Re: [Pdns-users] Question about recurring log SQL error upon upgrading to 4.7.3 due to Debian upgrade from 11.x to 12.6

ial gotcha. Thank you for helping me remove my head from my posterior. :) Cheers, -Chris On 8/8/24 6:44 PM, Brian Candler wrote: On 09/08/2024 07:34, Chris Moody via Pdns-users wrote: Just to add a bit more, I found this exact issue listed on github but have applied the proposed fix and am still ex

Re: [Pdns-users] Question about recurring log SQL error upon upgrading to 4.7.3 due to Debian upgrade from 11.x to 12.6

Just to add a bit more, I found this exact issue listed on github but have applied the proposed fix and am still experiencing the daemon failure. https://github.com/PowerDNS/pdns/issues/11892 Cheers, -Chris On 8/8/24 4:58 PM, Chris Moody via Pdns-users wrote: Hello all. I'm scratchi

[Pdns-users] Question about recurring log SQL error upon upgrading to 4.7.3 due to Debian upgrade from 11.x to 12.6

ess believe the query is failing?  The daemon is restarting every second stating this failure. Any insights are greatly appreciated. Thanks, -Chris -- Node-Nine, Inc. ch...@node-nine.com 619.354.6463 OpenPGP_signature.asc Description: OpenPGP digital signature ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users

Re: [Pdns-users] Rcode 3 NXDOMAIN for existing CNAME

there is no way of not getting NXDOMAIN here. TTBOMK, clients talking directly to an authoritative server must be prepared for this scenario. They need to implement all of DNS, not just the wire protocol for a single query. -- Chris Hofstaedtler / Deduktiva GmbH (FN

Re: [Pdns-users] Rcode 3 NXDOMAIN for existing CNAME

https://www.rfc-editor.org/rfc/rfc6604#section-3 Thanks to Peter van Dijk for the RFC pointer. Hope this helps, -- Chris Hofstaedtler / Deduktiva GmbH (FN 418592 b, HG Wien) www.deduktiva.com / +43 1 353 1707 ___ Pdns-users mailing list Pdns-users@mailman.pow

Re: [Pdns-users] No delegation in parent zone

zone "ancientmariner.com" needs NS record for the "rime" zone: rime.ancientmariner.com IN NS ns1.ancientmariner.com. rime.ancientmariner.com IN NS ns2.ancientmariner.com. ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdn

Re: [Pdns-users] reverse zone ipv4 and ipv6

You probably don't want to insert 79,228,162,514,264,337,593,543,950,336 rows into your database for your ipv6 /32. On Wed, Feb 1, 2023 at 7:28 AM Vinícius Dalcin via Pdns-users < pdns-users@mailman.powerdns.com> wrote: > I'm going to install a database manager, because via pdnsutils I'm not >

Re: [Pdns-users] request: Sample replication setup with dnsdist

On the same machine, or sharing the same IP address? If sharing the same IP you would have to do something like that. Otherwise if you have multiple IPs on the machine you could bind each to a different IP / hostname. Generally one would think it's best to not have the same IP respond to authorita

Re: [Pdns-users] Reloading metadata with bind-backend & sqlite

cryptokeys, metadata, ... are loaded on-access, and thus become effective immediately. If you see something else, please clarify your setup and what behavior you are seeing. Chris -- Chris Hofstaedtler / Deduktiva GmbH (FN 418592 b, HG Wien) www.deduktiva.com / +43 1 353 1707 ___

Re: [Pdns-users] Help needed debugging knot_control timeouts

e just added to the AXFR queue. Or does > adding the zone to the queue also requires some locks that cause the timeout? I wonder if its contending with the periodic slaveRefresh (slave-cycle-interval/xfr-cycle-interval). Do you see a "long" running "info-all-slaves-query&

Re: [Pdns-users] What are the differences between PowerDNS Authoritative Server and Recursor?

On Fri, Nov 18, 2022 at 7:55 AM Turritopsis Dohrnii Teo En Ming via Pdns-users wrote: > Subject: What are the differences between PowerDNS Authoritative > Server and Recursor? > > Good day from Singapore, > > May I know what are the differences between PowerDNS Authoritative > Server and Recursor

Re: [Pdns-users] Generating PTR Records for IPv4 and IPv6 Addresses on the fly

- https://github.com/outini/python-powerdns --Chris On Fri, Jun 3, 2022 at 8:56 AM Ambauen Daniel (ID) via Pdns-users < pdns-users@mailman.powerdns.com> wrote: > Dear List > > There is a possibility to create PTR records dynamically with Lua Records > (Reverse DNS functions crea

Re: [Pdns-users] PDNS Slave - While checking domain freshness

You're using MySQL replication as well as autosecondary? Seems like it should be one or the other. Generally zones would be NATIVE if using sql replication. Telnetting to tcp 53 isn't a test of much of anything, you probably should use the `dig` command, perhaps: dig @ example.com SOA On Wed, A

Re: [Pdns-users] Status of dnsdist 1.6.1

f you update your packages it will wipe out the technically newer nightly build with the older release. I believe a bug was opened for this, it has to do with the package name ordering. So just be wary when upgrading. --Chris ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users

Re: [Pdns-users] PowerDNS with Hidden master + MySQL replication in various scenarios

On Mon, Jul 26, 2021 at 9:55 AM Chris Wopat wrote: > > 3) We're secondary-only to a primary server we don't manage. In our > current situation, legacy servers adns1/adns2 perform the AXFR. In the > new scenario, we want this to be hidden master ns0 and NOT ns1/ns2, > beca

[Pdns-users] PowerDNS with Hidden master + MySQL replication in various scenarios

Hi folks, I'm working on a project standing up new DNS servers using PowerDNS instead of bind. Various reasons to switch, but more or less this seems a lot more operator friendly with API and whatnot. Anyhow, the 'legacy' system has 3 servers - adns0, adns1, adns2. 0 is hidden master and is where

Re: [Pdns-users] Subdomains and zones

Hi, On 30/3/20 4:35 pm, Giovanni Vecchi via Pdns-users wrote: Hi guys, are there any best practices about subdomains in terms of zones and record-set configuration? At the moment I can image only 2 viable configuration: - subdomain/zone pairs for each subdomain and record-set for hostname in

Re: [Pdns-users] Best way to setup pdns for ACME challenges and "virtual" entries

Hi, On 2/3/20 3:28 am, Michael Rommel via Pdns-users wrote: > I read that I can use three different ways to accomplish that: > b) the HTTP API I wrote a quick Perl script which calls the HTTP API (I use the Opera DNS UI - https://github.com/operasoftware/dns-ui - so I use the API provided by t

[Pdns-users] Journal Log Format for Recursor

t 2 answers were returned, however I'd like to know: - what the 3 to the left of the square brackets are - what the numbers in the square brackets are - what netw ms means - what tot ms means Any help would be appreciated. Regards, Chris.

[Pdns-users] Superslave behind dnsdist...

s of my test setup, but I figured someone else might have solved this problem already as it must be a common problem for powerdns on company / internal networks,  but my Google-foo so far has let me down. :-) Cheers, Chris H. -- This Communication is Confidential. We only send and receive email on th

Re: [Pdns-users] Different MySQL server for reads vs writes

Hi, I do this by creating a separate instance of PowerDNS for writes. As an example, in /etc/powerdns I have: pdns-internal.conf - Configured to use the read only database (listening on port 5350 with no web server/API - queries are sent to it via dnsdist) pdns-api.conf - Configured to use th

Re: [Pdns-users] Only REFUSED responses after upgrade.

On 2019-05-28 22:04, Walter Parker wrote: On Tue, May 28, 2019 at 5:54 PM Chris wrote: On 2019-05-28 15:23, bert hubert wrote: On Tue, May 28, 2019 at 03:06:33PM -0400, Chris wrote: This DNS server has been running on Debian 7 Wheezy for years without issue. Debian 7.11 packaged PowerDNS

Re: [Pdns-users] Only REFUSED responses after upgrade.

On 2019-05-28 15:23, bert hubert wrote: On Tue, May 28, 2019 at 03:06:33PM -0400, Chris wrote: This DNS server has been running on Debian 7 Wheezy for years without issue. Debian 7.11 packaged PowerDNS 2.9.22. Since 2.9.22 PowerDNS has changed a lot. Run pdnsutil check-zone on your zones

[Pdns-users] Only REFUSED responses after upgrade.

ry. The DB server is also still running Debian 7.11, so it's on my schedule to update. Is this a database problem, or is there a bug in the gmysql backend in 3.x+ that breaks queryies to remote hosts? Thanks in advance, Chris ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users

[Pdns-users] Only REFUSED responses after upgrade.

ry. The DB server is also still running Debian 7.11, so it's on my schedule to update. Is this a database problem, or is there a bug in the gmysql backend in 3.x+ that breaks queries to remote hosts? Thanks in advance, Chris ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users

[Pdns-users] Remote Backend and Dynamic DNS

dynamic DNS. It does not say that other backend (like remote) is supported or not. Can someone please clarify? Thank you in advance. Regards, Chris. ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo

Re: [Pdns-users] Remote Backend SOA Response

Thanks Bert, but I don’t understand how my backend is doing too much work? How does PowerDNS know what the zone is if my backend doesn’t figure it out? Regards, Chris. On Sat, 23 Feb 2019 at 7:23 pm, bert hubert wrote: > On Sat, Feb 23, 2019 at 03:49:28PM +1100, Chris Jones wrote: > >

[Pdns-users] Remote Backend SOA Response

dmin.domain.net <http://dnsadmin.domain.net>. 2019021901 10 10 10 10* ;; Query time: 63 msec ;; SERVER: (ip address)#53(ip address) ;; WHEN: Sat Feb 23 15:45:20 DST 2019 ;; MSG SIZE rcvd: 132 Given the JSON response only has the root of the zone name returned, I would have expected the dig result to be the root of the zone. Is this something that is expected and/or valid? Regards, Chris. ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users

Re: [Pdns-users] State of the LDAP Backend

d has some limitations that make some operations fail. > It would be really helpful if the backend documentation would list the > amount of api support as well, as it would make it easier to decide > whether a backend has sufficient features. Yeah. For now the answer is easy: if you want

Re: [Pdns-users] Different replies based on origin of query

We've had good luck doing this with the pipe backend. We have "magic" urls which resolve differently based on customer information and client location. On Thu, Oct 04, 2018 at 06:27:18PM +, Jason Bailey wrote: > Well I'm actually referring to pdns (auth) specifically, not the recursor.

Re: [Pdns-users] PDNS-recursor as transparent proxy, fails for outside NS servers

. Chris Stradtman On Fri, Sep 21, 2018 at 5:43 AM Michał Zając wrote: > Hi. > > 21.09.2018 10:05 Chris Hofstaedtler > wrote: > > > > Just add the code in pdns-server to modify outgoing answers using Lua. > > I’m sure that’d be a well-received feature. > >

Re: [Pdns-users] PDNS-recursor as transparent proxy, fails for outside NS servers

ursor with pdns backend via forward-zones=, because it > doesn't work with NS records pointing outside for subdomains. > >Any ideas? Just add the code in pdns-server to modify outgoing answers using Lua. I’m sure that’d be a well-received feature. Chris _

Re: [Pdns-users] irregular version string - {packages from Repo}?

Thank you - this resolved the issue. :) On 14-Aug-18 23:11 PM, Nico CARTRON wrote: Hi Chris, On 14 Aug 2018, at 23:03, Chris Ernst <mailto:snowiswh...@gmail.com>> wrote: Dear all recently i downloaded the Debian 9 packages from http://repo.powerdns.com Specifically I use:

[Pdns-users] irregular version string - {packages from Repo}?

ion with nsedit (https://github.com/tuxis-ie/nsedit). nesdit checks the version number and expects a 4. any comments are highly appreciated. best regards Chris ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/m

Re: [Pdns-users] Old 3.3.1-1 to 4.1.3 Authoritative and Recursor issue

ive traffic is indeed sent to your PowerDNS Recursors. I’d suggest running tcpdump on your existing PowerDNS Authoritative Servers to verify that they only receive traffic from Recursors, and not from your internal devices. C -- Chris Hofstaedtler / Deduktiva GmbH (FN 418592 b, HG Wien) ww

Re: [Pdns-users] Native setups and AXFR for external providers

ad of type=native, and then > block NOTIFYs using "only-notify=" on serverA. Thenconfigure the respective > also-notifys on server B. Also you’ll need to set master=yes on the replica; if you keep master=no on the internal server, I -think- you can skip the only-notify= thing. C -- C

Re: [Pdns-users] API: RRset xxx.cc. IN CNAME: Conflicts with pre-existing non-CNAME RRset

Conflicts with pre-existing non-CNAME RRset Assuming the request you posted is correct, this is correct behaviour. Mixing CNAMEs and other records on the same name is explicitly forbidden by the relevant RFCs. The API won’t let you do stuff that cannot be served (or is forbidden) over DNS. --

Re: [Pdns-users] How to use GeoIP2 database with PowerDNS

Ok, great. Do we have an idea on the release timeline for 4.2? The reason I ask is that Maxmind have said that the legacy .DAT database file will be discontinued in Jan 2019. Regards, Chris. On Sun, May 27, 2018, 4:28 PM Aki Tuomi wrote: > After digging into this more, it seems that

Re: [Pdns-users] How to use GeoIP2 database with PowerDNS

Thanks for documenting Aki. I look forward to this bug being resolved. Regards, Chris. On Sun, May 27, 2018, 4:15 PM Aki Tuomi wrote: > It seems you found a bug. https://github.com/PowerDNS/pdns/issues/6676 > > Aki > > On Sun, May 27, 2018 at 08:43:22AM +1000, Chris Jones wr

Re: [Pdns-users] How to use GeoIP2 database with PowerDNS

86400 60 ;; Query time: 4 msec ;; SERVER: 14.201.167.71#53(14.201.167.71) ;; WHEN: Sun May 27 08:37:37 STD 2018 ;; MSG SIZE rcvd: 90 And finally, the record under services: *cpjones@ubuntu:~$* dig www.geo.example.org @14.201.167.71 ; <<>> DiG 9.10.3-P4-Ubuntu <<>> www.ge

[Pdns-users] How to use GeoIP2 database with PowerDNS

out - standard records work fine though). launch=geoip geoip-database-files=/etc/pdns/GeoLite2-City.mmdb geoip-zones-file=/etc/pdns/geo.yml Has anyone got an example or suggestions on how I can use the GeoIP2 databases with the pdns-geoip backend? System: CentOS 7 + pdns 4.1.3 Thanks, Chris

[Pdns-users] Unable to create Zone using pdns REST API

"disabled": false, "set-ptr": false } ] } ], "serial": 1, "notified_serial": 0, "masters": [], "nameservers": [ "ns1.provider.com.", "ns2.provider.com." ] } System details: - CentOS 7 with pdns-4.1.3-1pdns.el7.x86_64 - Bind backend Appreciate any help. Regards, Chris. ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users

Re: [Pdns-users] Efficient query logging

It's not powerdns specific, but we have been using packetbeat for that sort of work. Chris Stradtman On Mon, Apr 2, 2018 at 6:06 AM, Brian Candler wrote: > I'm investigating how to monitor DNS queries as a source of security > information for breach detection. In the case of

Re: [Pdns-users] PowerDNS Auth is slow on control socket

one on the same thread. Debugging guesses: for 1) see if pdns passed the accept() call. for 2) break on DLNotifyRetrieveHandler Good luck, Chris -- Chris Hofstaedtler / Deduktiva GmbH (FN 418592 b, HG Wien) www.deduktiva.com / +43 1 353 1707 _

Re: [Pdns-users] ZeroMQ query

Done. Issue #5946 Thanks, Chris On Sun, Nov 12, 2017 at 1:26 PM, Aki Tuomi wrote: > On Fri, Nov 10, 2017 at 12:05:41PM -0800, Chris Stradtman wrote: > > Hello all, > > > > I'm working with PDNS with a zermoq backend. I may be missing something, > > but it app

[Pdns-users] ZeroMQ query

thing in the configs? We are running it in a docker container, so we can do a healthcheck and restart the container when it quits responding, but this seems kind of heavy-handed to me. Is there a better approach to reconnecting ?? Thanks, Chris Stra

Re: [Pdns-users] default-zsk-algorithm(s)

Hi, > On 25.10.2017, at 16:20, Siniša Burina wrote: > > I have the pdns authoritative installed from the master branch. > Today I tried to switch to version 4.1, but got the following error: > > Fatal error: Trying to set unknown parameter 'default-zsk-algorithm' > > In the docs there's

Re: [Pdns-users] Fwd: pdns authoritative SERVERFAIL

Hi, On 16/02/2017 1:22 AM, Federico Olivieri wrote: Feb 15 17:17:56 UKLNDLABDMZ pdns_server[6709]: Feb 15 17:17:56 Backend reported permanent error which prevented lookup (GSQLBackend lookup query:Could not prepare statement: SELECT content,ttl,prio,type,domain_id,disabled,name,auth FROM records

Re: [Pdns-users] PDNS Recursor domain not resolved!

Hi, On 8/07/2016 6:10 AM, Federico Olivieri wrote: > Hi folks.Hope that I used the right mailing list :) > can you please help me to understand why my pdns recursor doesn't resolv > the doains *.nhs.com > I need to redirect the domain with dnsdist to 8.8.8.8 in order to > resolve

Re: [Pdns-users] pdns_recursor - SERVFAIL resolving protection.outlook.com domains

Hi, I can confirm this work around works: It looks like there is a bug in the DNSSEC implementation. I can resolve this name on the current master branch with the `dnssec=off` setting. If it helps, I also came across the same issue when resolving names on secureserver.net - specifically smt

[Pdns-users] Question on Recursion

Hi guys, At the moment we are running a test with powerdns v3, but cannot get this version to behave the way we want it to. The idea is to overwrite some subdomains of our (dns is externally hosted) own domain to local server IP-addresses. This way we don't have to enable nat-reflection on our

[Pdns-users] pdns_recursor - SERVFAIL resolving protection.outlook.com domains

Hi, I upgraded my PowerDNS servers yesterday to the latest alpha to fix an issue with memory, the upgrade has fixed that. It looks like after upgrading from alpha2 to 0.0.910ge143fd4-1pdns.jessie I can no longer resolve subdomains on protection.outlook.com. As an example: ; <<>> DiG 9.9.5-9+

Re: [Pdns-users] PDNS Recursor Alpha - RAM usage

On 09/05/2016 2:49 PM, bert hubert wrote: Can you check if it helps? The master packages are better than the alpha packages in all ways we know about. Hi Bert, Thanks for that I have upgraded the packages and so far it looks good, with the config I sent earlier I am seeing it flat line at abo

[Pdns-users] PDNS Recursor Alpha - RAM usage

Hi all, I have been running the alpha of PowerDNS recursor (4.0.0~alpha2-1pdns.jessie) for a while but seem to be having issues with the memory usage of it after a while. My DNS servers all have 16GB of RAM, about 40% of which is allocated to MySQL (3 instances of PowerDNS auth running again

Re: [Pdns-users] CNAMEs to non-local names with authoritative server as recursor

On Mon, Feb 01, 2016 at 12:52:49PM +1300, Chris wrote: > > > I am using pdns-static-3.4.4-1.x86_64, and I have a pipe backend > > > which modifies local records based on the clients location in the > > > network. This means I need the authoritative server in front of

Re: [Pdns-users] powerdns authoritative 4.0.0 alpha stops working from time to time

Hi, I too have ran into this issue today. I can reproduce it easily. Running 4.0.0~alpha2-1pdns.jessie with the MySQL backend. I restart the MySQL server. After it is done restarting any queries to PowerDNS return a SERVFAIL with this line logged first: Backend reported condition which preve

Re: [Pdns-users] PowerDNS recusor 4.0.0 alpha2 packages/forward zone file

On 7/03/2016 6:42 PM, Pieter Lexis wrote: There is no alpha2 release for the recursor yet indeed, you can use the master packages from the repositories as a substitute (as alpha2 will be a tag on master). Expect an official Recursor alpha2 somewhere this week. Hi Pieter Thanks, I can confirm

[Pdns-users] PowerDNS recusor 4.0.0 alpha2 packages/forward zone file

Hi, I am doing some testing with PowerDNS 4.0 recursor as I am looking to replace my existing Unbound recursors. So far everything looks good except for one show stopper. I am using a forward zones file like this: forward-zones-file=/etc/powerdns/recursor_forward_zones The forward zones file

[Pdns-users] Re: CNAMEs to non-local names with authoritative server as recursor

I am using pdns-static-3.4.4-1.x86_64, and I have a pipe backend which modifies local records based on the clients location in the network. This means I need the authoritative server in front of the recursor so I can get their IP address. The backend only handles the request if it finds an A

Re: [Pdns-users] PDNS Recursor - Fail to start - Main proces exist

On 18/11/2015 7:56 AM, Federico Olivieri wrote: Nov 17 23:36:46 banana pdns_recursor[886]: Nov 17 23:36:46 Exception: Resolver binding to server socket on port 53 for 127.0.0.1 : Address already in use Hi, That's the reason. dnsdist was most likely listening on

Re: [Pdns-users] soa-edit-api

Replying to myself for posterity: the problem disappeared when I upgraded from 3.4.1 to 3.4.5. -C- On 08/18/2015 10:27 AM, Chris Haumesser wrote: Does anyone have experience with using the rest api and soa-edit-api setting? My understanding is that if SOA-EDIT-API is set to DEFAULT in

[Pdns-users] soa-edit-api

via the API. This does not seem to work for me. When I add a new record via the API, the record's change_date in mysql is NULL, and the zone serial does not increment. I am running pdns-server-3.4.1, backported from ubuntu-vivid to to run on ubuntu-trusty. Any thoughts? Thanks,

Re: [Pdns-users] Comments requested regarding autoserial

cks. Our other favorite feature is supermasters...making zone distribution dead simple as well...but I digress. Our vote at Node-Nine is to please leave the autoserial functionality intact. Thanks, - -Chris On 7/14/15 4:56 AM, Pieter Lexis wrote: > Hi All, > > We'd like to

Re: [Pdns-users] Optimize Powerdns and Mysql for DB with 500K entries

than 2 seconds Average non-late response time: 569.60 usec What kind of statistics are you seeing? Do you get large amounts of I/O wait on the server? Is your mysql innodb buffer pool size large enough to hold the entire table in RAM? Chris On 26/02/2015 2:40 AM, Jonathan Hunter wrote: Hi Guys

Re: [Pdns-users] experience upgrade 2.9 > 3.3.1

m 2.9 to 3.3 a while back with no real hassles (roughly 7m records in 4 instances), only thing to watch out for was the schema changes. I import zones from servers running cPanel (using zone2sql on the named files) and that didn't require any changes which was nice. Chris On 11/07/20

[Pdns-users] DNSSEC and subdomains with wildcards

Hi list, I have run into a problem with implementing DNSSEC for zones that have wildcards. I am using PowerDNS 3.3-1 on Debian Wheezy with the 'gmysql-dnssec' backend. I am testing with the domain 'testdomain.asia'. Starting from scratch with just the SOA and NS records in the zone, I then

[Pdns-users] RESOLVED - Re: Need help re: Remote tried to sneak in out-of-zone data ''|SOA during AXFR of zone

nderstand it to be behaving now (3.3) is that upon submission/change of a record, the change_date field needs updated to be of the format MMDDxx. This in turn then causes the notified_serial value to be updated, which is then reflected in DNS lookups. Is this correct? Cheers, -Chris

Re: [Pdns-users] Need help re: Remote tried to sneak in out-of-zone data ''|SOA during AXFR of zone

vision bit worked as the slave shows the domain in the domains table. Just won't actually axfr the records. -Chris On 2/18/14 4:51 PM, Chris Moody wrote: Replies inline. On 2/18/14 2:56 PM, Aki Tuomi wrote: On Tue, Feb 18, 2014 at 02:47:33PM -0500, Chris Moody wrote: Could all this per

Re: [Pdns-users] Need help re: Remote tried to sneak in out-of-zone data ''|SOA during AXFR of zone

Replies inline. On 2/18/14 2:56 PM, Aki Tuomi wrote: On Tue, Feb 18, 2014 at 02:47:33PM -0500, Chris Moody wrote: Could all this perhaps be related to using opendbx as the backend? = Feb 18 19:25:22 nyny-dp-1 pdns[7979]: Received NOTIFY for mysitehealth.com from 206.71.169.116 for which

Re: [Pdns-users] Need help re: Remote tried to sneak in out-of-zone data ''|SOA during AXFR of zone

LL | NULL | +---+---+--+--+---+--++---+--+--+ 6 rows in set (0.00 sec) mysql> = Cheers, -Chris On 2/18/14 2:14 PM, Aki Tuomi wrote: SELECT * FROM records WHERE domain_id = ___ Pdns-users m

Re: [Pdns-users] Need help re: Remote tried to sneak in out-of-zone data ''|SOA during AXFR of zone

des auto_serial here: http://www.dwolfix.ru/uctanovka-i-nastroyka-dns-servera-powerdns.html and then altered tables to include this column. Had to do the same exercise to get the 'status' column included as well. Cheers, -Chris On 2/18/14 1:25 PM, Aki Tuomi wrote: SELECT * FRO

Re: [Pdns-users] Need help re: Remote tried to sneak in out-of-zone data ''|SOA during AXFR of zone

uilt correctly. I just added another new domain and am seeing the same condition. -Chris On 2/18/14 10:48 AM, Peter van Dijk wrote: SELECT * FROM records WHERE domain_id=457 AND type='SOA'; ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com http://mailman.powerdns.com/mailman/listinfo/pdns-users

[Pdns-users] Need help re: Remote tried to sneak in out-of-zone data ''|SOA during AXFR of zone

+---+--+--+ 1 row in set (0.00 sec) = A lookup of the SOA record on the master works great, so I'm not sure what exactly the slave is complaining about. Any help, pointers, clue-bat, etc are greatly appreciated. Cheers, -Chris ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com http://mailman.powerdns.com/mailman/listinfo/pdns-users

[Pdns-users] PDNS Authoritative DNSSEC Question

Hi list, I am playing around with DNSSEC and I seem to have created a strange problem for myself. I am using PDNS 3.3-1 on Debian with the generic SQL backend and a MySQL database. The schema I was using previously didn't match the recommended one in the documentation, the 'type' column didn

Re: [Pdns-users] where cvn and lua postresolve in 3.4-pre

> This is caused by firewalling on our end. It does not indicate any problems. I suppose that would depend on your position in regards Path MTU. One of the modern wonders of t'internet. Chris Knowledge I.T. 'Unifying Business Technology' www.knowledgeit.co.uk Knowledg

Re: [Pdns-users] [Help] - PDNS stop suddenly after every night

HI Vinh, Is this the authoritative or recursive server ? if its authoritative which backends are you using and which version ? Thanks Chris From: pdns-users-boun...@mailman.powerdns.com [mailto:pdns-users-boun...@mailman.powerdns.com] On Behalf Of Ð?c Vinh H? Sent: 29 March 2012 03:52

[Pdns-users] Looking for speakers on DNS-related topics

x27;ve put some suggested topics there on the meetup page, but I'm open to anything in this area. If you're going to be in the Bay Area on that date, and could give a talk, please contact me through that meetup, or at cwestin (at) yahoo (dot) com. Thanks! Chris Westin _

Re: [Pdns-users] Fwd: Re: Recursion when Powerdns auth servers is SOA

just haven't gotten to completing it yet. Sort of a "also ask this DNS server" backend. Cheers, Chris On Tue, Jan 10, 2012 at 6:44 PM, Rory Toma wrote: > I noticed I failed to reply to the list... > > > Original Message Subject: Re: [Pdns-users] Recursio

[Pdns-users] Updating PDNS from outside local netword

Hi All, I have recently set up a PDNS server on CentOS 5.7 and I am wanting to configure it to receive updates from devices outside my local network, is there an easy Howto somewhere? TIA, Chris ___ Pdns-users mailing list Pdns-users

Re: [Pdns-users] PowerDNS in an ISP environment

of our domains over to a dual-stacked pdns setup as a trail. Barring a few install issues which Bert resolved within half an hour or so (literally), it's been fine. The scaling was the interesting bit, a few thousand is more than enough for now :) Thanks Chris Knowledge I.T. '

Re: [Pdns-users] PowerDNS in an ISP environment

idn't really fill me with confidence on that score either. I have a scripted translation engine but really moving forward I wanted some direct integration. Thanks for replying, much appreciated. Chris Knowledge I.T. 'Unifying Business Technology' www.knowledgeit.co.

Re: [Pdns-users] pdnssec secure-zone failing

Hi Eric, Might seem like a few silly question, but do you have 'gpgsql-dnssec' set in pdns.conf ? Cheers Chris From: pdns-users-boun...@mailman.powerdns.com [mailto:pdns-users-boun...@mailman.powerdns.com] On Behalf Of Eric Sent: 16 August 2011 09:10 To: pdns-users@mailman.po

Re: [Pdns-users] PowerDNS in an ISP environment

d on these lists which your response is a fine example of which says how good the commercial support would be. We may go down that route but I think their feedback is really more just about a name. My direct manager knows Bind, so I have to justify "not bind", if you see what I mean

[Pdns-users] PowerDNS in an ISP environment

es so I can get this over the line :) Cheers Chris Knowledge I.T. 'Unifying Business Technology' www.knowledgeit.co.uk Knowledge Limited, Company Registration: 1554385 Registered Office: New Century House, Crowther Road,

Re: [Pdns-users] PDNS recursor Dual Stack

Hi Chris, I've disabled iptables and ip6tables, and get the same result. The allow_from = 127.0.0.0/8, 10.247.2.0/24, ::1/128, fe80::/10, 2001:470:{}:fa2::/64 local_address = 10.247.2.2,2001:470:{}:fa2::2 (Partially removed the IPv6 address for security reasons) T

Re: [Pdns-users] Potentially Silly Question! - auth server, dns-(non) sec + sec.

> Alright so i think we're getting closer to the culprit. You will need > to have the auth field set to '1' i.e. True for most if not all Yes, I knew it was RTFM :-/ .. this sorted the issue. Many thanks for your time looking into this Stefan, and also Bert Thanks

Re: [Pdns-users] PDNS recursor Dual Stack

Hi Chris, Is the firewall disabled ? What are the contents of your allow_from and local_address lines ? Thanks Chris From: pdns-users-boun...@mailman.powerdns.com [mailto:pdns-users-boun...@mailman.powerdns.com] On Behalf Of Chris Hesselrode Sent: 22 July 2011 06:11 To: pdns-users

[Pdns-users] PDNS recursor Dual Stack

When setting pdns recursor to use an IPv4 and IPv6 address (comma separated in local-ip) the server doesn't respond to queries over IPv6. Any quick tips to look at? Thanks Sent via Wireless ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com ht

Re: [Pdns-users] Potentially Silly Question! - auth server, dns-(non) sec + sec.

o DNS-SEC related records exist when the g-mysql backend is set to gmysql-dnssec ? Or am I stuck with PDNS serving DNS-SEC enabled zones, OR non DNS-SEC enabled zones but not both :-/ Cheers Chris Knowledge I.T. 'Unifying Business Technology' www.knowledgeit.co.uk Knowledge Lim

Re: [Pdns-users] Potentially Silly Question! - auth server, dns-(n on) sec + sec.

Hi stefan Have Dns sec working without issue its the non sec which isn't R Thanks Chris --- original message --- From: "Stefan Schmidt" Subject: Re: [Pdns-users] Potentially Silly Question! - auth server, dns-(non) sec + sec. Date: 21st July 2011 Time: 6:21:57 pm On Thu, Ju

Re: [Pdns-users] Potentially Silly Question! - auth server, dns-(non) sec + sec.

-dbname=y gmysql-nonsec-password=z Have to be missing something silly here. Cheers Chris -Original Message- From: pdns-users-boun...@mailman.powerdns.com [mailto:pdns-users-boun...@mailman.powerdns.com] On Behalf Of Chris Russell Sent: 21 July 2011 17:38 To: zaph...@zaphods.net Cc

Re: [Pdns-users] Potentially Silly Question! - auth server, dns-(non) sec + sec.

le.com|1): please run pdnssec rectify-zone wibble.com Im guessing as I have gmysql-dnssec set, its assuming all zones are DNS-SEC enabled. So the question then becomes, can I run 2 gmysql backends, one for sec one for not. Docs don't really tell me this, especially preferabl

Re: [Pdns-users] IPv4 and IPv6 sockets at the same time

Hi Martin, Actually, as a confirm, we have allow_from set specifically too. So +1 to it being the local nets. Cheers Chris > Line 123 in pdns_recursor.cc defines the default allow-from rules: #define LOCAL_NETS "127.0.0.0/8, 10.0.0.0/8, 192.168.0.0/16, 172.16.0.0/12, ::1/128, f

Re: [Pdns-users] IPv4 and IPv6 sockets at the same time

Hi Martin, This may be your version and/or setup. As a side note, strongly recommend you upgrade to Centos 6, as the ipv6 code in the kernel provided with Centos 5 doesn't perform ipv6 connection tracking properly in terms of the firewall. Does work fine but you need to allow more than you sh

[Pdns-users] Potentially Silly Question! - auth server, dns-(non) sec + sec.

? if so, how :) Using pdns-static-3.0rc3.20110719.2239-1, fairly standard options (gmysql-dnssec) - with the auth field set to 0, I can return an SOA, but no A records for non auth domains. Cheers Chris Knowledge I.T. ‘Unifying Business Technology’ www.knowledgeit.co.uk Knowledge Limited

Re: [Pdns-users] PowerDNS Authoritative Server 3.0-rc3 (FINAL!) released

> If he also can document (in detail!) the process of building these packages, > we will appreciate that! This will enable other people to +1, like Nick I've tried before to do this and struggled every time. Cheers Chris Knowledge I.T. ‘Unifying Business Technology’ www.knowle

Re: [Pdns-users] 4th level names and SOA records

VER: 216.218.130.2#53(216.218.130.2) ;; WHEN: Thu Jul 14 13:17:55 2011 ;; MSG SIZE rcvd: 137 Chris Hesselrode | Principal / President Phoenix Knowledge Ventures, LLC PO Box 342 Maricopa, AZ 85139 P. 602.635.2355 M. 480.212.6232 F. 480.248.2769 E. chris.hesselr...@phoenixkv.com W. http://www.phoen

Re: [Pdns-users] PDNS devel and weird IPv6 log entries

the relevant ipv6 connection tracking code. Believe this was introduced in 2.6.20, but it means you need to allow any possible return traffic manually. Cheers Chris Knowledge I.T. 'Unifying Business Technology' www.knowledgeit.co.uk Knowledge Limited, Company Registration: 15543

Re: [Pdns-users] Disabling DNSSEC on a Domain

. Thanks Chris Knowledge I.T. 'Unifying Business Technology' www.knowledgeit.co.uk Knowledge Limited, Company Registration: 1554385 Registered Office: New Century House, Crowther Road, Washington, Tyne & Wear.

Re: [Pdns-users] Small site backend recommendations

werDNS and how. That said though, the list is very helpful :) Cheers Chris -Original Message- From: pdns-users-boun...@mailman.powerdns.com [mailto:pdns-users-boun...@mailman.powerdns.com] On Behalf Of Charles Sprickman Sent: 12 May 2011 08:37 To: pdns-users@mailman.powerdns.com Subject

  1   2   >