[rbldnsd] RBLDNSD not playing nicely with bind

[Ben]

Hi,

I just don't get it !

The ACL is obviously setup correctly because I can query RBLDNSD 
directly as per :

# dig -p 10099 @localhost 2.0.0.127.zen.dnsbl 


; <<>> DiG 9.9.5-3-Ubuntu <<>> -p 10099 @localhost 2.0.0.127.zen.dnsbl
; (2 servers found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 51070
;; flags: qr aa rd; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 0
;; WARNING: recursion requested but not available

;; QUESTION SECTION:
;2.0.0.127.zen.dnsbl.           IN      A

;; ANSWER SECTION:
2.0.0.127.zen.dnsbl.    300     IN      A       127.0.0.2
2.0.0.127.zen.dnsbl.    300     IN      A       127.0.0.10
2.0.0.127.zen.dnsbl.    300     IN      A       127.0.0.4

;; Query time: 0 msec
;; SERVER: 127.0.0.1#10099(127.0.0.1)
;; WHEN: Mon Jun 09 17:52:49 BST 2014
;; MSG SIZE  rcvd: 85


But if I try to query it indirectly via BIND, I get :

# dig @localhost 2.0.0.127.zen.dnsbl 


; <<>> DiG 9.9.5-3-Ubuntu <<>> @localhost 2.0.0.127.zen.dnsbl
; (2 servers found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 15434
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.0.0.127.zen.dnsbl.           IN      A

;; Query time: 2 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Mon Jun 09 17:52:52 BST 2014
;; MSG SIZE  rcvd: 48



And the logs show :

Jun  9 17:52:52  named[19719]: error (chase DS servers) resolving 
'zen.dnsbl/DS/IN': 127.0.0.1#10099
Jun  9 17:52:52  named[19719]: error (unexpected RCODE REFUSED) 
resolving 'dnsbl/NS/IN': 127.0.0.1#10099
Jun  9 17:52:52  named[19719]: error (no valid DS) resolving 
'2.0.0.127.zen.dnsbl/A/IN': 127.0.0.1#10099


My BIND forwarding is as follows :

zone "dnsbl" {
       type forward;
       forward only;
       forwarders {
          127.0.0.1 port 10099;
        };
};



Help !!!!

Thanks !
Ben