[rbldnsd] queries of non-existent RRs
Michael Tokarev
mjt at corpit.ru
Fri Apr 22 23:46:26 MSD 2005
Steven F Siirila wrote:
> I am curious as to why rbldnsd returns a "temporary error" instead of a
> "not found" error when looking up a non-existent RR. This makes sense
> for a zone in which rbldnsd did not load, but not for ones it did load.
> For example, if I query for 2.0.0.127.sbl.spamhaus.org, I get an answer.
> However, if I query for 1.0.0.127.sbl.spamhaus.org, I get a temporary
> error. The only way to "fix" this is to ensure use of "forward first"
> in the BIND forward zone pointing to my local rbldnsd. While I want to
> be configured in this manner, it seems counterproductive to query the
> real sbl.spamhaus.org zone for every IP address which is not listed in
> rbldnsd.
Aha, perhaps I know what it means.
Have you configured SOA in the zone you're using? Without SOA configured,
rbldnsd can't answer with NXDOMAIN, so it just REFUSEs the query, and such
a reply gets translated into SERVFAIL by your forwarder.
Well... it's interesting. Lemme take a more detailed look at this...
/mjt
More information about the rbldnsd
mailing list