Question on Bind validating resolver
Charles Elliott
elliott.chas at comcast.net
Thu Jan 26 12:52:24 UTC 2017
WorksForMe info.nominet.uk = 137.117.185.220 both thru my ISP (75.75.75.75)
and through Bind at 07:50 AM EST (USA, GMT - 5:00). Maybe it is fixed on
the domain name server.
Charles Elliott
-----Original Message-----
From: bind-users [mailto:bind-users-bounces at lists.isc.org] On Behalf Of
Volker Janzen
Sent: Wednesday, January 25, 2017 3:22 PM
To: bind-users at lists.isc.org
Subject: Question on Bind validating resolver
Hi,
when my Bind resolver tries to get the A record for info.nominet.uk the
syslog gets lots of messages like this:
Jan 25 21:15:52 box named[25097]: DNS format error from 173.245.58.93#53
resolving info.nominet.uk/DS: invalid response Jan 25 21:15:52 box
named[25097]: error (FORMERR) resolving 'info.nominet.uk/DS/IN':
173.245.58.93#53 Jan 25 21:15:52 box named[25097]: error (no valid DS)
resolving 'info.nominet.uk/A/IN': 52.58.218.210#53 Jan 25 21:15:52 box
named[25097]: DNS format error from 173.245.58.93#53 resolving
info.nominet.uk/DS: invalid response
info.nominet.uk is delegated with NS records to other nameservers, but the
info.nominet.uk zone is not signed and of course there are no DS records set
for info.nominet.uk in nominet.uk.
It seems legit to not sign sub delegations, so why is Bind complaining and
returning SERVFAIL?
I tested this with different Bind versions from Debian 8 and Ubuntu 14.04.
Regards
Volker
_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to
unsubscribe from this list
bind-users mailing list
bind-users at lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
More information about the bind-users
mailing list