] weird trouble

Can you run pdnssec check-zone cybernexus.net Aki On Tue, Sep 29, 2015 at 11:38:18PM -0400, Curtis Maurand wrote: > > I just went over it and there were not extraneous spaces. I have > had spaces in the past cause trouble. > > On 9/29/2015 9:54 PM, Robert Locke wrote: > > > >Specifically one

Re: [Pdns-users] pdnssec question

On Sat, Sep 12, 2015 at 05:47:19PM -0400, Curtis Maurand wrote: > I have set up dkim for a domain which sets up a txt record for the > dkim record. the name is default._domainkey.domain.com all well > and good and there is the usual text in the field. However, when I > run pdnssec against a

Re: [Pdns-users] AXFR chunk error: Server Not Authoritative for zone / Not Authorized

On Sat, Sep 05, 2015 at 03:34:01PM +0200, a b wrote: > > After some more experimentation, I have discovered that if I set > "allow-axfr=..." in pdns.conf, then the AXFR succeeds. > > If the supermaster is 3.4.5, and superslave 3.1, the AXFR succeeds as well, > without the "allow-axfr=..."

Re: [Pdns-users] AXFR chunk error: Server Not Authoritative for zone / Not Authorized

On Sun, Sep 06, 2015 at 12:41:03PM +0200, a b wrote: > > You can also use ALLOW-AXFR-FORM metadata setting for the domain(s). > > Do you mean the "zonemetadata" table in the "oracle" schema, or something > else? > Yes. and I ment ALLOW-AXFR-FROM. You can

Re: [Pdns-users] AXFR chunk error: Server Not Authoritative for zone / Not Authorized

On Sun, Sep 06, 2015 at 04:11:26PM +0200, a b wrote: > > > Yes. and I ment ALLOW-AXFR-FROM. You can use > > > > pdnssec set-meta > > > > Command to set this value. > > That is good to know, thank you. > > # pdnssec set-meta ALLOW-AXFR-FROM '0.0.0.0/0' > Unable to set meta for

Re: [Pdns-users] AXFR chunk error: Server Not Authoritative for zone / Not Authorized

On Sun, Sep 06, 2015 at 05:15:57PM +0200, a b wrote: > > > no. its poorly named tool. can you try adding by hand? > > SQL> desc zonemetadata > Name >Null?Type > >

Re: [Pdns-users] Debugging Information Pipe-Backend

On Sat, Aug 29, 2015 at 12:35:20PM -0400, Stan Weatherby wrote: Is there any more debugging information I can get from the pipebackend? I’m randomly (seems it anyway) receiving very general errors as such: == [PIPEBackend] Fatal argument error: Timeout waiting for data from coprocess

Re: [Pdns-users] Disable slave seems impossible

On Tue, Aug 25, 2015 at 06:44:54AM +0300, Aki Tuomi wrote: On Mon, Aug 24, 2015 at 07:32:00PM +0300, Aki Tuomi wrote: On Mon, Aug 24, 2015 at 02:46:59PM +0200, Giuseppe Ravasio wrote: Hello, I'm setting up two PowerDNS authoritative servers (Let's say ONE and TWO) with MySQL backend

Re: [Pdns-users] Pipebackend and Should not get here

Well, you can't have CNAME and NS on same label. Just saying. That's probably one problem. Aki On Thu, Aug 13, 2015 at 09:24:36AM -0600, p...@w3eta.net wrote: On August 12, 2015 at 6:32 AM Peter van Dijk peter.van.d...@powerdns.com wrote: Hello, On 12 Aug 2015, at 12:19, Aki

Re: [Pdns-users] Pipebackend and Should not get here

On Tue, Aug 11, 2015 at 07:27:41PM -0600, Dan Campbell wrote: I’ve recently upgraded some PowerDNS Authoritative servers from 2.9.22 to 3.4.5, and I use the pipebackend. I've noticed that when DNS queries come in for a non-existent name in my domain, I get records like the following in

Re: [Pdns-users] How to send NXDOMAIN using pipe backend?

On Sat, Jun 20, 2015 at 12:05:06AM -0700, indranil.db wrote: Thanks Aki. But since 3.0, pipe-regex should have SOA as well. The regex mentioned in the documentation link https://doc.powerdns.com/md/authoritative/backend-pipe/ needs to be updated. If SOA is not present then the query does not

Re: [Pdns-users] How to send NXDOMAIN using pipe backend?

On Thu, Jun 18, 2015 at 11:37:39PM -0700, indranil.db wrote: That is what i am doing, sending only END\n. But then, i get another request which is a truncated one which is Jun 18 11:09:26 Query: 'Q com.my.domain.com IN SOA -1 127.0.0.1' Note that the abc is missing. At this point i send

Re: [Pdns-users] How to send NXDOMAIN using pipe backend?

On Wed, Jun 17, 2015 at 10:20:31PM -0700, indranil.db wrote: Hi, Using pipe backend with unix socket to connect to another process which is responsible for sending response of DNS queries. In case of NXDOMAIN there are multiple communication between PDNS and the backend process. Below

Re: [Pdns-users] Slaves are not updating after making changes on master

On Fri, Jun 12, 2015 at 09:23:35PM +0200, Mislav Orsolic | Linux System Administrator wrote: I've recently debugged even more this scenario and it seems like I'm unable to find solution. What bothers me is this: - every domain that was added in the past, after adding new record, new record

Re: [Pdns-users] GEOIP Balancing

On Thu, Jun 11, 2015 at 08:40:26PM -0400, Stan Weatherby wrote: Currently have PDNS installed in a master/slave conf. Been trying to find decent docs on installing and configuring GeoIP Balancing. Anyone know where I may be able to find it? All I found was this:

Re: [Pdns-users] Don't return dereferenced CNAMEs

On Mon, Jun 08, 2015 at 05:04:50PM -0500, k...@rice.edu wrote: On Mon, Jun 08, 2015 at 02:51:13PM -0700, Mark Moseley wrote: I'm curious if there's a setting to tell powerdns not to be helpful and return the dereferenced CNAME. That is, if I look up a given record and it's a CNAME that

Re: [Pdns-users] Don't return dereferenced CNAMEs

On Tue, Jun 09, 2015 at 09:19:09AM +0300, Aki Tuomi wrote: On Mon, Jun 08, 2015 at 05:04:50PM -0500, k...@rice.edu wrote: On Mon, Jun 08, 2015 at 02:51:13PM -0700, Mark Moseley wrote: I'm curious if there's a setting to tell powerdns not to be helpful and return the dereferenced CNAME

Re: [Pdns-users] Hooks to run external scripts?

On Sat, Jun 06, 2015 at 03:27:36PM +0200, Jan-Piet Mens wrote: Are there any hooks in PowerDNS to run scripts after certain API calls have been processed? Not to my knowledge. If you're using MySQL or PostgreSQL as a back-end data store, using a few TRIGGERs would probably do the trick.

Re: [Pdns-users] Why is powerdns recursively asking for parent domain SOA

On Tue, May 26, 2015 at 01:23:44PM +0530, sumit sharma wrote: Hi, I have configured my custom backend. On query when pdns asks for a SOA i give back a SOA. Still it keeps on recursively asking for parent domain SOAs. How can i avoid this. May 26 10:29:09 Remote 127.0.0.1 wants

Re: [Pdns-users] DH and SSL Problems

On Thu, May 21, 2015 at 08:08:24AM +0200, bert hubert wrote: Dean, I think you ended up on the wrong mailing list! Sadly DNS does not employ any DH exchanges right now.. Bert In fact TKEY defines DH Key Exchange protocol, not sure if anyone is actually implementing it. Aki

Re: [Pdns-users] Querying domainmetadata unwanted

On Mon, May 18, 2015 at 08:25:23PM +0200, Máté Eckl wrote: Hi, I'm setting up a secondary dns-server and I'm experiencing a problem. The primary server does not use the domainmetadata table, and as I'm doing it with native database replication, I do not need it on the secondary either. The

Re: [Pdns-users] Backend error: lookup() passed zoneId = X but no such zone!

On Wed, May 13, 2015 at 07:39:31PM -0400, Sam Barrow wrote: I'm at a loss here with an issue with the mydns backend. - PowerDNS version you are using 3.4.1-4ubuntu0.1 What backends you use (gMySQL, BIND etc) Gmysql and mydns If you are using DNSSEC No Operating system

Re: [Pdns-users] Slaves are not updating after making changes on master

On Mon, May 11, 2015 at 09:14:51AM +0200, Mislav | sys admin wrote: I'm having problem with updating slaves after making changes on master. Slaves are not getting updated at all. After I type manually on the master server: Did you remember to update your SOA record serial to larger number as

Re: [Pdns-users] PowerDNS backend for CIDR based bulk CPE definitions (via pgsql)

On Mon, May 11, 2015 at 03:29:34PM +1000, Dean Hamstead wrote: Dear Pdns-Users I am hoping for feedback on a proof of concept (aka quick hack) that has powerdns serve forward and reverse DNS records from a template and a list of cidr's - implemented via gpgsql. Let's call it a

Re: [Pdns-users] Records going missing in 3.4.4

On Fri, May 01, 2015 at 11:13:22AM -0700, Mark Moseley wrote: This is going to be necessarily vague because I'm not even 50% sure what's going on. Setup is Ubuntu Precise 64-bit, temporarily running 3.4.4. We were (and are) running 3.4.2 previously. The scenario below was painful enough that

Re: [Pdns-users] Using pdns as dnsbl

On Sun, Apr 19, 2015 at 12:19:54PM +0530, sumit sharma wrote: Hi All, I am using the pipe backend to run pdns as a dnsbl. Questions: 1. How to stop Pdns for asking for SOA and NS records from the backend. 2. Any sample implementation available? You are required to reply with SOA for

Re: [Pdns-users] different type of replication

? Peter On 14 Apr 2015, at 08:22, Aki Tuomi cmo...@youzen.ext.b2.fi wrote: On Tue, Apr 14, 2015 at 03:23:04AM +0300, Keresztes Péter-Zoltán wrote: Hello, Can anyone explain me if there is any difference between having a master-slave replication on authoritative servers and simple

Re: [Pdns-users] different type of replication

On Tue, Apr 14, 2015 at 03:23:04AM +0300, Keresztes Péter-Zoltán wrote: Hello, Can anyone explain me if there is any difference between having a master-slave replication on authoritative servers and simple NATIVE servers with backend replication? regards, Peter The biggest

Re: [Pdns-users] Unterstanding slave logs

On Sat, Apr 11, 2015 at 05:30:10PM -0400, Peter Thomassen wrote: Hi, My PowerDNS slave log file often shows lines like the following: 17 slave domains need checking, 0 queued for AXFR Received serial number updates for 16 zones, had 1 timeouts Domain 'example.com' is fresh (not presigned,

Re: [Pdns-users] Storing binary data in PDNS

On Sun, Mar 29, 2015 at 01:51:58PM +0200, Christian Rößner wrote: I have absolutely no idea how to get this inserted correctly. Does somebody have any idea how to achieve this? Is adding a TYPE65XYZ-RR possible? What is the exact syntax? Many thanks in advance I did another

Re: [Pdns-users] PowerDNS core dumps on FreeBSD 10.1 in a Jail when master=yes

On Thu, Mar 26, 2015 at 02:21:25PM +0100, Thor E. Lie wrote: I have a few zones that I wish to send notify to a few bind servers. I've set up the notify and allow transfers for them and powerdns starts fine then, but once I set master=yes in my powerdns config(/usr/local/etc/pdns/pdns.conf)

Re: [Pdns-users] New to PowerDNS

: gmysql-basic-query=SELECT data,ttl,mx_priority,type,zone,host FROM DNSTable WHERE type='%s' AND zone='%s' AND active=1 Are you using which version of PowerDNS? Can you check pdns_server --launch=gmysql --config | grep gmysql-basic-query Aki Tuomi

Re: [Pdns-users] New to PowerDNS

:33 Reading random entropy from '/dev/urandom' # gmysql-basic-queryBasic query # gmysql-basic-query=SELECT content,ttl,prio,type,domain_id,disabled,name,auth FROM records WHERE disabled=0 and type=? and name=? On Mon, Mar 16, 2015 at 3:13 PM, Aki Tuomi cmo...@youzen.ext.b2.fi wrote

Re: [Pdns-users] Standardized DNS Record Types Not Supported by PowerDNS

On Mon, Mar 09, 2015 at 12:00:52PM -0500, Nick Williams wrote: On Mar 9, 2015, at 2:42 AM, bert hubert wrote: Sounds like the Supported Record Types page needs updating to add KX and IPSECKEY. Patches are welcome. It is very easy to update our Markdown documentation these

Re: [Pdns-users] Standardized DNS Record Types Not Supported by PowerDNS

On Sun, Mar 08, 2015 at 11:34:00AM -0500, Nick Williams wrote: The following are standardized DNS record types[1] that aren't supported by PowerDNS[2]. I was hoping someone could enlighten me as to whether there are specific reasons for not supporting them (as opposed to nobody has gotten

  1   2   3   >