Re: [Pdns-users] Notify from master is not accepted

On Tue, Oct 08, 2024 at 05:25:29PM +0200, Roland Giesler wrote: > On 2024/10/08 07:43, Otto Moerbeek wrote: > > > What should I do to allow the changes onto PowerDNS? > > allow-notify-from only works on the network, by default a secondary > > zone still only allows notifi

Re: [Pdns-users] Notify from master is not accepted

On Tue, Oct 08, 2024 at 07:43:13AM +0200, Otto Moerbeek via Pdns-users wrote: > On Mon, Oct 07, 2024 at 06:30:56PM +0200, Roland Giesler via Pdns-users wrote: > > > I'm running my primary DNS on Power Mail-in-a-Box, which runs BIND9's NAMED > > and sends notificatio

Re: [Pdns-users] Notify from master is not accepted

On Mon, Oct 07, 2024 at 06:30:56PM +0200, Roland Giesler via Pdns-users wrote: > I'm running my primary DNS on Power Mail-in-a-Box, which runs BIND9's NAMED > and sends notifications when a domain's zone file changes. > > I have set PowerDNS's config to accept these from the LAN and Public ip of

[Pdns-users] PowerDNS Security Advisory 2024-04

ttps://repo.powerdns.com/ -- kind regards, Otto Moerbeek Senior Developer PowerDNS Phone: +49 2761 75252 00 Fax: +49 2761 75252 30 Email: otto.moerb...@open-xchange.com - Open-Xchange AG, Hohenzollernring 72, 5

Re: [Pdns-users] Preferred filename of recursor settings

On Tue, Sep 10, 2024 at 12:06:19PM +0100, Brian Candler wrote: > On 10/09/2024 11:56, Otto Moerbeek wrote: > > Whether to read .yml or .conf include files is determined by the > > format of mai settings file, not the name. > > I understand that. > > Let me rephrase:

Re: [Pdns-users] Preferred filename of recursor settings

OBOn Tue, Sep 10, 2024 at 10:43:11AM +0100, Brian Candler via Pdns-users wrote: > At https://doc.powerdns.com/recursor/yamlsettings.html it says: > > /Starting with version 5.1.0, in the absence of a recursor.yml file, an > existing recursor.conf will be processed as YAML, if that fails, it will

Re: [Pdns-users] powerdns recursor 5.1 doesn't support non-yaml syntax?

exception="PDNSException" > 2024-08-30T11:15:19.618127+02:00 hostname systemd[1]: pdns-recursor.service: > Main process exited, code=exited, status=1/FAILURE > 2024-08-30T11:15:19.618355+02:00 hostname systemd[1]: pdns-recursor.service: > Failed with result 'exit-code'

Re: [Pdns-users] powerdns recursor 5.1 doesn't support non-yaml syntax?

On Fri, Aug 30, 2024 at 10:16:22AM +0200, Otto Moerbeek via Pdns-users wrote: > On Fri, Aug 30, 2024 at 09:33:17AM +0200, Prochazka via Pdns-users wrote: > > > Hi, > > > > i upgraded one of the 5.0.x recursor to 5.1.1 from pdns repo. We have > > modifications i

Re: [Pdns-users] powerdns recursor 5.1 doesn't support non-yaml syntax?

On Fri, Aug 30, 2024 at 09:33:17AM +0200, Prochazka via Pdns-users wrote: > Hi, > > i upgraded one of the 5.0.x recursor to 5.1.1 from pdns repo. We have > modifications in the /etc/powerdns/recursor.d/recursor-local.conf in the > non-yaml syntax. After upgrade i see /etc/recursor.conf include >

[Pdns-users] Release of PowerDNS Recursor 4.9.8, 5.0.8 and 5.1.1

://downloads.powerdns.com/releases/pdns-recursor-5.1.1.tar.bz2.sig 13. https://downloads.powerdns.com/releases/ 14. https://repo.powerdns.com/ 15. https://docs.powerdns.com/recursor/appendices/EOL.html -- kind regards, Otto Moerbeek Senior Developer PowerDNS Phone: +49 2761 75252 00 Fax: +49 2761 75252 30

[Pdns-users] Release of PowerDNS Recursor 5.1.0

-- kind regards, Otto Moerbeek Senior Developer PowerDNS Phone: +49 2761 75252 00 Fax: +49 2761 75252 30 Email: otto.moerb...@open-xchange.com - Open-Xchange AG, Hohenzollernring 72, 50672 Cologne, District

[Pdns-users] Release of PowerDNS Recursor 4.9.7 and 5.0.7

-- kind regards, Otto Moerbeek Senior Developer PowerDNS Phone: +49 2761 75252 00 Fax: +49 2761 75252 30 Email: otto.moerb...@open-xchange.com - Open-Xchange AG, Hohenzollernring 72, 50672 Cologne, District

[Pdns-users] First Release Candidate of PowerDNS Recursor 5.1.0

/EOL.html -- kind regards, Otto Moerbeek Senior Developer PowerDNS Phone: +49 2761 75252 00 Fax: +49 2761 75252 30 Email: otto.moerb...@open-xchange.com - Open-Xchange AG, Hohenzollernring 72, 50672 Cologne, District

[Pdns-users] First Beta Release of PowerDNS Recursor 5.1.0

-recursor-5.1.0-beta1.tar.bz2 12. https://downloads.powerdns.com/releases/pdns-recursor-5.1.0-beta1.tar.bz2.sig 13. https://downloads.powerdns.com/releases/ 14. https://repo.powerdns.com/ 15. https://docs.powerdns.com/recursor/appendices/EOL.html -- kind regards, Otto Moerbeek Senior

[Pdns-users] PowerDNS Recursor 5.0.6 Released

/releases/pdns-recursor-5.0.6.tar.bz2 6. https://downloads.powerdns.com/releases/pdns-recursor-5.0.6.tar.bz2.sig 7. https://downloads.powerdns.com/releases/ 8. https://repo.powerdns.com/ 9. https://docs.powerdns.com/recursor/appendices/EOL.html -- kind regards, Otto Moerbeek Senior

Re: [Pdns-users] DNSBomb

On Mon, Jun 03, 2024 at 11:23:59AM +, Kilian Ries via Pdns-users wrote: > Hi, > > > i think you may have all heared about DNSBomb attacks: > > > https://www.isc.org/blogs/2024-dnsbomb/ > > > Are there any recommended settings for auth or dnsdist for mitigation such > attacks? > > > Th

[Pdns-users] First Alpha Release of PowerDNS Recursor 5.1.0

://repo.powerdns.com/ 15. https://docs.powerdns.com/recursor/appendices/EOL.html -- kind regards, Otto Moerbeek Senior Developer PowerDNS Phone: +49 2761 75252 00 Fax: +49 2761 75252 30 Email: otto.moerb...@open-xchange.com

[Pdns-users] PowerDNS Recursor 4.8.9, 4.9.6 and 5.0.5 released

dns.com/ 16. https://docs.powerdns.com/recursor/appendices/EOL.html -- kind regards, Otto Moerbeek Senior Developer PowerDNS Phone: +49 2761 75252 00 Fax: +49 2761 75252 30 Email: otto.moerb...@open-xchange.com -

Re: [Pdns-users] noble-auth-49 repo for ubuntu 24.04 missing

On Mon, May 06, 2024 at 11:02:27AM +0200, Otto Moerbeek via Pdns-users wrote: > On Fri, May 03, 2024 at 03:41:02PM +0200, rob777 via Pdns-users wrote: > > > Hi > > > > I want to install pdns authoritative server on the newly released Ubuntu > > 24.04

Re: [Pdns-users] noble-auth-49 repo for ubuntu 24.04 missing

On Fri, May 03, 2024 at 03:41:02PM +0200, rob777 via Pdns-users wrote: > Hi > > I want to install pdns authoritative server on the newly released Ubuntu > 24.04 LTS > > $ apt-get update > ... > Fehl:5 http://repo.powerdns.com/ubuntu noble-auth-49 Release > 404 Not Found [IP: 188.166.116.224 8

Re: [Pdns-users] How to create zone via API?

On Mon, Apr 01, 2024 at 04:57:08PM +0700, Bino Oetomo via Pdns-users wrote: > Dear All. > > I'm trying to playing with PDNS API. > > I try to create new zone. > > The json payload is : > ``` > { > "name": "domain07.bino.", > "kind": "Native", > "records": [ > { >

Re: [Pdns-users] Recursor getting pegged at 100% CPU

On Fri, Mar 15, 2024 at 05:25:20PM +0100, Otto Moerbeek via Pdns-users wrote: > > Op 15 mrt. 2024, om 17:01 heeft Tim Burns via Pdns-users > > het volgende geschreven: > > > > Hello all, I’m experiencing a performance degradation while using the > > Recursor th

Re: [Pdns-users] Recursor getting pegged at 100% CPU

> Op 15 mrt. 2024, om 17:01 heeft Tim Burns via Pdns-users > het volgende geschreven: > > Hello all, I’m experiencing a performance degradation while using the > Recursor that I haven’t been able to root cause, and I was hoping to get some > insight on what might be causing it, or some trouble

Re: [Pdns-users] Understanding why pdns-recursor 4.8.6 queries DS extremely often

On Tue, Mar 12, 2024 at 08:43:20AM +0100, Thomas Mieslinger via Pdns-users wrote: > While analyzing a spam run, I found the following queries and responses > for the not delegated domain YALRDRK.net > > For _dmarc.ja<> the queries and responses look as expected. > > For default._bimi.jaqg<> a S

[Pdns-users] PowerDNS Recursor 4.8.7, 4.9.4 and 5.0.3 released

/recursor/appendices/EOL.html -- kind regards, Otto Moerbeek Senior Developer PowerDNS Phone: +49 2761 75252 00 Fax: +49 2761 75252 30 Email: otto.moerb...@open-xchange.com - Open-Xchange AG, Hohenzollernring

Re: [Pdns-users] DNSSEC: How to add TA for . to recursor of self hosted . zone

On Mon, Mar 04, 2024 at 05:01:12PM +0100, Jan Huijsmans via Pdns-users wrote: > Hello, > > I'm tryting to setup a DNSSEC lab environment with an isolated DNS set. > > Service setup: > > Servers > - hidden master root server (pdns-auth 4.6.3-1) > - queriable slave root servers (pdns-auth 4.6.3-1

Re: [Pdns-users] pdns-recursor help

On Sun, Feb 18, 2024 at 01:35:04AM -0800, Bill MacAllister wrote: > On 2024-02-17 23:30, Otto Moerbeek wrote: > > On Sat, Feb 17, 2024 at 06:07:16PM -0800, Bill MacAllister wrote: > > > > > Okay, I set "dnssec=off" and look ups are working now. Guess I > &g

Re: [Pdns-users] pdns-recursor help

On Sat, Feb 17, 2024 at 06:07:16PM -0800, Bill MacAllister wrote: > On 2024-02-17 12:08, Bill MacAllister via Pdns-users wrote: > > On 2024-02-17 00:31, Otto Moerbeek wrote: > > > > Your recursor is not able to get an answer from the root servers, at > >

Re: [Pdns-users] pdns-recursor help

On Sat, Feb 17, 2024 at 12:22:06AM -0800, Bill MacAllister via Pdns-users wrote: > I am new to Power DNS and am attempting to setup a Power DNS recursor > server. I am using Debian bookworm and I have installed the pdns-recursor > package. The server is listening and dig can connect to the serve

[Pdns-users] PowerDNS Recursor Security Advisory 2024-01

rdns.com/releases/pdns-recursor-4.8.6.tar.bz2.sig 12. https://downloads.powerdns.com/releases/pdns-recursor-4.9.3.tar.bz2.sig 13. https://downloads.powerdns.com/releases/pdns-recursor-5.0.2.tar.bz2.sig 14. https://downloads.powerdns.com/releases/ 15. https://repo.powerdns.com/ -- kind regar

Re: [Pdns-users] QNAME minimization support

On Sat, Feb 10, 2024 at 10:41:12AM +0100, Otto Moerbeek via Pdns-users wrote: > On Fri, Feb 09, 2024 at 08:39:16PM -0800, Ask Bjørn Hansen via Pdns-users > wrote: > > > > > > > > On Feb 9, 2024, at 14:30, Jason Tremblett via Pdns-users > > > wrote

Re: [Pdns-users] QNAME minimization support

On Fri, Feb 09, 2024 at 08:39:16PM -0800, Ask Bjørn Hansen via Pdns-users wrote: > > > > On Feb 9, 2024, at 14:30, Jason Tremblett via Pdns-users > > wrote: > > > > When querying with QNAME minimization on strict, the authoritative server > > is queried for entry.sample.zone and returns NXDO

Re: [Pdns-users] Any chance of an actual PowerDNS upgrade guide ?

On Fri, Jan 12, 2024 at 05:01:18PM +, Laura Smith via Pdns-users wrote: > Hi > > The release notes for PowerDNS Recursor 5.0.1 link to what is claimed to be > an "upgrade guide", however the "guide" reads more like a version change log. > > Is there any chance we can actually be provided wi

[Pdns-users] PowerDNS Recursor 5.0.1 Released

://docs.powerdns.com/recursor/appendices/EOL.html -- kind regards, Otto Moerbeek PowerDNS Developer Email: otto.moerb...@open-xchange.com - Open-Xchange AG, Hohenzollernring 72, 50672 Cologne, District Court Cologne HRB

[Pdns-users] Second Release Candidate of PowerDNS Recursor 5.0.0

://downloads.powerdns.com/releases/pdns-recursor-5.0.0-rc2.tar.bz2 13. https://downloads.powerdns.com/releases/pdns-recursor-5.0.0-rc2.tar.bz2.sig 14. https://downloads.powerdns.com/releases/ 15. https://repo.powerdns.com/ 16. https://docs.powerdns.com/recursor/appendices/EOL.html -- kind regards, Otto

[Pdns-users] First Release Candidate of PowerDNS Recursor 5.0.0

-- kind regards, Otto Moerbeek PowerDNS Developer Email: otto.moerb...@powerdns.com - Open-Xchange AG, Hohenzollernring 72, 50672 Cologne, District Court Cologne HRB 95366 Managing Board: Andreas Gauger, Dirk

[Pdns-users] First beta release of PowerDNS Recursor 5.0.0

-recursor-5.0.0-beta1.tar.bz2 10. https://downloads.powerdns.com/releases/pdns-recursor-5.0.0-beta1.tar.bz2.sig 11. https://downloads.powerdns.com/releases/ 12. https://repo.powerdns.com/ 13. https://docs.powerdns.com/recursor/appendices/EOL.html -- kind regards, Otto Moerbeek PowerDNS

[Pdns-users] PowerDNS Recursor 4.9.2 Releases

.tar.bz2 5. https://downloads.powerdns.com/releases/pdns-recursor-4.9.2.tar.bz2.sig 6. https://downloads.powerdns.com/releases/ 7. https://repo.powerdns.com/ -- kind regards, Otto Moerbeek PowerDNS Developer Email: otto.moerb...@open-xchange.com

Re: [Pdns-users] Recursor 4.8.x Debian 12 repo

The rec-4.8.5 Debian 12 package is now available again from our repo. Regards, -Otto > On 30/10/2023 15:23 CET Otto Moerbeek via Pdns-users > wrote: > > > Hello, > > an error crept into ont of the publishing proceses. > > I built a rec-4.8.5 for Debian 12,

Re: [Pdns-users] Recursor Container Issue

Hello Alberto, It would help if you exactly describe what you did, with command line and the recursor.conf you used. That way we can try to reproduce. Also, did you check log messages from the recursor? It almost sounds like the recursor did not start because of an issue with the configuration.

Re: [Pdns-users] Recursor 4.8.x Debian 12 repo

Hello, an error crept into ont of the publishing proceses. I built a rec-4.8.5 for Debian 12, which can be retrieved here: https://github.com/PowerDNS/pdns/actions/runs/6693473758/job/18184678477 We wil also make sure the package gets published in the regular place. This might take some time t

Re: [Pdns-users] LUA for "filter-aaaa-on-v4"

On Mon, Oct 30, 2023 at 04:35:25AM +, Djerk Geurts via Pdns-users wrote: > Hi all, > > Not had the opportunity to test this yet, but wanted to check with those more > experienced at LUA scripting if the following has any unexpected side effects: > > function preresolve(dq) > -- Implementa

Re: [Pdns-users] pdns stop responding and restarted himself

On Thu, Oct 19, 2023 at 11:36:13AM +0200, Steffan via Pdns-users wrote: > Hello, > > > > I have 2 dns servers. > Both running on centos with his own replicated mysql backends > > > > Yesterday both dns servers stopped responding for 3 minutes. > > In the periode of 3 minutes I see a lot o

[Pdns-users] Second Alpha Release of PowerDNS Recursor 5.0.0

/recursor/appendices/EOL.html -- kind regards, Otto Moerbeek PowerDNS Developer Email: otto.moerb...@open-xchange.com - Open-Xchange AG, Hohenzollernring 72, 50672 Cologne, District Court Cologne HRB 95366 Managing

Re: [Pdns-users] Error prio events with loglevel 2

On Sun, Sep 17, 2023 at 12:32:11PM +0200, Christoph via Pdns-users wrote: > Thanks for looking into this. > I've filed it as a github issue now. > > As a workaround I'm now trying to block these DNS queries in dnsdist, so > they do not reach recursor and the logs: > > addAction(QTypeRule(qtype f

Re: [Pdns-users] Error prio events with loglevel 2

On Sat, Sep 16, 2023 at 05:40:42PM +0200, Otto Moerbeek via Pdns-users wrote: > On Sat, Sep 16, 2023 at 05:19:01PM +0200, Otto Moerbeek via Pdns-users wrote: > > > On Sat, Sep 16, 2023 at 12:04:16PM +0200, Christoph via Pdns-users wrote: > > > > > Hello, > >

Re: [Pdns-users] Error prio events with loglevel 2

On Sat, Sep 16, 2023 at 05:19:01PM +0200, Otto Moerbeek via Pdns-users wrote: > On Sat, Sep 16, 2023 at 12:04:16PM +0200, Christoph via Pdns-users wrote: > > > Hello, > > > > we changed our recursor loglevel from 3 to 2 with the intention to avoid > > logging the

Re: [Pdns-users] Error prio events with loglevel 2

On Sat, Sep 16, 2023 at 12:04:16PM +0200, Christoph via Pdns-users wrote: > Hello, > > we changed our recursor loglevel from 3 to 2 with the intention to avoid > logging these events because they contain qnames: > > msg="qtype unsupported" error="Cannot push task" subsystem="taskq" level="0" > p

Re: [Pdns-users] edns

7, > !fe80::/10 > > > Em sex., 15 de set. de 2023 às 01:38, Otto Moerbeek > escreveu: > > > On Fri, Sep 15, 2023 at 12:49:56AM -0300, Alex Trevisol via Pdns-users > > wrote: > > > > > hello, > > > > > > I reinstalled my recuersor server,

Re: [Pdns-users] edns

On Fri, Sep 15, 2023 at 12:49:56AM -0300, Alex Trevisol via Pdns-users wrote: > hello, > > I reinstalled my recuersor server, and took advantage of it and installed > pdns-recursor 4.9, but I did the basic configuration and activated Edns in > the same way it was before. > edns-subnet-allow-list=

[Pdns-users] First Alpha Release of PowerDNS Recursor 5.0.0

://repo.powerdns.com/ 11. https://docs.powerdns.com/recursor/appendices/EOL.html -- kind regards, Otto Moerbeek PowerDNS Developer Email: otto.moerb...@open-xchange.com - Open-Xchange AG, Hohenzollernring 72, 50672 Cologne

Re: [Pdns-users] IXFR with PowerDNS

On Mon, Sep 11, 2023 at 11:44:57AM +0200, Thomas Mieslinger via Pdns-users wrote: > Hi all, > > I switched an Active Directory Zone to IXFR instead of AXFR. > > When doing AXFR all records have "auth=1" in the MySQL Backend. > > When doing IXFR the individually updated records get "auth=0" inc

Re: [Pdns-users] Recursor Cache Sizing: Is more always better?

On Sun, Sep 10, 2023 at 02:37:49PM +0200, Christoph via Pdns-users wrote: > > Another word of advice: see > > > > https://docs.powerdns.com/recursor/performance.html#threading-and-distribution-of-queries > > > > in particular the "imbalance" section. > > Thanks for the pointer, changing this ha

Re: [Pdns-users] Recursor Cache Sizing: Is more always better?

On Sat, Sep 09, 2023 at 11:20:30AM +0200, Christoph via Pdns-users wrote: > > Agrreed, I think that general rules are hard to give for cache sizing, > > as each site and its users are different. Do remember that the packet > > cache was changed in 4.9.0, it is now shared between threads. This mean

Re: [Pdns-users] Recursor forwarder DoT configuration

On Sat, Sep 09, 2023 at 08:07:02AM +0200, Christoph via Pdns-users wrote: > > I do wonder about the purpose of the recursor in the > > > > recursor -> dnsdist -> upstream-recursive > > > > case. You might as well use > > > > dnsdist -> upstream-recursive > > > > With a caching dnsdist. > > Unl

Re: [Pdns-users] Recursor Cache Sizing: Is more always better?

On Sat, Sep 09, 2023 at 09:59:19AM +0200, Winfried via Pdns-users wrote: > Hi Christoph, > > My recommendation is to limit the TTL to 12 or 6 hours and find out how many > cache entries are created during this time. Increase that by 50% and that's > your value. You'll see that it doesn't requir

Re: [Pdns-users] Recursor forwarder DoT configuration

On Fri, Sep 08, 2023 at 11:56:07PM +0200, Christoph via Pdns-users wrote: > Thanks a lot for the fast reply, very much appreciated! > best regards, > Christoph I do wonder about the purpose of the recursor in the recursor -> dnsdist -> upstream-recursive case. You might as well use dnsdist ->

Re: [Pdns-users] Recursor forwarder DoT configuration

On Fri, Sep 08, 2023 at 04:50:18PM +0200, Christoph via Pdns-users wrote: > Hello! > > I'm looking for documentation about configuring > recursor to talk DoT to a recursive resolver. > > This minimal config works: > > dot-to-port-853=yes > forward-zones-recurse=.=1.1.1.1:853;1.0.0.1:853 > > bu

Re: [Pdns-users] CPU Usage Regression in Recursor 4.9.1?

On Mon, Sep 04, 2023 at 10:49:23AM +0200, Otto Moerbeek via Pdns-users wrote: > On Mon, Sep 04, 2023 at 10:30:38AM +0200, Christoph via Pdns-users wrote: > > > > > > Thanks, recursor is now running with aggressive-nsec-cache-size=0 > > > and I'll

[Pdns-users] PowerDNS Recursor 4.9.0 Released

/releases/pdns-recursor-4.9.0.tar.bz2 13. https://downloads.powerdns.com/releases/pdns-recursor-4.9.0.tar.bz2.sig 14. https://downloads.powerdns.com/releases/ 15. https://repo.powerdns.com/ 16. https://docs.powerdns.com/recursor/appendices/EOL.html -- kind regards, Otto Moerbeek PowerDNS

Re: [Pdns-users] Pdns recursor - forward-zones-file not working

On Mon, Jun 19, 2023 at 05:10:01PM +0100, Djerk Geurts via Pdns-users wrote: > Hi all, > > Reading up on recursor settings I found that with forward-zones-file one can > set recurse an RD flag and also add domains to an allow-notify-for list. > > "Zones prefixed with a ‘+’ are treated as with f

Re: [Pdns-users] signatures were invalid: EXPKEYSIG 1B0C6205FD380FBB

On Wed, Jun 07, 2023 at 06:03:29PM +0200, Otto Moerbeek via Pdns-users wrote: > On Wed, Jun 07, 2023 at 04:26:53PM +0100, Djerk Geurts via Pdns-users wrote: > > > Hi all, > > > > Is there an issue with the Ubuntu repo? I changes a host from > > focal-au

Re: [Pdns-users] signatures were invalid: EXPKEYSIG 1B0C6205FD380FBB

On Wed, Jun 07, 2023 at 04:26:53PM +0100, Djerk Geurts via Pdns-users wrote: > Hi all, > > Is there an issue with the Ubuntu repo? I changes a host from > focal-auth-master to focal-auth-48 and encountering a GPG error, previously > the GPG key had been updated but I see the normal key listed e

Re: [Pdns-users] Issues with forward-zones-recurse

On Fri, Jun 02, 2023 at 08:07:16PM -0300, Thiago G. Alencar via Pdns-users wrote: > Hello, > > I have a strange situation. When the "forward-zones-recurse" option is > activated, after the expiration of record type A in the cache, the next > queries will have no response but will be NOERROR. >

[Pdns-users] First Beta Release of PowerDNS Recursor 4.9.0

/pdns-recursor-4.9.0-beta1.tar.bz2 11. https://downloads.powerdns.com/releases/pdns-recursor-4.9.0-beta1.tar.bz2.sig 12. https://downloads.powerdns.com/releases/ 13. https://repo.powerdns.com/ 14. https://docs.powerdns.com/recursor/appendices/EOL.html -- kind regards, Otto Moerbeek

[Pdns-users] Solution Engineer PowerDNS

. -- kind regards, Otto Moerbeek PowerDNS Developer Email: otto.moerb...@open-xchange.com - Open-Xchange AG, Hohenzollernring 72, 50672 Cologne, District Court Cologne

Re: [Pdns-users] LUA SRV records

On Tue, May 30, 2023 at 11:33:32AM +0200, Kai Stian Olstad via Pdns-users wrote: > On 29.05.2023 15:44, George Asenov via Pdns-users wrote: > > Hello community, > > > > I already searched the documentation but couldn't find an answer to my > > questions. > > > > Is it possible to add LUA SRV rec

Re: [Pdns-users] DoT for recursor

On Tue, May 09, 2023 at 01:34:51PM +0100, Djerk Geurts via Pdns-users wrote: > Hi all, > > Had a look and the only thing I could find is that DoT apparently is enabled > when configuring PowerDNS-recursor with specific upstream servers on port 853. > > Being relatively new to DoT and DoH I’m tr

[Pdns-users] First Alpha Release of PowerDNS Recursor 4.9.0

://downloads.powerdns.com/releases/ 12. https://repo.powerdns.com/ 13. https://docs.powerdns.com/recursor/appendices/EOL.html -- kind regards, Otto Moerbeek PowerDNS Developer Email: otto.moerb...@open-xchange.com

[Pdns-users] PowerDNS Security Advisory 2023-02: Deterred spoofing attempts can lead to authoritative servers being marked unavailable

Hello, Today we have released PowerDNS Recursor 4.6.6, 4.7.5 and 4.8.4 due to a low severity security issue found. Please find the full text of the advisory below. The [1]4.6, [2]4.7 and [3]4.8 changelogs are available. The [4]4.6.6 ([5]signature), [6]4.7.5 ([7]signature) an

Re: [Pdns-users] How to create an account?

The account field is just a text field that has no relation to any other field in the pdns data model. You can fill in anything you like. -Otto On Sun, Mar 26, 2023 at 04:35:05PM +0200, Paul van der Vlis via Pdns-users wrote: > Hello! > > I connot find how to create an account with p

Re: [Pdns-users] Howto show settings of a domain

On Tue, Mar 14, 2023 at 01:19:18PM +0100, Paul van der Vlis via Pdns-users wrote: > Hello, > > How can I show the settings of a domain with pdnsutil? I don't mean the > records, but settings like what you can set with commands as: > pdnsutil set-kind > pdnsutil set-account > pdnsutil change-sla

[Pdns-users] PowerDNS Recursor 4.8.3 Released

://downloads.powerdns.com/releases/pdns-recursor-4.8.3.tar.bz2.sig 6. https://downloads.powerdns.com/releases/ 7. https://repo.powerdns.com/ 8. https://docs.powerdns.com/recursor/appendices/EOL.html -- kind regards, Otto Moerbeek PowerDNS Developer Email: otto.moerb...@open-xchange.com

Re: [Pdns-users] Blocklist file format

There is, check RPZs: https://docs.powerdns.com/recursor/lua-config/rpz.html -Otto On Tue, Mar 07, 2023 at 08:46:54AM +0200, Adrian M via Pdns-users wrote: > Having a policy list implemented directly in pdns-resolver it will be a > very nice feature nowadays IMHO. > > On Sun, Mar 5, 20

[Pdns-users] PowerDNS Recursor 4.8.2 Released

/recursor/appendices/EOL.html -- kind regards, Otto Moerbeek PowerDNS Developer Email: otto.moerb...@open-xchange.com - Open-Xchange AG, Hohenzollernring 72, 50672 Cologne, District Court Cologne HRB 95366

Re: [Pdns-users] tsig key not being accepted

On Sat, Jan 28, 2023 at 09:58:22AM -0500, Larry Wapnitsky via Pdns-users wrote: > (domain names and keys changed in production from these values) > > I'm running the following: > > root@ns1:~# pdns_server --version > Jan 28 09:54:21 PowerDNS Authoritative Server > 4.8.0-alpha0.1002.master.g13427

Re: [Pdns-users] pdns_recursor issue

On Thu, Jan 26, 2023 at 10:57:21PM +0100, Arien Vijn wrote: > > > On 26 Jan 2023, at 19:00, Otto Moerbeek wrote: > > [...] > > > I expect the aggressive cache workaround to function. > > It seems so indeed. > > > What is happening is that a query of

Re: [Pdns-users] pdns_recursor issue

On Thu, Jan 26, 2023 at 05:37:12PM +0100, Arien Vijn via Pdns-users wrote: > Hi Peter, > > > On 26 Jan 2023, at 17:28, Peter van Dijk via Pdns-users > > wrote: > > [...] > > > After some brief investigation we somewhat suspect this is aggressive > > NSEC caching. Can you see if aggressive-nse

Re: [Pdns-users] Proxy mapped address used for allow-from

lies: > > "I think proxyMapping and the use of ECS is explained in > https://docs.powerdns.com/recursor/lua-config/proxymapping.html."; > > I understand proxymapping - this is not my issue, I'm just mentioning > it to provide context. > > (My logging is

Re: [Pdns-users] pdns_recursor issue

Hi, Please show your configuration. I do not think your analysis is to the point. If I repeat a scenario, I see a correct retrieval of the A record. So we have to find out what is different in your case. -Otto On Thu, Jan 26, 2023 at 01:30:54PM +0100, Arien Vijn via Pdns-users wrote:

Re: [Pdns-users] Proxy mapped address used for allow-from

Please show your full configuration, including versions etc. Also, it is not clear which product you are using. The recursor docs say: "Note that once a Proxy Protocol header has been received, the source address from the proxy header instead of the address of the proxy will be checked against th

[Pdns-users] Security Advisory 2023-01 for PowerDNS Recursor 4.8.0

ces/EOL.html -- kind regards, Otto Moerbeek PowerDNS Developer Email: otto.moerb...@open-xchange.com - Open-Xchange AG, Hohenzollernring 72, 50672 Cologne, District Court Cologne HRB 95366 Managing Bo

Re: [Pdns-users] Reloading metadata with bind-backend & sqlite

Hello, You did not explain what you seeing and what you expect. The warning concerns performance. But your questions suggests you are seeing wrong data. Please be explicit. -Otto On Mon, Dec 19, 2022 at 11:02:34AM +0100, Thib D via Pdns-users wrote: > Hi Chris, > > I missed this war

[Pdns-users] PowerDNS Recursor 4.8.0 Released

erdns.com/ 18. https://docs.powerdns.com/recursor/appendices/EOL.html -- kind regards, Otto Moerbeek PowerDNS Developer Email: otto.moerb...@open-xchange.com - Open-Xchange AG, Hohenzollernring 72, 50672 Co

Re: [Pdns-users] why different parameters syntax on forward-zones and forward-zones-file

On Tue, Nov 29, 2022 at 09:55:54AM -0500, Kevin P. Fleming via Pdns-users wrote: > On Tue, Nov 29, 2022, at 08:45, Victor Hugo dos Santos via Pdns-users wrote: > > hello there, > > > > today we have to migrate an old configuration (what was using the > > forward-zones-file) to a new server using t

Re: [Pdns-users] Recursor Cache entries per record

Hello What Winfried says is true, with the note that a few more bits of the query are included in the hash, while some other pats are skipped; e.g. the recursor skips the EDSN ECS and Cookie bits when computing the hash. Also note that while the packet cache is per thread, the other cache (record

[Pdns-users] PowerDNS Recursor 4.5.12, 4.6.5 and 4.7.4 Released

/issues/new/choose -- kind regards, Otto Moerbeek PowerDNS Developer Email: otto.moerb...@open-xchange.com - Open-Xchange AG, Hohenzollernring 72, 50672 Cologne, District Court Cologne HRB 95366 Managing

[Pdns-users] First Release Candidate of PowerDNS Recursor 4.8.0

ns.com/releases/pdns-recursor-4.8.0-rc1.tar.bz2.sig 16. https://downloads.powerdns.com/releases/ 17. https://repo.powerdns.com/ 18. https://docs.powerdns.com/recursor/appendices/EOL.html -- kind regards, Otto Moerbeek PowerDNS Developer Email: otto.moerb...@o

Re: [Pdns-users] Configure Powerdns and check if the domain which is not present in Powerdns is tranferring the traffic to 8.8.8.8 .

You start complaining within the hour. That is not thay way to get a response. I just lost all the motivation to help you. -Otto On Thu, Nov 17, 2022 at 12:17:01PM +0530, Raghvendra Choudhary via Pdns-users wrote: > any update on this? > > *Raghvendra Choudhary* > DevOps Engineer | www.di

Re: [Pdns-users] DNS-over-TLS option

On Tue, Nov 15, 2022 at 11:36:44AM +1300, Michael Hallager wrote: > On 2022-11-14 19:29, Otto Moerbeek wrote: > > > The upgrade guide has pointers, but in this case there's also a blog > > post: > > > > https://blog.powerdns.com/2022/06/13/probing-dot-suppor

Re: [Pdns-users] DNS-over-TLS option

On Mon, Nov 14, 2022 at 11:26:41AM +1300, Michael Hallager via Pdns-users wrote: > > Hi all, > > I am seeing the following option during compilation of PowerDNS Recursor, > however, can't find any documentation on its configuration. > > configure: Features enabled > configure:

Re: [Pdns-users] Recursor: NS selection logic, multiple IPs in forward-zones statement

On Wed, Nov 09, 2022 at 09:00:12PM +0300, Andrey Vishnyakov via Pdns-users wrote: > Hi! > > What is the logic of pdns recursor choosing NS server when multiple items > are available like multiple IP addresses in a forward-zones statement? > > Looking through the source code I see that NS server

Re: [Pdns-users] pdns-recursor ecs support config designs

On Tue, Nov 08, 2022 at 09:44:22AM +, Brian Candler via Pdns-users wrote: > On 08/11/2022 09:20, Robby Pedrica via Pdns-users wrote: > > > The CDN services work correctly when a branch uses the ISP-assigned DNS > > for that specific branch/link. But as mentioned, it's difficult to > > manage

Re: [Pdns-users] pdns-recursor ecs support config designs

On Tue, Nov 08, 2022 at 08:35:33AM +0200, Robby Pedrica via Pdns-users wrote: > Hi all, > > I've searched pdns docs as well as threads here but can find nothing about > how to deploy ecs or more specifically, under which circumstance ecs can be > used. > > From what I understand of ecs, the recu

[Pdns-users] Second Beta Release of PowerDNS Recursor 4.8.0

po.powerdns.com/ 18. https://docs.powerdns.com/recursor/appendices/EOL.html -- kind regards, Otto Moerbeek PowerDNS Developer Email: otto.moerb...@open-xchange.com - Open-Xchange AG, Hohenzollernring 72

Re: [Pdns-users] pdns-recursor query logging of cached requests

On Thu, Nov 03, 2022 at 02:08:53PM +0100, Marco Kleefman via Pdns-users wrote: > Hi, > > For compliancy reasons we are configuring query logging on our PowerDNS > recursor instances (running 4.7.3). > > For normal queries I see source-ip and content of DNS question. Example > logging: > > pdns_

Re: [Pdns-users] Help with "simple" config please

Hello, Please read the [1]link below and post unedited config files. It also helps to explictly state the problem you are trying to solve, what commands you used to investigate, what you expected to see and what you actually saw. -Otto [1] https://blog.powerdns.com/2016/01/18/open-source

Re: [Pdns-users] Repeating log file entry for root server

Hello, a.root-servers.net is the default name used by the dnsdist health checks. So no worries. With respect to pdns_recursor: logging all queries (with quiet=no) hurts performance. In general, you do not want to enable it on a production machine. -Otto On Fri, Oct 28, 2022 at 08:55:0

Re: [Pdns-users] Warning in syslog after upgrade to PowerDNS Authoritative Server 4.7

Hello, 4.7.0 introduced (optional) GSS-TSIG support. Even with that support not compiled in will report about GSS-TSIG requests it could not handle. That might generate too much log spam, will discuss if this message should stay, maybe the level should be Debug. There is also a typo there: an extr

Re: [Pdns-users] PowerDNS Authoritative Server 4.7.0

This is known, a 4.7.1 will be released very soon with this fixed. -Otto On Fri, Oct 28, 2022 at 07:12:03AM +, Henri Nougayrede via Pdns-users wrote: > Hi > > Same for ubuntu 4.7 .deb package. > I ran the SQL script > here

  1   2   3   >