Am Donnerstag, 12. November 2009 schrieben Sie: > On Thu, Nov 12, 2009 at 09:14:28PM +0100, Gerhard Gaußling wrote: > > ~$ dig gogle.gom > > This is very strange. Are you 100% sure the question is being > processed by your local PowerDNS Recursor? > > Most NXDOMAIN redirection setups do not actively intercept non-RD DNS > packets. > > Can you show the output of your Recursor running in '--trace' mode > when answering a question for 'gogle.gom'?
I think you're right, but what processes the question then? When I stop the recursor I get the same output. But I don't understand how to trace the output. I get no messages and no logfiles: Nov 12 23:59:50 Calling daemonize, going to background gerh...@ubuntu:~$ gerh...@ubuntu:~$ ps axu|grep recu root 20642 0.0 0.0 12704 1416 ? Ss Nov12 0:00 pdns_recursor --local-address=172.16.240.1 --allow-from=172.16.240.1/8 --daemon --trace Now sometimes I don't get those responses: ~$ dig ggfj.gm @localhost ; <<>> DiG 9.4.2-P2 <<>> ggfj.gm @localhost ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34719 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;ggfj.gm. IN A ;; AUTHORITY SECTION: gm. 3600 IN SOA ns1.nic.gm. admin.nic.gm. 2009111310 21600 900 604800 7200 ;; Query time: 80 msec ;; SERVER: 172.16.240.1#53(172.16.240.1) ;; WHEN: Fri Nov 13 00:06:40 2009 ;; MSG SIZE rcvd: 75 gerh...@ubuntu:~$ lynx --dump ggfjjk.gom FRAME: [1]http://navigationshilfe.t-online.de/dnserror?url=http://www.ggfjjk.g om.com/ The same with the router: ~$ dig ggfjjk.gom @fritz.box ; <<>> DiG 9.4.2-P2 <<>> ggfjjk.gom @fritz.box ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63178 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;ggfjjk.gom. IN A ;; AUTHORITY SECTION: . 3600 IN SOA A.ROOT-SERVERS.NET. NSTLD.VERISIGN-GRS.COM. 2009111201 1800 900 604800 86400 ;; Query time: 55 msec ;; SERVER: 172.16.240.3#53(172.16.240.3) ;; WHEN: Fri Nov 13 00:05:52 2009 ;; MSG SIZE rcvd: 103 But when I surf there is the redirection: gerh...@ubuntu:~$ lynx --dump ggfjjk.gom FRAME: [1]http://navigationshilfe.t-online.de/dnserror?url=http://www.ggfjjk.g om.com/ ~$ ps axu |egrep '(recursor|dns)' root 1447 0.0 0.0 35876 1332 ? Ssl Nov12 0:00 /usr/sbin/pdns_server --daemon --guardian=yes pdns 1449 0.0 0.1 135712 4488 ? Sl Nov12 0:01 /usr/sbin/pdns_server-instance --daemon --guardian=yes root 20642 0.0 0.0 12704 1416 ? Ss Nov12 0:00 pdns_recursor --local-address=172.16.240.1 --allow-from=172.16.240.1/8 --daemon --trace gerhard 28342 0.0 0.0 6208 940 pts/1 R+ 00:12 0:00 egrep (recursor|dns) But this address gets a NOERROR response: ~$ dig gogle.gom @localhost ; <<>> DiG 9.4.2-P2 <<>> gogle.gom @localhost ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 6266 ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;gogle.gom. IN A ;; ANSWER SECTION: gogle.gom. 0 IN A 80.156.86.78 gogle.gom. 0 IN A 62.157.140.133 ;; Query time: 54 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: Fri Nov 13 00:12:55 2009 ;; MSG SIZE rcvd: 59 why? How to use the --trace option? Ok, I found it: /var/log/daemon.log, but it seems that there are no questions or responses to pdns_recursor. I think I messed up the setup. But what dns answers to the questions? _______________________________________________ Pdns-users mailing list [email protected] http://mailman.powerdns.com/mailman/listinfo/pdns-users
