what's wrong with recent bind-utils against dnsmasq

Reindl Harald h.reindl at thelounge.net
Thu Apr 26 08:44:29 UTC 2018 

when the server is dnsmasq you get all sort of funny results from
SERVFAIL to REFUSED combined with the right answer

that now even goes so far that named is no longer able to resolve
zone-delegations pointing to a dnsmasq

[root at testserver:~]$ nslookup rhsoft.testserver.example.com 127.0.0.1
Server:         127.0.0.1
Address:        127.0.0.1#53

Name:   rhsoft.testserver.example.com
Address: 127.0.0.1
** server can't find rhsoft.testserver.example.com: REFUSED
___________________

[root at flow-home:~]$ nslookup contentlounge.flow-home.example.net
Server:         127.0.0.1
Address:        127.0.0.1#53

Name:   contentlounge.flow-home.example.net
Address: 10.0.0.244
** server can't find contentlounge.flow-home.example.net: SERVFAIL
___________________

[root at testserver:~]$ host rhsoft.testserver.example.com 127.0.0.1
Using domain server:
Name: 127.0.0.1
Address: 127.0.0.1#53
Aliases:

rhsoft.testserver.example.com has address 127.0.0.1
Host rhsoft.testserver.example.com not found: 5(REFUSED)
Host rhsoft.testserver.example.com not found: 5(REFUSED)
___________________

[root at testserver:~]$ dig rhsoft.testserver.example.com @127.0.0.1

; <<>> DiG 9.11.3-RedHat-9.11.3-4.fc27 <<>>
rhsoft.testserver.example.com @127.0.0.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 42729
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;rhsoft.testserver.example.com.  IN      A

;; ANSWER SECTION:
rhsoft.testserver.example.com. 30 IN     A       127.0.0.1

;; Query time: 0 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Do Apr 26 10:40:44 CEST 2018
;; MSG SIZE  rcvd: 73

-- 

Reindl Harald
the lounge interactive design GmbH
A-1060 Vienna, Hofmühlgasse 17
CTO / CISO / Software-Development
m: +43 676 40 221 40
p: +43 1 595 3999 33
http://www.thelounge.net/

GPG-Public-Key:
https://arrakis-tls.thelounge.net/gpg/h.reindl_thelounge.net.pub.txt

More information about the bind-users mailing list