On Wed, Feb 29, 2012 at 11:03:48AM -0800, Augie Schwer wrote:
On Fri, May 20, 2011 at 11:52 PM, bert hubert bert.hub...@netherlabs.nl
wrote:
On Fri, May 20, 2011 at 03:31:35PM -0700, Alfred B. M. Cordero wrote:
Does anyone know if the recursor can use dnssec? I don't find
any information
On Fri, Mar 02, 2012 at 03:14:10PM -0800, Augie Schwer wrote:
In lieu of a DNSSEC enabled pdns-recursor what are folks using?
Any suggestions?
Unbound is the best right now! We enjoy working with the NLNetLabs people
and we frequently benefit from each others DNSSEC knowledge.
Bert
--
On Tue, Mar 27, 2012 at 02:58:30PM -0400, Christopher Pruden wrote:
Hi Ruben,
Is the record that you show with a tab, or the '' sign? The issue I'm
running into is with an embedded tab, it got mixed up a bit in the email.
Hi Christopher,
Together with Ruben we've diagnosed reproduced
On Tue, Mar 27, 2012 at 05:29:03PM -0400, Christopher Pruden wrote:
Thanks very much, I've downloaded and installed the
pdns-static-3.1rc1.20120327.2539-1.x86_64.rpm package, and it looks like
that took care of it.
Great!
I've got one record remaining that made it into PowerDNS via AXFR, but
On Fri, Apr 06, 2012 at 11:05:02PM +0200, Juraj Lutter wrote:
when building with --enable-recursor, do not build epollmplexer as
Solaris does not have epoll() API like Linux does. Please adjust
configure script accordingly.
Hi Juraj,
To build the Recursor on Solaris (or even on Linux for
On Fri, Apr 06, 2012 at 11:59:00PM +0200, Juraj Lutter wrote:
On 04/06/2012 11:24 PM, bert hubert wrote:
Hi Juraj,
To build the Recursor on Solaris (or even on Linux for maximum performance),
please first run dist-recursor and then cd into the generated
pdns-recursor-3.x directory
On Mon, Apr 23, 2012 at 11:00:06AM +0200, Thorben Hemmler wrote:
Hello List!
I´ve got some entries in my error.log which I couldn´t evaluate:
Apr 23 10:52:36 name1 pdns[1355]: TCP question accept error:
Software caused connection abort
Apr 23 10:52:40 name1 pdns[1355]:
On Wed, Apr 25, 2012 at 10:20:40PM +0200, Emiel van Berlo wrote:
We are migrating to PowerDNS and I notice some strange behaviour when
useing PowerDNS as a slave server.
Good and bad ;-)
Our primary bind server has this soa record :
ns1.domain.tld. hostmaster.domain.tld. 2012010101 28800
On Thu, May 03, 2012 at 10:03:57AM +0200, Sven Broeske wrote:
Okay, it seems that nobody can help me..
Then I'll try another approach.
Does anyone already used a NSEC RR with pdns-server 2.9.21/2.9.22?
Hi Sven,
For DNSSEC operations, you need PowerDNS Authoritative Server 3.x.
2.9.x might
Hi everybody,
SIDN, the Dutch registry, has developed a DNSSEC e-learning course, which is
now available on http://www.dnsseccourse.nl (English) and
http://www.dnsseccursus.nl (Dutch).
The course is freely available, and there is a test at the end too. The
materials are aimed at people that need
On Mon, Jun 04, 2012 at 08:25:05AM +0200, Jan-Piet Mens wrote:
Does PowerDNS support or will it support GSS-TSIG Secure Dynamic DNS
Updates (proabably related: RFC 3645, 2930) for interoperability
with dynamic Windoze clients?
PowerDNS authoritative server currently has no support for RFC
pdns_control reload-zones ?
Supposed to do what you want ;-)
On Jun 5, 2012, at 7:20 PM, Augie Schwer wrote:
Is there a way to load auth-zones into the PowerDNS recursor without
modifying the configuration file and restarting the daemon every time
I want to add a new domain to the list?
Hi everybody,
Peter van Dijk and I will be representing PowerDNS at ICANN44 in Prague
next week.
As always, we enjoy meeting up with PowerDNS users! So if you'd like to join
us for a beer (or whatever), please let us know.
We will also be presenting on Wednesday in the DNSSEC track, details can
these release notes have been written, we can confirm that this issue is
fixed by that commit.
Could you check if 3.1, which contains other worthwhile fixes, makes your
problem go away?
Thanks!
--
Bert Hubert
Netherlabs Computer Consulting BV - http://www.netherlabs.nl/
On Jun 28, 2012
-final-bert-hubert-icann-prague.pdf
And if you want to, you can get the audio too, which might help make more
sense of the presentation:
http://xs.powerdns.com/icann-powerdns/powerdns-icann44-prague.mp3
Kind regards,
Bert
--
PowerDNS Website: http://www.powerdns.com/
PowerDNS Community Website
Without a lot of comment, as I don't want to steal SIDN's thunder, but today
was an important day for DNSSEC in The Netherlands.
The goods are on: http://xs.powerdns.com/dnssec-nl-graph/
(this is an unofficial graph based on public data)
Some context for this graph can be found in the
On Jul 5, 2012, at 8:18 PM, Fred Wittekind wrote:
Then I got this error when trying to start nproxy (IP address censored):
nproxy: Fatal: Binding socket for incoming packets to 'a.b.c.d:53': Address
already in use
Which of course makes sense after seeing it, pdns is already binding to the
from our offer of free advice assistance, please contact us on
powerdns.supp...@netherlabs.nl. It should be clarified that this offer comes
from PowerDNS, and is not a promise by SIDN!
Kind regards,
Bert Hubert
(*) This is a 'best effort' offer, where we can't guarantee that we will be
able
On Fri, Jul 06, 2012 at 11:21:26AM +0200, Peter Gervai wrote:
I welcome this message but reminds me of mentioning that if there's a
gathered wisdom about common pitfalls and usual possible improvements
it may be useful to share these as most of us are not dutch root
registrars. ;-)
Yes - we
These best practices can now also be found ( edited) on
http://wiki.powerdns.com/trac/wiki/LargeScaleDNSSECBCP
Bert
n Sat, Jul 07, 2012 at 07:36:10PM +0200, bert hubert wrote:
On Fri, Jul 06, 2012 at 11:21:26AM +0200, Peter Gervai wrote:
I welcome this message but reminds me
.
If upgrading to 3.1 is an issue for you, please report your problems and
we'll work on fixing them.
Kind regards,
Bert Hubert
--
PowerDNS Website: http://www.powerdns.com/
PowerDNS Community Website: http://wiki.powerdns.com/
PowerDNS is supported and developed by Netherlabs: http
On Thu, Jul 12, 2012 at 07:16:00PM +0200, Jan-Piet Mens wrote:
No, and it is as yet unknown if or when it will.
OK: strike the *if*. :)
We will be doing it, and with the same philosophy as for the auth
implementation. We want to build a validating recursor that is good, simple
and reliable
On Aug 5, 2012, at 1:08 PM, Nicky Gerritsen wrote:
Dear all,
I have deployed DNSSEC yesterday for my domains.
First, my situation:
I have a Windows Server 2008 primary name server and a PowerDNS 3.1 slave
server. This slave runs on Ubuntu 12.04 and I have compiled it from source
On Aug 6, 2012, at 8:11 PM, Cody wrote:
Hello,
I'm having quite the difficulty figuring out the issue. I attempted compiling
the mydns module in the recent version of PDNS as well as the 3.0 branch
without success. I've been attempting the build against the stock MySQL
libraries in the
Pavel,
Sorry - we're a bit busy right now. However, can you try
forward-zones-recurse? It may do what you want.
Bert
___
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
http://mailman.powerdns.com/mailman/listinfo/pdns-users
Hi everybody,
If your resolver is failing to resolve around 5% of domains right now, it is
not you, it is them. Godaddy is down. In our tests, they represent almost 5%
of all popular domains.
Just so you know!
Bert
- Forwarded message from bert hubert bert.hub...@netherlabs.nl
On Mon, Sep 10, 2012 at 12:36:41PM -0700, Daniel L. Miller wrote:
Is that automated PowerDNS Recursor bulk test available for use by others?
Yes, you can observe it on
On Thu, Oct 04, 2012 at 10:38:38AM +0200, azurIt wrote:
I was trying to do this by calling 'pdns_control notify' for every domain but
the whole PDNS server freezes after a while and needs to be killed.
which version?
Bert
--
PowerDNS Website: http://www.powerdns.com/
PowerDNS
On Fri, Oct 12, 2012 at 09:30:50AM -0500, k...@rice.edu wrote:
Dear PDNS community,
Just to follow up. I went ahead and opened ticket #598 against
pdns-recursor-3.3.1 for this matter.
Seen it and looking in to it, thanks!
Bert
___
On Oct 22, 2012, at 8:10 PM, Daniel Lopes de Carvalho wrote:
Hi.
I'm using pdns with ldap backend and I would like to know if is
possible to configure pdns to work with offline cache to prevent the
pdns to crash when LDAP stop to work.
Hi Daniel,
PowerDNS relies on its backends. If the
On Thu, Nov 01, 2012 at 11:28:20AM +, James Leavers wrote:
Hi,
Is it correct that the recursor will use the results from the root servers
as opposed to the next level down, the gTLD servers? For instance: dig ns
yahooapis.com on my PowerDNS recursor:
Yes, for NS records and currently
On Sat, Nov 03, 2012 at 01:52:01PM +0400, Sergey wrote:
Is there an option similar to filter--on-v4?
(https://kb.isc.org/article/AA-00576/0/Filter--option-in-BIND-9-.html
Sergey,
No, right now there isn't. However, in PowerDNS Recursor you could do this
with a four line Lua script in
On Wed, Nov 21, 2012 at 03:32:04PM +0300, Odhiambo Washington wrote:
Hello,
I am trying to build pdns-3.2rc1 on FreeBSD 9.1 from source.
Hi Odhiambo,
--enable-recursor is not supported from the authoritative tarball. To build
the recursor, download a recursor tarball. By accident it does
On Mon, Dec 03, 2012 at 11:36:25AM +0200, Bogdan Enache wrote:
I see pdns-recursor isn't able to resolve that domain, it never
tries the next working DNS. For BIND i see it's working, it's trying
the next one.
Bogdan,
Please give us the domain name and we can look at it. PowerDNS does
On Mon, Dec 03, 2012 at 11:48:16AM +0200, Bogdan Enache wrote:
Hi Bert,
The domain is ktd.ro. It does not belong to me.
Ok, it works here, not sure what to make of the issue. Sorry!
Can you tcpump all four nameservers?
Bert
___
Pdns-users
On Dec 6, 2012, at 8:41 AM, Peter van Dijk wrote:
Hello Augie,
On Dec 4, 2012, at 23:16 , Augie Schwer wrote:
Are there any plans to build RPZ support into PowerDNS?
I googled around, and didn't see any discussion of RPZ outside of Bind, so I
thought I'd ask. :)
There are no
On Tue, Dec 11, 2012 at 12:07:33AM -0800, Joerg Stephan wrote:
i would like to see an Google Community of PowerDNS within Google Plus.
Does someone will set it up, or ca i feel free to do so?
Just opened it!
https://plus.google.com/communities/109461275309357168312
We may in time do an
On Wed, Dec 12, 2012 at 10:58:20AM -0800, George Fawcett wrote:
Hello pdns-users,
I have a question about the query cache, does the query cache take in
account the the requesting resolvers IP in the cache ?
So that it caches the result for that particular resolver ?
Meaning more of the same
On Wed, Dec 12, 2012 at 11:06 AM, bert hubert
bert.hub...@netherlabs.nlwrote:
On Wed, Dec 12, 2012 at 10:58:20AM -0800, George Fawcett wrote:
Hello pdns-users,
I have a question about the query cache, does the query cache take in
account the the requesting resolvers IP in the cache
On Thu, Dec 13, 2012 at 12:46:12PM +0100, Marten Lehmann wrote:
Hello,
after our migration from PowerDNS 2.9.21 to 3.1 we just noticed
another unexpected behaviour. If a TXT record for a subdomain is
defined, a wildcard at the same subdomain level is ignored.
This is correct DNS behaviour.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi everybody,
Release Candidate 3 of the PowerDNS Authoritative Server 3.2 is available from:
http://powerdnssec.org/downloads/pdns-3.2-rc3.tar.gz
http://powerdnssec.org/downloads/packages/pdns-static-3.2rc3-1.i386.rpm
On Wed, Jan 16, 2013 at 02:23:48PM +0300, Hawara wrote:
Why recursor version 3.3.1 was never released? Are there plans to
officially release it, or to release 3.4 ?
Hi 'Hawara',
We made a version we were ready to release but it turned out to have issues.
To avoid any confusion, the next
I'll mail you shortly, was a bit busy, sorry.
Bert
On Wed, Feb 27, 2013 at 01:28:19PM +0400, Nikolay Shaplov wrote:
Is it possible to get personal login for wiki.powerdns.com ?
It is quite not comfortable to track statuses and replies for the tickets
made
by anon user.
Can
On Wed, Mar 06, 2013 at 01:48:01PM +0100, Fredrik Dahlberg wrote:
Hello,
I have a situation where PowerDNS Authoritative server answers queries
differently from how BIND does it, when it is not authoritative for a zone.
PowerDNS (3.2):
;; -HEADER- opcode: QUERY, status: NOERROR, id: 59699
On Wed, Mar 06, 2013 at 05:42:54PM +0200, Aleksey Chudov wrote:
On 06.03.2013 16:22, Aki Tuomi wrote:
Could you please open a ticket about the patch above so we could
get it included in to powerdns, it looks really useful to me. +1
Aki
Ticket opened http://wiki.powerdns.com/trac/ticket/714
On Wed, Mar 06, 2013 at 06:05:39PM +0200, Aleksey Chudov wrote:
There is several problems if launch JVM directly from PowerDNS
Indeed, these are all very convincing. In revision 3111 you'll find a
version of PowerDNS that can connect to a UNIX socket if you feed one as the
pipe-command.
It also
On Fri, Mar 08, 2013 at 02:01:39AM +0200, Aleksey Chudov wrote:
On 07.03.2013 11:16, bert hubert wrote:
|Pipe Unix Socket|7|51180|
|Pipe + Socat|1|5009|
|Pipe + Socat|7|25856|
Pipe protocol over unix socket is really fast. Hope that the new
features will be added in one of the next
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi everybody,
Although we usually communicate via email, we also have a phone, and our
phone number changed this week.
The new number is +31-15-7850372.
This information can also be found on the websites PowerDNS and Netherlabs
below.
Thanks!
-
Hi everybody,
Today we're proud to present our revamped homepage, http://www.powerdns.com/
In addition, as of today, our homepage can be reached over IPv6 too.
We've worked hard to make this site a useful resource both for our open
source community (which helped extensively in proofreading the
Hi everybody,
If you can read this message, the move of Mailman to a new machine was
successful!
It is possible that one or two messages 'in flight' were lost during the
move, apologies for this.
Meanwhile, please let us know of any problems you experience. Moving mailing
lists around tends not
On Tue, Mar 19, 2013 at 05:28:28PM +0200, Nikolaos Milas wrote:
CXXFLAGS=${CXXFLAGS} -I/usr/local/openldap/include
LDFLAGS=${LDFLAGS} -L/usr/local/openldap/lib64 -lldap -llber
Can you try LIBS=-L/usr/local/openldap/lib64 ./configure ...
?
And can you double check a libldap.so lives
On Mar 19, 2013, at 10:41 PM, Ron Tsoref wrote:
The PipeBackend seems easy to implement. Does anyone actually use a
PipeBackend in production and can share some general performance information?
Is it much slower than other backends?
We've been able to squeeze 5 qps out of a pipe
On Tue, Apr 09, 2013 at 11:28:28AM +0200, Klaus Darilion wrote:
It seems the term narrow is not a general NSEC3 term, but a PDNS
term. Unfortunately I could not find a description what narrow vs.
non-narrow means. Maybe someone can describe this or extend the
docs (and if narrow is related to
On Apr 9, 2013, at 3:37 PM, Klaus Darilion wrote:
NSEC3 in 'narrow' mode uses additional hashing calculations to provide
hashed secure denial of existence 'on the fly', without further involving
the database.
Ah, I missed section 4.1.
It is only one line, so easy enough to miss.
o not
On Thu, Apr 18, 2013 at 11:55:57AM +0200, Steffan Noord wrote:
Hello List,
Im using now 9 months dnssec.
Using pdns with mysql backend
Somethimes im getting messages (from SIDN) that a dnssec domain is failing
None of the 3 DNSKEY records could be validated by any of the 1 DS
Hi everybody,
Today we'd like to announce two things: the launch of http://blog.powerdns.com
and
the completion of our move to GitHub. The blog is a continuation of our
previous personal blogs, and will feature exclusively PowerDNS, DNS and
closely related material.
This post, with more
Hi everybody,
As you may know, PowerDNS runs around 2000 tests for each commit to make
sure our improvements don't break things. Of these 2000 tests (which are
actually a lower number of tests, but repeated for various scenarios),
currently around 14 are unit tests.
The 2000 scenario based tests
On Tue, May 07, 2013 at 10:39:26AM +0200, Christof Meerwald wrote:
Hi,
just noticed something strange when trying to resolve powerdns.com via
Google DNS, e.g.
Hi Christof,
We did not look into this too deeply, but we do note that powerdns.com has
three DS records and powerdnssec.org only
Hi Tony,
So from what I understand, your issue is with resolving domains that are not
yours through the PowerDNS Recursor?
And that your authoritative servers are not involved in this issue?
Which version of the PowerDNS Recursor do you run? Please note that version 3.3
is rather more strict
the wrong address. This much-requested feature is
implemented in commit 2763, commit 2766, commit 2779 and commit 2781. Tested on
Linux, FreeBSD and Mac OS X.
Good luck!
--
Bert Hubert
Netherlabs Computer Consulting BV - http://www.netherlabs.nl/
On May 25, 2013, at 11:23 AM, Alexander Kunz
On Wed, May 29, 2013 at 10:10:23AM +0200, Elena Zwetkow wrote:
is see that lua-prequery-script is still marked with Not for production
use! in version 3.3.
Is there a reason generally not to use lua-prequery-script in production?
Hi Elena,
Unlike our other Lua features, which are stable,
On Jun 3, 2013, at 9:08 PM, Fernando Morgenstern wrote:
Hi,
I have an issue where several IPs are making thousands of MBOXFW requests.
This overloads our Mysql backend and crashes our server.
I tried to block them manually in our firewall, but there are lots of
different IPs.
Does
Hi Everybody,
This message below by Justin may be worth your while!
Date: Wed, 19 Jun 2013 11:21:25 +1030
From: jus...@postgresql.org
To: pdns-...@mailman.powerdns.com
Subject: [Pdns-dev] PDNS Recursor now on OSX
Hi all,
PowerDNS Recursor 3.5.2 is now officially available
through MacOS X
On Thu, Jun 20, 2013 at 09:55:50AM +0200, abang wrote:
For the record, it's fixed:
https://github.com/PowerDNS/pdns/commit/ae8bd630eac25f5f4d521e405d9a8c89553d219e
And for the record, you fixed it ;-)
Thanks!
Bert
___
Pdns-users mailing
On Jun 22, 2013, at 1:39 AM, Shamus Smith wrote:
Any ideas why it takes so long?
Rerun with --trace enabled and check what is happening. With some study, it
should be clear what it is waiting for.
Bert
___
Pdns-users mailing list
On Tue, Jul 02, 2013 at 05:00:41PM +1000, Miyone wrote:
Hi, i'm having some problem installing *pdns-3.2 from source *on *Centos
6.4.*
When i do ./configure --with-module= I get a configure error:
configure: error: cannot find Boost headers version = 103400
Do you have a working c++
in person!
Bert Peter
PS: this is what we look like https://www.facebook.com/Habbie
http://xs.powerdns.com/tmp/bert-hubert-large.jpg although I'll try to put on
a more cheery face.
___
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
http
Hi everybody,
Over the years, DNS access patterns change. New versions of popular
operating systems, whole new operating systems, DNSSEC, larger IPv6
deployments, the shift to mobile etc mean that the strategies for best DNS
performance are changing.
A few years ago we asked you to help us
On Mon, Sep 09, 2013 at 01:15:20PM +, Leigh Porter wrote:
Hi All,
Is the embedded Lua in Pdns a full Lua implementation where I can add access
to LDAP, Berkley DB and other Lua extentions?
Hi Leigh,
Yes and no. This is all possible, but please realize that at least in the
PowerDNS
Thanks - we're contacting you off list.
--
PowerDNS Website: http://www.powerdns.com/
Contact us by phone on +31-15-7850372
On Tue, Sep 10, 2013 at 03:52:06PM -0700, RD Miller wrote:
I am an IT professional and I'm looking for some quick phone help with
setting up PDNS. I have most of it
On Thu, Sep 12, 2013 at 01:39:31PM -0700, chayes wrote:
I'd like to isolate the domain inside of an lua script.
I know about the domain variable ... but it can contain subdomain like
alt1-safebrowsing.google.com.
Is there a variable that only contains the google.com in the above
example?
Or
Hi everybody,
It so happens that a number of PowerDNS contributors are coming to The Hague
on Friday 4th of October, so we are doing a small meetup!
If you are a PowerDNS user or contributor, you are cordially invited to join
us for drinks around 20:00 local time on the 4th of October.
We're
On Fri, Dec 27, 2013 at 08:50:40PM +0100, Pierre Beck wrote:
PowerDNS sends AXFR in three packets: SOA, RRs, SOA. This is fine with
AXFR requests, but leads to problems with IXFR requests. One problem is
Hi Pierre,
You had me confused for a bit as we've previously had implementations that
On Sun, Dec 29, 2013 at 03:01:31PM +0100, sth...@nethelp.no wrote:
Also, I could find anything about disable-edns / disable-edns-ping at
. could *not* find
Hi Steinar,
That's because you should not be touching these settings. In fact it is
currently documented as pdns_recursor.cc:
Hi everybody,
Happy new year!
Secondly, Hacker Public Radio just published the interview they did with us
last August, you can listen to it on:
http://hackerpublicradio.org/eps.php?id=1413
It covers a lot of ground, including some background on why we started
PowerDNS. Perhaps
On Wed, Feb 05, 2014 at 09:30:40PM +0100, Rygl Aleš wrote:
0.049862 62.141.28.21 - a.b.c.d DNS Standard query A
nbpqrfthvwxyz.aa.cp375.com
0.049872 62.141.28.21 - a.b.c.d DNS Standard query A
nbpqrfthvwxyz.aa.cp375.com
(...)
There are random hostnames generated and the domain seemed to be
Hi everybody,
Over the past week we've been contacted by a few users reporting their
PowerDNS Recursor became unresponsive under a moderate denial of service
attack, one which PowerDNS should be expected to weather without issues.
In the course of investigating this issue, we've found that many
for the current version 3.5.3?
Winfried
Am 06.02.2014 13:10, schrieb bert hubert:
Hi everybody,
Over the past week we've been contacted by a few users reporting their
PowerDNS Recursor became unresponsive under a moderate denial of service
attack, one which PowerDNS should be expected to weather
On Mon, Feb 17, 2014 at 03:12:01PM +0100, car...@tiscali.com wrote:
Hello list,
I'm trying to investigate the output of my pdns recursor,
I'm getting a lot of messages like :
Ignoring answer from x.y.z.k on server socket!
where x.y.z.k are various client ip addresses.
Which version are
On 13 Mar 2014, at 20:07, k...@rice.edu wrote:
Hi PDNS community,
I have a quick question about the impact of lua scripts on the recursors
performance. If occasionally a script needs to perform more processing for
a particular request, does that lookup/lua processing block or slow up
Hi everybody,
Sadly, further DoS attacks are plaguing the world of DNS, which is bad both
for the targets of those DoS attacks, but also for us DNS operators that
help originate them. This post has guidance on how to make sure your
PowerDNS Recursor mitigates the current attacks.
If you are
On Sun, Apr 06, 2014 at 10:44:51PM +0200, Jan Lühr wrote:
# pdnssec check-zone bb.kbu.freifunk.net
Following record had a problem: bb.kbu.freifunk.net IN SOA
2014040603 28800 7200 604800 86400
Error was: Parsing record content: missing field at the end of record
content ' 2014040603 28800
channel as described on https://www.powerdns.com/opensource.html
Thanks!
Bert Hubert
--
PowerDNS Website: http://www.powerdns.com/
Contact us by phone on +31-15-7850372
___
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
http
On Mon, May 12, 2014 at 09:32:08PM +, Daniel Eschner wrote:
ysql SELECT * FROM `records` WHERE `domain_id` = 232896;
This should show SOA records. In older verions of PowerDNS, things would
accidentally work w/o SOA records. But no more.
So add those, and things will work.
Bert
check-zone altersvorsorgen.org.
also try pdnssec rectify altersvorsorgen.org.
If that doesn't show anything, try enabling 'query-logging' and 'loglevel=9'
to see what queries powerdns is sending.
Bert
-Ursprüngliche Nachricht-
Von: bert hubert
Imre,
Can you strace the startup with threads=1?
Bert
On May 20, 2014 10:25 PM, Imre Gergely gi...@narancs.net wrote:
Hi
I did manage to reproduce this in a VM. Installed a CentOS 6.5, and recursor
3.5.3 from EPEL. Then I did this:
for i in `seq 1 16`; do for j in `seq 1 254`; do
[root@c605 ~]#
[root@c605 ~]# ip a |grep inet |wc
4576 27451 233679
Attached. If this is not what you had in mind, please let me know.
On 05/20/2014 11:31 PM, bert hubert wrote:
Imre,
Can you strace the startup with threads=1?
Bert
On May 20, 2014
On Tue, May 20, 2014 at 03:58:19PM -0400, James Baer wrote:
Any body have an ideas what I can do to correct this problem? I
really don't see a reason why the recursor would care how many ip
addresses I have on a system.
Hi James,
From the investigations performed by Imre and Aki overnight,
On Wed, May 21, 2014 at 08:39:35AM -0400, James Baer wrote:
Thank you all for looking into this and for the suggestions. I'll
give them a try and report back.
Thanks. Meanwhile, we've written up our conclusions here:
Hi everybody,
To add some context to the RC1 release, many large scale resolver operators
are currently seeing high levels of DNS-based denial of service attacks.
3.6.0 contains specific countermeaures for the current wave of attacks, and
comes with a more generic Lua feature to rapidly filter
On 04 Jun 2014, at 17:20, okTurtles h...@okturtles.com wrote:
I tried commenting out `forward-zones-recurse`, but that made things worse.
Loading pastebin.com and ycombinator.com failed with SERVFAIL.
I did manage to get the trace-regex for them though:
http://pastebin.com/bvsRQc81
It
On Sat, May 31, 2014 at 02:23:38PM -0500, okTurtles wrote:
I'd prefer for PDNS recursor to do the detecting and mitigating itself,
but I want a solution ASAP and don't want to wait, so if it doesn't
You want a lot!
Here's what I wrote elsewhere to you, but I'm repeating it here so our
stance
On Fri, Jun 13, 2014 at 11:04:55AM -0300, Daniel Lopes de Carvalho wrote:
Hello,
I have a PowerDNS 3 server and recursor running on a linux box and I'm
looking for a way to forward a query to an address to an IP.
Example: I have a address www.example.com with IP 200.X.X.X, but I want to
Hi everybody,
In short: there is a market for (small) PowerDNS jobs, and if you are
available for such work, read on for where we’ll be sending people who need
PowerDNS work done!
The longer story:
As PowerDNS use continues to increase, so does the number of inquiries we
receive from operators
Hi everybody,
I'm presenting today at ICANN50, at around 3PM London time (10AM US east
coast, 16:00 Dutch time).
You can join in live via:
http://london50.icann.org/en/schedule/mon-tech
which has live audio and slides, and you can also ask questions.
If you are there, we always enjoy
Hi everbody,
First let's start with the good news - we've been receiving some great
feedback from PowerDNS Recursor 3.6.0 deployments using the
'pdns-distributes-queries' setting. According to 'namebench', we now exceed
even on-site Google 8.8.8.8 in perceived performance by a significant
On Mon, Jul 14, 2014 at 03:31:17PM +0200, Willem wrote:
Oops, celebrated too early. Today, I recorded another unexpected NXDOMAIN
reply:
Willem,
Can you drop by our IRC channel? We can help you debug there.
We are sadly unable to debug issues we can't verify remotely though.
Bert
for 1) causing this mess and 2) blaming our users for
it. Sorry.
Thanks to Leo, Winfried and Ruben for nagging us about the issue. You were
right.
The situation has now been resolved, and you should no longer have problems
posting to our lists.
Bert
--
Bert Hubert
Netherlabs Computer
On Fri, Aug 15, 2014 at 10:47:31AM +0200, Carlos HyD wrote:
Hi,
I had to rollback two of our dns to 2.9.22 cause of this and I’d like to go
with latest version:
Hi Carlos -
dig A cloud11.servidor-de-dns.com @ns1.hospedajeydominios.com
;; ANSWER SECTION:
cloud11.servidor-de-dns.com.
On Fri, Aug 01, 2014 at 07:52:40AM +0200, Pepe Charli wrote:
Is there any estimated release date for Powerdns 3.4 y Pdnscontrol?
Hi Pepe,
When it is ready, but we are aiming for within 4 weeks.
Bert
___
Pdns-users mailing list
501 - 600 of 844 matches
Mail list logo