Hi, I noticed the following inconsistency in the authoritative server, and I would like to know if it is intended. (I was not unable to figure this out by looking up the RFCs.)
Let's say we have *.example.com. IN A 1.2.3.4 a.example.com. IN A 2.3.4.5 Then, without DNSSEC enabled, asking for the A record of b.a.example.com gives 1.2.3.4. However, with DNSSEC enable, the result is NXDOMAIN. So, there is a difference in how a wildcard record impacts higher-level subdomains of a domain which is configured explicitly on the same level as the wildcard record. Is this behavior intended? Best, Peter
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Pdns-users mailing list [email protected] https://mailman.powerdns.com/mailman/listinfo/pdns-users
