Thanks Stephane!!! Adding ::1 in the ACL did the trick. Linh Khuu
-----Original Message----- From: Stephane Bortzmeyer [mailto:bortzme...@nic.fr] Sent: Thursday, February 25, 2010 11:09 AM To: Khuu, Linh MicroTech Cc: 'bind-users@lists.isc.org' Subject: Re: Question about dig command On Thu, Feb 25, 2010 at 10:58:49AM -0500, Khuu, Linh MicroTech <linh.k...@ssa.gov> wrote a message of 54 lines which said: > client ::1#33086: query (cache) 'dnssec12.datamtn.com/AAAA/IN' denied > > Then I switched to use the ???dig??? command from 9.4.1-P1 to query the same > AAAA record, I got result nicely. Possible reason: the recent dig can use IPv6 *transport* (talking to the server with IPv6, not just asking IPv6 *data*). But may be ::1 (localhost in IPv6) is not authorized by your name server. Check the ACL, try dig with -4 (or @127.0.0.1), etc.
PGP.sig
Description: PGP signature
_______________________________________________ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users