[rbldnsd] Mirror not authoritative through BIND
Jeff Chan
jeffc at surbl.org
Mon Aug 16 09:36:14 MSD 2004
We have migrated one of our public name servers over to rbldnsd
with forwarding through BIND 8, but for some reason it's not
showing up as authoritative (no "AA") in resolutions. We are
using BIND configs like this:
> options {
>
> // Let BIND use only these specific addresses
> // meaning that unlisted addresses such as 10.11.12.153:53
> // can be used by rbldnsd instead
> listen-on {
> 66.170.2.50;
> 127.0.0.1;
> };
> };
> zone "sc.surbl.org" IN {
> type forward;
> forward first;
> forwarders {
> 10.11.12.153;
> };
> };
[...]
(Where 10.11.12.153 is a local non-public address
Is there something else we need to do to make the server think
it's authoritative. That server is already being delegated to
from the parent zone, and it was answering as authoritative
when the subdomains were served purely by BIND, but it's not
now:
> % dig multi.surbl.org @ns12.surbl.org
>
> ; <<>> DiG 8.3 <<>> multi.surbl.org @ns12.surbl.org
> ; (1 server found)
> ;; res options: init recurs defnam dnsrch
> ;; got answer:
;; ->>>HEADER<<- opcode: QUERY, status: NOERROR, id: 18238
> ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 14, ADDITIONAL: 27
> ;; QUERY SECTION:
> ;; multi.surbl.org, type = A, class = IN
Does anyone have any ideas?
Jeff C.
--
Jeff Chan
mailto:jeffc at surbl.org
http://www.surbl.org/
More information about the rbldnsd
mailing list