On 2017-08-14 1:41 PM, Curtis Maurand wrote:
Yesterday, I had caa records working. At least the server was returning something. In my work to get dnssec working, I've managed bread CAA support somehow. Now,even though the record exists, the server does not return a response.
Did you query for the wrong name? You have two different names used here. xyonet.com and deacon.xyonet.com
root@deacon:/var/log# dig @23.111.169.69 <http://23.111.169.69> xyonet.com <http://xyonet.com> type257 ; <<>> DiG 9.9.5-3ubuntu0.15-Ubuntu <<>> @23.111.169.69 <http://23.111.169.69> xyonet.com <http://xyonet.com> type257 ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 25927 ;; flags: qr aa rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1 ;; WARNING: recursion requested but not available ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 1680 ;; QUESTION SECTION: ;xyonet.com <http://xyonet.com>. IN TYPE257 ;; Query time: 1 msec ;; SERVER: 23.111.169.69#53(23.111.169.69) ;; WHEN: Mon Aug 14 15:11:25 EDT 2017 However. name type deacon.xyonet.com <http://deacon.xyonet.com> CAA 0 issue "letsencrypt.org <http://letsencrypt.org>" --Curtis _______________________________________________ Pdns-users mailing list [email protected] https://mailman.powerdns.com/mailman/listinfo/pdns-users
_______________________________________________ Pdns-users mailing list [email protected] https://mailman.powerdns.com/mailman/listinfo/pdns-users
