Resolving .gov w/dnssec
Nate Itkin
bind-users at konadogs.net
Thu Apr 22 18:17:08 UTC 2010
On Thu, Apr 22, 2010 at 08:06:03AM -0400, Timothe Litt wrote:
> I'm having trouble resolving uspto.gov with bind 9.6.1-P3 and 9.6-ESV
> configured as valdidating resolvers.
> [snip]
> Is anyone else seeing this? Ideas on how to troubleshoot?
Not specifically, but I log a lot of errors resolving in usps.gov. USPS
clearly has configuration issues. A representative sample from my logs:
19-Apr-2010 11:04:23.072 lame-servers: no valid RRSIG resolving 'EGQ1REIRR8NVE4U6I97RO3PC2CRUU1A5.usps.gov/DS/IN': 56.0.82.25#53
19-Apr-2010 11:04:24.099 lame-servers: no valid RRSIG resolving 'samtcatwe0d3.usps.gov/DS/IN': 56.0.82.25#53
19-Apr-2010 11:04:24.890 lame-servers: no valid DS resolving 'samtcatwe0d3.usps.gov/AAAA/IN': 56.0.100.25#53
19-Apr-2010 11:04:27.975 lame-servers: no valid NSEC resolving 'samtcatwe0d3.usps.gov/MX/IN': 56.0.100.25#53
Hopefully someone on the list knows a clueful USPS administrator they can
contact.
- Nate Itkin
More information about the bind-users
mailing list