Grant, Where are you doing your dig's from? One of your nameservers?
When doing a dig for an SOA record we get (using OpenDNS as our resolver): # dig SOA gimpelevich.san-francisco.ca.us ; <<>> DiG 9.7.0-P1 <<>> SOA gimpelevich.san-francisco.ca.us ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 65487 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;gimpelevich.san-francisco.ca.us. IN SOA ;; ANSWER SECTION: gimpelevich.san-francisco.ca.us. 86396 IN SOA ns1.he.net. hostmaster.gimpelevich.san-francisco.ca.us. 2011070500 10800 3600 604800 86400 ;; Query time: 1 msec ;; SERVER: 208.67.222.222#53(208.67.222.222) ;; WHEN: Thu Jul 14 13:15:46 2011 ;; MSG SIZE rcvd: 106 -- (using HE.net's serveras our resolver): # dig SOA gimpelevich.san-francisco.ca.us @ns1.he.net ; <<>> DiG 9.7.0-P1 <<>> SOA gimpelevich.san-francisco.ca.us @ns1.he.net ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 29195 ;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; WARNING: recursion requested but not available ;; QUESTION SECTION: ;gimpelevich.san-francisco.ca.us. IN SOA ;; ANSWER SECTION: gimpelevich.san-francisco.ca.us. 86400 IN SOA ns1.he.net. hostmaster.gimpelevich.san-francisco.ca.us. 2011070500 10800 3600 604800 86400 ;; Query time: 2 msec ;; SERVER: 216.218.130.2#53(216.218.130.2) ;; WHEN: Thu Jul 14 13:17:55 2011 ;; MSG SIZE rcvd: 137 Chris Hesselrode | Principal / President Phoenix Knowledge Ventures, LLC PO Box 342 Maricopa, AZ 85139 P. 602.635.2355 M. 480.212.6232 F. 480.248.2769 E. [email protected] W. http://www.phoenixkv.com Follow us on Twitter : @phoenixkv, @hosthaus, @fluidns, @urbandesignhaus -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Grant Keller Sent: Thursday, July 14, 2011 11:49 AM To: [email protected] Subject: [Pdns-users] 4th level names and SOA records Hello all, So we provide delegation for san-francisco.ca.us. We have one users domain (gimpelevich.san-francisco.ca.us) with a zone file consisting of: gimpelevich.san-francisco.ca.us. IN NS ns1.he.net. gimpelevich.san-francisco.ca.us. IN NS ns2.he.net. gimpelevich.san-francisco.ca.us. IN NS ns3.he.net. gimpelevich.san-francisco.ca.us. IN NS ns4.he.net. gimpelevich.san-francisco.ca.us. IN NS ns5.he.net. At the HE servers, they have ns1.he.net. set as the soa, however, soa queries to anything other than one of the HE servers report the soa for san-francisco.ca.us. i.e.: dig soa gimpelevich.san-francisco.ca.us. ;; AUTHORITY SECTION: san-francisco.ca.us. 259200 IN SOA ns1.sonic.net. hostmaster.sonic.net. 2011061002 3600 300 1209600 3600 and dig soa gimpelevich.san-francisco.ca.us. @ns5.he.net ;; ANSWER SECTION: gimpelevich.san-francisco.ca.us. 86400 IN SOA ns1.he.net. hostmaster.gimpelevich.san-francisco.ca.us. 2011070500 10800 3600 604800 86400 It appears that we since we are responding with the aa bit for san-francisco.ca.us. We end up responding as Authority, and the soa query stops at us, rather then moving on to the nameservers for the domain in question. I was hoping there is a way we can fix this and have the query continue to the authoritative name server. Thank you in advance for any advice. -- Grant Keller _______________________________________________ Pdns-users mailing list [email protected] http://mailman.powerdns.com/mailman/listinfo/pdns-users _______________________________________________ Pdns-users mailing list [email protected] http://mailman.powerdns.com/mailman/listinfo/pdns-users
