[Pdns-users] ixfrdist and AA flag when querying for SOA record

considering its main usage of zone transfer, that it does not handle the 'AA' flag the same way the backend pdns server acts ? Or am I not using ixfrdist like it should ? Thanks in advance for your advices -- David ___ Pdns-users mailing li

[Pdns-users] auth-zone loading time

Hi, i have huge zone files (auh-zones) that take a really long time to load. i guess this is due to the data structure pdns-recursor produces in memory. Is there any way to speed it up?  Thanks! Pete.___ Pdns-users mailing list Pdns-users@mailman.powe

[Pdns-users] DDoS attack with random A requests causes SQL backend overload

lete zone in case we are encountering a random generated dns attack on our authorative DNS servers? Thank you, David ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users

[Pdns-users] DNSSEC : One key by client to update only this client's dynamic A record

record A.dyndns.xxx.com - B would like B.dyndns.xxx.com - A must be able to update A.dyndns.xxx.com and only this record - Same for B. Can someone give me an hint, an URL to achieve that with pdns please ? Did I miss something in the doc ? Thank you very much, Best regards, -- David J

[Pdns-users] Building a RBL with Powerdns

Hi, i am using Pdns-recursor to build a RBL with auth-zones Is there any way to use IPs-ranges instead of IPs one by one in the auth-zone files? Thx in advance! Pete. ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerd

Re: [Pdns-users] Internal DNS for .LAN Domain

The “name” field must be the full hostname that ends with the domain name to be valid. Here’s an example from a working zone: MariaDB [powerdns]> select * from domains limit 1; ++++++-+-+-+ | id | name | master | last_

Re: [Pdns-users] pdns-recursor and local cache

Hi Brian... RPZ is exactly what i was looking for...   i will try it! Thanks a lot! Pete. On Thursday, December 12, 2019, 7:14:22 PM GMT+1, Brian Candler wrote: On 12/12/2019 17:53, Pedro David Marco via Pdns-users wrote: > i am using pdns-recursor and would like it to have lik

[Pdns-users] pdns-recursor and local cache

Hi! i am using pdns-recursor and would like it to have like a local cache that can be read from a file. i know pdns-recursor can read /etc/hosts file to serve entries from it before trying to reolve them... is this the best way? will it work ok for a huge hosts file? Thanks! Pete. __

Re: [Pdns-users] Using setRules() in dnsdist

On 2019-09-24 7:26 p.m., Steve Shipway wrote: Hi all; I am having problems successfully using the setRules() function in dnsdist; probably I have incorrect syntax but the documentation is no help.  The documentation I have appears to suggest I pass the function an array of rule structures genera

[Pdns-users] DNSDist checkInterval qustion

Hi, I have changed the checkInterval parameter to 30 but DNSDist keeps cheking servers every 1 second (the default value).   I have set it this way: newServer({address="192.168.3.183", order=1, checkInterval=30}) do i have to do anything else to set the interval checks time? Thanks! Pedro. __

Re: [Pdns-users] DNSdist cache question

Hi Remi... thanks a lot... you are right... i was testing against a domain with ridiculous TTLS... Thanks again! Pedro. On Wednesday, September 18, 2019, 10:27:39 AM GMT+2, Remi Gacogne wrote: Hi, On 9/17/19 8:38 PM, Pedro David Marco via Pdns-users wrote: > i am new with DNSd

[Pdns-users] DNSdist cache question

Hi all, i am new with DNSdist and it works like a charm... what a great software!   i have a doubt about its cache: I have set parameters newPacketCache with 86400, 0, 60,  60, true      The cache seems to work OK but it seems TTL is only some seconds. After this time, it seems a query about a hos

[Pdns-users] Recursor : Lua & udpQueryResponse questions

esolver executes the udp server call again, and 1H is my default "packetcache-ttl" value. Maybe it's the wanted behaviour because I use the "nxdomain" hook ? Is there an implementation that may put my answer in the Record Cache (with respe

Re: [Pdns-users] How to switch between two different "zone" files for the same domain?

The backend is going to determine what can be done and I am not seeing that below. There are many option depending on how complex the changes are in that zone in the DR site. If you have a similar IP subnet scheme in a /23 or /24 with the same 4th octet and the backend is a database, then a sc

[Pdns-users] Investigating performance in pdns-recursor

Hi... How can i know whether i have a bottleneck in pdns-recursor or not??? i have read pdns-recursor docs but i have not a clear idea... Thanks! -Pedro___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mail

[Pdns-users] DNSSEC, wich key for the registrar

DS (SHA1 digest, SHA256 digest, SHA-384 digest) ? Thanks for the help. David REYNAUD ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users

[Pdns-users] PDNS-Recursor cache and forwarding-all-queries

Hi,  Please excuse me if my questions seem too basic... is it possible with PDNS-Recursor to forward "all queries" to another server???   in this scenario, does it queries its own cache before forwarding the query? Thanks! --Pedro ___ Pdns-users m

Re: [Pdns-users] Help with mydns backend

FYI, there are many ways to transfer the data from one DNS auth server into pdns. This method should work with any type of DNS master and is pretty simple to do without having to do direct database inserts that are tough to understand when first learning PowerDNS. Later on when PowerDNS has be

Re: [Pdns-users] dynamic-updates / NOTIFY-DNSUPDATE not taking effect

27;in.ena.net' to 96.4.0.36:53 (was acknowledged) Jan 06 05:06:04 pdns01 pdns_server[26930]: Removed from notification list: 'in.ena.net' to [2610:128:1200:ad::36]:53 (was acknowledged) Note that if you have IPv6 enabled on your servers, some of the communications will happen over IPv6 even if yo

Re: [Pdns-users] recursor getting ServFail from public DNS servers?

On 2018-09-28 4:40 PM, Mohamed Lrhazi wrote: I trying a new deployment, with PowerDNS Recursor 4.1.4 And I seem to be getting failures systematically for some records, such as this example : Sep 28 20:21:35 [8] mit.edu : initial validation status for mit.edu i

[Pdns-users] PDNS AUTH GeoIP BACKEND with Maxminf MMDB files

Helo, To use Maxming GeopIP2 database (MMDB files), we must use PowerDNS Auth. 4.2 version Found here : https://doc.powerdns.com/authoritative/backends/geoip.html But i cannot find the 4.2 version. I've tried to install PowerDNS AUTH Debian package from branch 'master' using the guide below (o

Re: [Pdns-users] recursor 4.0.4 and SERVFAIL

On 2018-09-10 9:41 AM, bitsof info wrote: Thanks Bert 1. Yes the setting was done via the console on a running server with the command below rec_control trace-regex 'api.my.domain.com.$|some.other.address.domain.com.$' 2. the recursor.conf has "#trace=yes" comented out, but not sure if thi

Re: [Pdns-users] rec_control reload-zones undocumented behavior, POLA breakage

On 2018-08-23 8:59 AM, Peter van Dijk wrote: Hello Steinar, On 20 Aug 2018, at 12:20, sth...@nethelp.no wrote: - Zone removed from the list in forward-zones-file: Forwarding takes effect immediately *for names not in the PowerDNS cache*. For names in the PowerDNS cache, forwarding doesn't take

Re: [Pdns-users] AXFR chunk error: Server Failure

On 2018-08-20 8:03 AM, Brian Candler wrote: On 20/08/2018 15:00, Steve Rose wrote: masters { 192.168.0.5; }; "masters" has to point to the authoritative server. Try: masters {   192.168.0.5 port 5300; }; Possibly relevant: https://github.com/PowerDNS/pdns/issues/6240

Re: [Pdns-users] causes of over-capacity-drops

On 2018-08-15 3:11 AM, mendisobal via Pdns-users wrote: Hi, I use pdns-recursor (4.1.2-1pdns.xenial, Ubuntu 16.04.5 LTS), it serves 700 qps. Several times a day the over-capacity-drops counter increases to 12 qps at this time the concurrent-queries counter does not increase. Please tell me the

Re: [Pdns-users] Replacing only certain records

On 2018-06-11 4:01 PM, Jack Rabbit wrote: I've asked in IRC but was instructed to ask here. [snip a ton of stuff] Is there a way to have, say, the recursor query 8.8.8.8 if 1.1.1.1 returns an NXDOMAIN for a record? Or the auth return a record from 8.8.8.8 if it doesn't find the record in

Re: [Pdns-users] PDNS inconsistent behavior for SOA record

On 2018-06-05 9:57 AM, Anthony fajri wrote: Hi Expert, we are using PDNS for our 3GPP DNS Server. we are using PDNS 2.9.22.6 on Centos 5. we want to achieve following objective: - to return TTL of SOA record as 60s for specific IP - to return TTL of SOA record as 7 days for all IP our configura

[Pdns-users] Issue while using LUA on recursor: STL error Trying to cast a lua variable from "nil" to "b"

Hi all When using the LUA script i have the following error, and the service did not answer to any query ay 1 18:13:59 dhcp pdns_recursor[242409]: Got question for www.ibm.com. from 192.168.1.214 to 192.168.1.144 May 1 18:13:59 dhcp pdns_recursor[242409]: STL error (www.ibm.com/A from

Re: [Pdns-users] rec_control dump-cache not dumping to file

On 2018-04-24 1:37 PM, Eric Raymond wrote: Aloha, I have found this to be not working in 4.1.X releases, and havent tried in any other branch. Perhaps I am misunderstanding the command, but it appears to do nothing # rec_control dump-cache /tmp/cache-dump dumped 1970 records # ls -l /tmp/cac

Re: [Pdns-users] (PDNSException): Database failed to start transaction: Could not execute mysql statement

On 2018-02-13 10:57 AM, Steve Zeng via Pdns-users wrote: I have our DBAs looked into this and got some findings and feedback: I see an deadlock for: (1) = delete from records where domain_id=217 (2) = delete from records where domain_id=217 So something tries to delete everything for domain=2

Re: [Pdns-users] Recursor LUA - trigger additional lookups

On 2018-02-12 9:31 AM, Radosław Ejsmont wrote: Yeah, know that you can set it for each client (Linux/Windows/macOS). My problem is many mobile clients (iOS) where setting this up is impossible. And Netflix / Amazon / whatever becomes an issue... so network-wide solution would be cool! What

Re: [Pdns-users] Intermittent recursion failure due to timeout

On 2018-01-23 2:00 PM, Brian T wrote: My recursor config has 'network-timeout' set to 5500ms (instead of the default 1500ms), so I can understand the "timeout resolving after 5535.35msec" message, but I was surprised by the timestamps of the messages all being the same.  Are these messages fl

Re: [Pdns-users] Quick question re: recursing rfc-1918 in.addr.arpa

n't want to have to keep adding /24s as it'll be a LONG list and change pretty regularly... 19.40.10.in-addr.arpa=216.115.0.5, 216.115.0.10 On Mon, Jan 8, 2018 at 1:43 PM, David wrote: On 2018-01-08 2:01 PM, Richard Holbo wrote: Am fairly new to PDNS, have 4 auth and 4 recursive serve

Re: [Pdns-users] Quick question re: recursing rfc-1918 in.addr.arpa

On 2018-01-08 2:01 PM, Richard Holbo wrote: Am fairly new to PDNS, have 4 auth and 4 recursive servers setup. rfc1918 zones in the authoritative servers work as expected. RFC1918 in the recursors works appropriately if I have a forward statement of: 1.2.10.in-addr.arpa=1.2.3.4, 2.2.3.4 However

Re: [Pdns-users] PDNS Server migration - Using AXFR to a Slave-Capable Backend

On 2017-11-16 2:07 AM, Mislav | SysAdmin wrote: Hi. I've the following setup: 1) pdns server version 3.1 - with mysql backend 2) pdns server version 4.1.0 - with mysql backend What I'm trying to do is: - replace version 3.1 with 4.1.0 and I've installed clean version of 4.1.0 to a new server and

Re: [Pdns-users] pdns-recursor 3.7.4 on Redhat Linux always returns SERVFAIL for AAAA lookups

On 2017-08-16 10:29 AM, David wrote: On 2017-08-16 10:15 AM, Brian Candler wrote: On 16/08/2017 17:11, Kenneth Marshall wrote: I am investigating a caching problem and the cause is that the 3.7.4 recursor returns a SERVFAIL error for a lookup. The record does not exist, but an A

Re: [Pdns-users] pdns-recursor 3.7.4 on Redhat Linux always returns SERVFAIL for AAAA lookups

On 2017-08-16 10:15 AM, Brian Candler wrote: On 16/08/2017 17:11, Kenneth Marshall wrote: I am investigating a caching problem and the cause is that the 3.7.4 recursor returns a SERVFAIL error for a lookup. The record does not exist, but an A record does. It seems from your lua scrip

Re: [Pdns-users] CAA records again

On 2017-08-14 1:41 PM, Curtis Maurand wrote: Yesterday, I had caa records working. At least the server was returning something. In my work to get dnssec working, I've managed bread CAA support somehow. Now,even though the record exists, the server does not return a response. Did you query f

Re: [Pdns-users] PowerDNS and CNAMEs

On 2017-07-21 11:07 AM, Rune Sørensen wrote: I'm running pdns-server, as you guessed. I only enabled recursion, because nslook complained when I hadn't enabled it. Would it be better to try to set up a recursor in front of pdns-server, and then disable recursion on the server? If you need this

[Pdns-users] DNSSEC replication

For various reasons we do not want to use mysql replication to keep several authoritative PowerDNS servers in sync. We are in process of implementing DNSSEC. Up until now, we have used zone2sql to generate a SQL file, which we load into each of our PowerDNS servers, and then run 'pdns_control pur

Re: [Pdns-users] Fwd: Manage PowerDNS by pdnsAdmin

On 2017-06-05 1:51 PM, Fabian A. Santiago wrote: Hello, did anyone else on the list receive this announcement from this group's own Mail Chimp list campaign? does anyone know anything about this product? or has used it? I got it as well and already reported it as spam to mail chimp. Likely

[Pdns-users] TCP nameserver had error

I have PowerDNS hidden masters (MASTER) managed by PowerAdmin/PowerDNS API using MySQL replication with PowerDNS public slaves that use NOTIFY/AXFR (SLAVE).  Every day or two I get this in my hidden master logs when they have just sent a NOTIFY and the public slave tries to do the AXFR: May 17

Re: [Pdns-users] PowerDNS API and RFC in relation to CNAMEs

>From: Pdns-users >on behalf of Pieter Lexis >This smells like a bug in the API (as `pdnsutil check-zone` will complain >about it). Can one of you open a bug report on github about this[1]? Done. https://github.com/PowerDNS/pdns/issues/5305 Dave ___

Re: [Pdns-users] PowerDNS API and RFC in relation to CNAMEs

>From: Pdns-users >on behalf of Diego Bellini >Morning! >Does anyone have any suggestion for me?   I have noticed the same thing. We have some developers writing an internal interface to manage our PowerDNS via the API and I also noticed that the API allows this when it shouldn't. Dave >Cheer

Re: [Pdns-users] How To Configure PowerDNS

>From: Pdns-users >on behalf of Roberto Quiñones >Hi, I'm sorry for the inconvenience, I've tried to install powerdns >in centos 7 following a document, but this does not help me with >the part of if I want to replicate the zones to a secondary (slave) >server. Given this I do not know if in cen

Re: [Pdns-users] Delegation not working

On 2017-05-04 4:05 AM, Julian Kippels wrote: Hi, I am using powerdns 3.4.11 with postgres authorative backend and recursor 3.7.4 as a slave to another DNS server. I have set up my main domain and would like to delegate all traffic for a subdomain to yet a different nameserver (Active Directory).

Re: [Pdns-users] Notify being ignored

From: Pdns-users on behalf of Fabian A. Santiago   >On May 4, 2017 6:15:35 AM EDT, Remi Gacogne wrote: >>On 05/04/2017 12:09 PM, Fabian A. Santiago wrote: 'allow-notify-from' defaults to '0.0.0.0/0,::/0', which allows everything. Of course additional checks are performed afterward

[Pdns-users] Notify being ignored

I have a PowerDNS server setup as a slave and see this in my logs constantly: Received NOTIFY for example.com from 1.2.3.4 but remote is not permitted by TSIG or allow-notify-from I was hoping to not have to maintain a long list of master IPs in the allow-notify-from. One would think that the

Re: [Pdns-users] Anycast DNS

On 2017-05-03 8:22 AM, Mark Scholten wrote: Hello Alejandro, Based on my limited experience with anycast and DNS. So please correct me if I’m wrong. - You don’t need to migrate to a different backend for anycast. - EDNS is not a requirement for anycast. It's a require

Re: [Pdns-users] Override some records

Of course, but we have thousands of machines and we want to manage these records centrally. Ideally not in a hosts file, but in a nice GUI and a database with replication. Le Jeudi 27 avril 2017 11h43, Palm Internet a écrit : Hi David  If you are using a Windows system on the

[Pdns-users] Override some records

Hi all, We own a few domains for which our ISP is authoritative (let's say domain1.com & domain2.com). So it serves public IP addresses. We also have two internal DNS resolvers in our DMZ (192.168.10.0/24). We would like them to resolve internet, but also fake some records in domain1.com & domai

Re: [Pdns-users] Using zone2sql with internal and external views

>Hi, >I am trying to use zone2sql to migrate from BIND 9.6 to PowerDNS >3.4.11. My named.conf looks like this: I recommend setting up the pdns server as a slave to the BIND master to do the migration. Put the pdns server IP in the global also-notify. Setup the pdns server as a superslave to the

Re: [Pdns-users] Zone transfer from previous DNS (Google domains)

>From: Brian Candler >Sent: Thursday, April 13, 2017 10:42 AM >To: David Jones; Fabian A. Santiago; pdns-users@mailman.powerdns.com >Subject: Re: [Pdns-users] Zone transfer from previous DNS (Google domains)   >On 13/04/2017 16:22, David Jones wrote: >> It would be nice

Re: [Pdns-users] Zone transfer from previous DNS (Google domains)

>From: Pdns-users on behalf of Fabian >A. Santiago > >Sent: Thursday, April 13, 2017 9:47 AM >To: pdns-users@mailman.powerdns.com >Subject: [Pdns-users] Zone transfer from previous DNS (Google domains) >Would anyone here have any idea on how to zone transfer all records for >a particular domain

Re: [Pdns-users] pdns-recursor issue with resolving domains which placed on ns*.domaincontrol.com name servers

On 2017-02-20 2:00 PM, Максим Подлесный wrote: In the log we had only: Sending SERVFAIL to 127.0.0.1 during resolve of '9p.com .' because: Too much time waiting for 9p.com.|A, timeouts: 1, throttles: 0, queries: 4, 6497msec dig works fine but slow (about 5-6 sec for this domains)

Re: [Pdns-users] DiG _trace: no response, no fail, nothing

On 2017-02-16 6:29 PM, stancs3 wrote: I have seen this problem posted in various places over the years. It is not clear if it is a bug, a bad config, or just non-functional. https://github.com/PowerDNS/pdns/issues/4353 In your case (auth pointing to recursor) is a fairly broken config to beg

Re: [Pdns-users] Fwd: pdns authoritative SERVERFAIL

On 2017-02-15 8:17 AM, Federico Olivieri wrote: Hi everybody, I have started to look into PDNS Authoritative and i have manage to install it with MYSQL support. My actual set-up is the following dnsdist:53 --> authoritative:5353 --> recursor:5300 This is normally a bad idea. If you need to s

Re: [Pdns-users] how to ignore the warning

On 2017-02-13 7:57 AM, Bill Yuan wrote: Hi, I using an old version of pdns recursor, and I got below message in var/log/message pdns_recursor[1308]: PowerDNS Security Update Mandatory: Upgrade now, see https://doc.powerdns.com/3/security/powerdns-advisory-2016-02/ my question is how to ignore

Re: [Pdns-users] how to ignore the warning

>From: Pdns-users on behalf of Bill >Yuan >Sent: Monday, February 13, 2017 8:57 AM >To: pdns-users@mailman.powerdns.com >Subject: [Pdns-users] how to ignore the warning >Hi, >I using an old version of pdns recursor, and I got below message in >var/log/message  >pdns_recursor[1308]: PowerDNS S

Re: [Pdns-users] need recommendations of PowerDNS web based GUI tool

PowerDNS-Admin is pretty nice but it doesn't have some features we need. It should be the first one you try out and should be fine for most. We are currently using a locally patched version of PowerAdmin that is pretty old but does the job. The project is dead. We are working on our own DNS M

Re: [Pdns-users] PDNS 4 0 0-alpha2 Hit and Miss

On 2016-12-19 11:00 AM, Palm Internet wrote: Hi Brian Here is the result pdnsutil check-zone derbyshireweddingevents.co.uk Error: stou David has asked if I followed all the steps to upgrade the database. On an apt-get install from the repo, all it does is create a new database on the local

Re: [Pdns-users] PDNS 4 0 0-alpha2 Hit and Miss

On 2016-12-19 10:03 AM, Palm Internet wrote: Hi Brian Here is the result pdnsutil check-all-zones Checked 0 zones, 0 had errors. Where am I going wrong with this ? All domain info is stored in the database in the table called records You followed all the database upgrade steps require

Re: [Pdns-users] Possible bug regarding the storage of records including a "._"

On 2016-12-13 2:10 PM, James Watson wrote: Hi, Using 4.0.1 Authoritive server on 16.04 Ubuntu with MySQL backend. Check out https://doc.powerdns.com/md/authoritative/backend-generic-sql/ and search the page for "empty" you will find a description of what is being done and why. I have a

Re: [Pdns-users] throttled-outqueries

On 2016-10-28 2:11 AM, Alejandro Adroher Mellado wrote: Thanks David, Yes we have dnsdist in front of the recursor, and some scripts detecting those SERVFAILS and redirecting all those queries to the abuse pool(dnsdist) in which we have QPS restrictions. (all of that trying to deal with the

Re: [Pdns-users] throttled-outqueries

On 2016-10-11 9:05 AM, Alejandro Adroher Mellado wrote: Hi all, I'm interested in how can I investigate in deep the throttled out queries. We have an open recursor due to business needs and during the last weeks we are answering a lot of SERVFAIL for random queries like web-127.com . (all o

Re: [Pdns-users] Changes between versions

On 2016-09-20 11:26 AM, Yves Goergen wrote: Thanks for the info. Strange that Ubuntu has decided to do such nonsense for a stable distribution. Good to check what you'll get before you get it. Is it enough to add that repository to my package sources before doing the dist-upgrade? I haven't seen

Re: [Pdns-users] PowerDNS Recursor does not provide correct answer to Postfix

On 2016-08-18 8:37 AM, Pieter Lexis wrote: Hi Michael, On Thu, 18 Aug 2016 14:20:25 + Michael wrote: Last week I updated to Ubuntu 16.04. So I have a new Postfix version (3.1.0) as well as a new pdns_recursor version (4.0.0-alpha2). Since this update Postfix does not receive correct answ

Re: [Pdns-users] PowerDNS Recursor 4.0.0 Beta 1 released

On 2016-05-27 8:15 AM, Pieter Lexis wrote: 1 - https://doc.powerdns.com/md/changelog/#powerdns-recursor-400-beta1 2 - https://downloads.powerdns.com/releases 3 - https://downloads.powerdns.com/releases/powerdns-recursor-4.0.0-beta1.tar.bz2 4 - https://downloads.powerdns.com/releases/powerdns-

Re: [Pdns-users] why self-notification?

On 2016-05-18 1:33 PM, geohei wrote: Hi. I read your link about publishing real FQDNs an IPs, however I'm very reluctant to this ... I explain ... I'm not the super pro (as you noticed already) in this subject and I don't really know about the full range of potential consequences. I see already

Re: [Pdns-users] Powerdns Problem with Delegation to Isilon.

On 2016-03-23 11:31 AM, syaginf wrote: Are you suggesting to run recursor on 53 PDNS on port 8699 and have nodes talk to recursor directly? What would forward-zones= will look to make recursor ask pdns about .hpc addresses? This is how most people would do it; yes. forward-zones=hpc.=127.0

Re: [Pdns-users] Powerdns Problem with Delegation to Isilon.

On 2016-03-23 9:03 AM, syaginf wrote: What is interesting with forward-zones=isilon.hpc=192.168.3.0 set if I do dig and point to recursor dns and port - I get the A record I need. But when I ask PDNS server i don't get A record. So it seems like I need to do something that would make PDNS ask rec

[Pdns-users] Performing recursive lookup within Lua

NS to just return the PTR record, or can I do a query for the 10.51.x.y PTR inside Lua and just respond with that record? If there is a better way to accomplish what I’m intending, I’m open to suggestions! Thanks= David ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com http://mailman.powerdns.com/mailman/listinfo/pdns-users

Re: [Pdns-users] Comments requested regarding autoserial

I use Python to update the pdns database from other sources and it has to calculate and update the serial. We use PowerAdmin as well which does the same thing. It would be better if this were internal to pdns to centralize it for consistency. We may end up writing our own web administration f

[Pdns-users] DNS DDoS protection

Hi, We are using PowerDNS to provide authoritative DNS to 14k domains. We have many hosting servers with BIND transferring zones to our two public PowerDNS servers. This solution is working great, but we want to be ready in case we get a big DDoS. The network of each server will not be able

[Pdns-users] PDNS recursor 3.6.0 won't start with previous conf settings

Recently our pdns-recursor servers updated from 3.5.3 to 3.6.0 from the EPEL repo. The daemon would not start due to the existing /etc/pdns-recursor/recursor.conf having these two settings: -additional-processing=on additional-processing=on I found this in the release notes: https://git

Re: [Pdns-users] Updated PDNS to Current, Now What?

?Normally you should compare your active pdns.conf to the pdns.conf.rpmnew to see if there are any new features/options added. Use "diff pdns.conf pdns.conf.rpmnew" to get the differences then ignore the same options that merely have your specific settings on the right side of the equals sign.

Re: [Pdns-users] domainmetadata ALSO-NOTIFY appears to not work?

Sorry, my mistake; it turns out I hadn't in fact successfully tried pgpsql-dnssec - including that in my pdns.conf worked like a charm. Thanks again, David On Thu Mar 13, 03:55pm -0400, David B Harris wrote: > Good afternoon all, > > I'm deploying PowerDNS for the firs

[Pdns-users] domainmetadata ALSO-NOTIFY appears to not work?

Mar 13 15:40:05 apricot pdns[7206]: Error trying to resolve '2001:1838:f001::10' for notifying 'foocorp.com' to server: Unable to send notify to [2001:1838:f001::10]:53: Network is unreachable ^C [ dbharris@apricot: /var/log/ (1)]$ date Thu Mar 13 15:

[Pdns-users] allow-axfr-ips referencing external list.

Hi, Is it possible to point "allow-axfr-ips" at an external text file that lists allowed IP's ie one IP per line? I have several hundred clients that change fairly regularly. Admin would be easier if the IP's were in an external file

Re: [Pdns-users] powerdns 3.1 + gcc 4.6 on ubuntu 12

This was based on pdns-3.1.tar.gz I was able to fix that specific issue by running libtoolize in the root pdns-3.1/ directory. After that it compiles fine. On Oct 3, 2012, at 1:08 AM, bert hubert wrote: > On Tue, Oct 02, 2012 at 03:45:03PM -0700, David Hawthorne wrote: >> H

[Pdns-users] powerdns 3.1 + gcc 4.6 on ubuntu 12

Have y'all noticed issues getting it to compile? I see this: :~/powerdns/modules/pipebackend$ make /bin/bash ../../libtool --tag=CXX --mode=compile g++ -DHAVE_CONFIG_H -I. -I../.. -pthread-D_GNU_SOURCE -Wall -O2 -MT pipebackend.lo -MD -MP -MF .deps/pipebackend.Tpo -c -o pipebackend.lo pi

[Pdns-users] positive responses getting NXDOMAIN set

I don't know how this is happening and I'm having a hard time tracing the logic in packethandler.cc (pdns-3.1) to find out. I'm getting positive responses with NXDOMAIN status: ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22185 ;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDI

[Pdns-users] unix socket explosions

Scenario: I'm testing a new backend that I've written and the actual backend isn't running properly so all queries are timing out. This is ok. I am noticing that under steady but slow request load, powerdns is spawning 2 new unix sockets every 5 seconds or so. I am now up to 1003 open sockets

[Pdns-users] throwing AhuException from module not working properly?

This is with pdns-3.1. I'm throwing AhuExceptions in my module under the assumption that the docs in dnsbackend.hh are correct, and it's not causing the backend object to be destroyed and recreated. docs from dnsbackend.hh: More serious errors, which may indicate that the database connecti

[Pdns-users] edns subnet response not as expected

When I send a request with dig +client=123.123.123.123, I always get a response witha netmask of /1: ; CLIENT-SUBNET: 123.123.123.123/32/1 I can't find a way to change that /1 to something else. Google returns a /19 there. Shouldn't this be a configurable? see more at: http://wilmer.gaa.st/e

[Pdns-users] Newer snapshot of pdns-recursor 3.4 before final release ?

2011 snapshot has at least one problem (fetching cache-bytes counter leads to timeout with rec_control), I was wondering if there was any other intermediate snapshot that should be tested ? Thanks in advance for your advices ! -- David Gavarret ___ Pdns-

Re: [Pdns-users] DNSSEC on PowerPC64 machine

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi, On 07/Mar - 11:59, Peter van Dijk wrote: >| Hello David, >| >| On Mar 6, 2012, at 23:50 , David BERARD wrote: >| >| > No-DNSSEC request work well, and each DNSSEC request make PowerDNS crash >with >| > message : >

[Pdns-users] DNSSEC on PowerPC64 machine

the same message. I also tried another backend (MySQL) with the same issue. Does anyone uses DNSSEC on a ppc/ppc64 without any issue ? Thanks, - -- David BERARD contact(at)davidberard.fr GPG|PGP KeyId 0xC8533354

Re: [Pdns-users] pdns 3.1-pre & pdns_control notify

On Wed, Feb 1, 2012 at 09:42PM, bert hubert wrote: > > On Mon, Jan 30, 2012 at 02:58:16PM +0100, GAVARRET, David wrote: > > > > After some manual updates, I tried to use the "pdns_control notify" command > > to > > send NOTIFY to 3rd part slave ser

[Pdns-users] pdns 3.1-pre & pdns_control notify

rvers do not reverse!"). What should I check to be sure my setup is not in default ? Thanks in advance, King regards, -- David Gavarret ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com http://mailman.powerdns.com/mailman/listinfo/pdns-users

[Pdns-users] Recursor 3.4-pre : rec_control get cache-bytes taking about 5sec after few hours running

-zones-file=/etc/powerdns/dns-resolver-forward-zones local-address=... max-cache-entries=1600 stack-size=25 threads=4 logging-facility=0 version-string=3.4-pre I can provide any other information if needed, Kind Regards, -- David Gavarret ___ Pdn

Re: [Pdns-users] Bad cache TTL with pdns-resursor

ecause we also encounter another irritative bug in version 3.3: when an authoritative server wrongly announces itself as authoritative for another domain :) (especially domains hosted on ns20.ovh.net, that answers itself as authoritative for google.com ;) ).

Re: [Pdns-users] Problem Tansfering Zones

Hello! Sorry all you guys, I just solved the problem j4son from IRC helped the problem was in my bind server. Thanks a lot! Jose David Bravo Álvarez ColombiaHosting S.A.S. - Gerente General jbr...@colombiahosting.com http://www.colombiahosting.com - Mensaje original - De: "

[Pdns-users] Problem Tansfering Zones

is running on: PDNS 2.9.21.1 CentOs 5.6 x 64 bits Please any help will be appreciated! Thanks a lot! Jose David Bravo Álvarez ColombiaHosting S.A.S. - Gerente General jbr...@colombiahosting.com http://www.colombiahosting.com ___ Pdns-users mail

Re: [Pdns-users] Recursor: Different answers for the same query

They don't share the same cache? What's the reasoning behind that? On Jan 26, 2011, at 1:55 AM, bert hubert wrote: > On Wed, Jan 26, 2011 at 10:32:19AM +0100, Christian Kuehn wrote: >> any idea why the pdns-recursor 3.3 gives different answers to the same >> query?? > > Hello!! ;-) > > You pro

Re: [Pdns-users] Can't make AXFR work with LDAP backend

> Hi, > > I never had problems with AXFR between powerdns authoritative server and > BIND9, but the problem was in Notify messages. > > You may want to read the threads: > > Can pdns (with ldap backend) be a master of BIND9 slave?: > > http://www.mail-archive.com/pdns-users@mailman.power

[Pdns-users] Can't make AXFR work with LDAP backend

ET packet and conclude something wrong occured. Note that the AXFR request do sometimes succeed (very rarely to be honest, I haven't seen one for a while). I may have missed something obvious, but I can't find it :-/ Anyone having a clue? Thanks, David Douard signature.asc Descripti

[Pdns-users] Load balancing with authoritative server

Hello I'll want to create a group of 3 authoritative server behind one load balancer and one ip address. 3 PowerDNS server and Mysql backend. Query from internet can be resolved by one or other server. But this server can also be a slave server. If one of this 3 servers get the notify from the

Re: [Pdns-users] Power DNS 2.9.22 compile error while running 'make' command

I ran into this on ubuntu as well, with all the dependencies properly installed tyvm. ../../rcpgenerator.cc: In member function ‘void RecordTextReader::xfrTime(uint32_t&)’: ../../rcpgenerator.cc:75: error: ‘sscanf’ was not declared in this scope ../../rcpgenerator.cc: In member function ‘void Re

Re: [Pdns-users] [recursor] configure could be more user-friendly

Just to weigh in on this, I'm compiling it on mac right now to see if I can find a missing header I already fixed in a local branch. I had to twiddle CPPFLAGS and LDFLAGS on the configure line to get it to know where macports installed boost: $ CPPFLAGS=-I/opt/local/include LDFLAGS=-L/opt/loca

  1   2   >