Re: root-hints as master for RFC7706

[ѽ҉ᶬḳ℠ via Unbound-users]

On 30.11.2018 11:50, Anand Buddhdev via Unbound-users wrote: On 30/11/2018 11:37, ѽ҉ᶬḳ℠ via Unbound-users wrote: With hyperlocal (RFC7706) requiring the root zone DNS server ip addresses listed as master in auth-zone and since this information is already provided (and automatically updated) in root-hints would it not make sense to utilise it for RFC7706 in auth-zone, something like?: auth-zone: name: . master: path/to/root-hints This way whenever an ip in root-hints gets updated it is available for RFC7706 too. Of course I do not know whether parsing those ip from root-hint is feasible and how much it would bloat the code and the ratio/cost of coding/testing effort vs. actual user benefit/advantage. No, this is a bad idea, for several reasons: 1. Not all the root servers provide zone transfer. It would be pointless for unbound to add them to the list of masters, when XFR from several of them will just fail continuously. To my understanding (http://www.dns.icann.org/services/axfr/) all servers do permit zone transfer except l.root-servers.net Thus continuous fail from several does not seem likely.