The backend is mine, in getSOA I always set auth=true for bar.com. The backend is not DNSSEC enabled.
Here's some trace info, the lines beginning with getSOA, lookup, and returning are mine ... the rest I'm sure you will recognize. Jul 25 12:31:51 getSOA qname='ns1.bar.com' original='ns1.bar.com' Jul 25 12:31:51 getSOA qname='bar.com' original='ns1.bar.com' Jul 25 12:31:51 We have authority, zone='bar.com', id=152197436 Jul 25 12:31:51 UeberBackend received question for ANY of ns1.bar.com Jul 25 12:31:51 lookup ns1.bar.com ANY 152197436 Jul 25 12:31:51 Ueber get() was called for a ANY record Jul 25 12:31:51 returning ns1.bar.com 98.124.192.1 A auth=1 Jul 25 12:31:51 Found an answering backend - will not try another one Jul 25 12:31:51 Ueber get() was called for a ANY record Jul 25 12:31:51 returning ns1.bar.com ns1.bar.com. NS auth=1 Jul 25 12:31:51 Found an answering backend - will not try another one Jul 25 12:31:51 Ueber get() was called for a ANY record Jul 25 12:31:51 returning ns1.bar.com ns1.bar.com. info.bar.com. 2002050701 10001 1801 604801 181 SOA auth=1 Jul 25 12:31:51 Found an answering backend - will not try another one Jul 25 12:31:51 Ueber get() was called for a ANY record Jul 25 12:31:51 UeberBackend reached end of backends Jul 25 12:31:51 After first ANY query: weDone=0, weHaveUnauth=1, weRedirected=0 Jul 25 12:31:51 Have unauth data, so need to hunt for best NS records
_______________________________________________ Pdns-users mailing list [email protected] http://mailman.powerdns.com/mailman/listinfo/pdns-users
