'forward-zone' can only be specified one time in the configuration file. It
accepts a list of domain/address pairs, though, so you can setup multiple
domains for forwarding.

On Fri, Mar 20, 2020 at 1:18 PM Giovanni Vecchi via Pdns-users <
pdns-users@mailman.powerdns.com> wrote:

> Hi Brian,
>
> I missed that in configuration file multiple "forwarding-zone=" entries
> were present for different zone: I only wrote you the first of them that
> queries were failing, I'm sorry.
> I think the problem was that following zone forwarding need to be
> configured with "forwarding-zone*+*=" directive, but if I didn't find any
> feedback in the documentation (
> https://doc.powerdns.com/recursor/settings.html#forward-zones): may I
> open a github issue?
>
> Thanks for your support
>
>
>
>
> On Fri, 20 Mar 2020 at 17:42, Brian Candler <b.cand...@pobox.com> wrote:
>
>> Works for me, with 4.3.0-1pdns.bionic
>>
>> Added to recursor.conf:
>> forward-zones=domain.sec=127.0.0.1:5300
>>
>> Restarted pdns-recursor
>>
>> Test:
>>
>> root@cache1:~# dig @localhost testing.domain.sec a
>>
>> ; <<>> DiG 9.11.3-1ubuntu1.11-Ubuntu <<>> @localhost testing.domain.sec a
>> ; (1 server found)
>> ;; global options: +cmd
>> ;; Got answer:
>> ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 54252
>> ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
>>
>> In another window, while doing the above:
>>
>> root@cache1:~# tcpdump -i lo -nnX port 5300
>> tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
>> listening on lo, link-type EN10MB (Ethernet), capture size 262144 bytes
>> 16:40:24.603111 IP 127.0.0.1.26305 > 127.0.0.1.5300: UDP, length 47
>>      0x0000:  4500 004b c7dc 4000 4011 74c3 7f00 0001 E..K..@.@.t.....
>>      0x0010:  7f00 0001 66c1 14b4 0037 fe4a 740e 0000 ....f....7.Jt...
>>      0x0020:  0001 0000 0000 0001 0774 6573 7469 6e67 .........testing
>>      0x0030:  0664 6f6d 6169 6e03 7365 6300 0001 0001 .domain.sec.....
>>      0x0040:  0000 2904 d000 0080 0000 00 ..)........
>>
>> So I'm sorry, I don't know what's different about your setup. You did
>> restart pdns-recursor? Does "journalctl -eu pdns-recursor" show any
>> errors or warnings at startup?
>>
>>
>>
>
> --
>
>  <http://www.certego.net/>
> Giovanni Vecchi
> Infrastructure Lead Engineer, Certego
> +39-059-7353333
>  <http://www.linkedin.com/company/certego>  <http://twitter.com/Certego_IRT>  
> <http://github.com/certego>  <http://www.youtube.com/CERTEGOsrl>  
> <http://plus.google.com/117641917176532015312>
> Use of the information within this document constitutes acceptance for use in 
> an "as is" condition. There are no warranties with regard to this 
> information; Certego has verified the data as thoroughly as possible. Any use 
> of this information lies within the user's responsibility. In no event shall 
> Certego be liable for any consequences or damages, including direct, 
> indirect, incidental, consequential, loss of business profits or special 
> damages, arising out of or in connection with the use or spread of this 
> information.
>
> _______________________________________________
> Pdns-users mailing list
> Pdns-users@mailman.powerdns.com
> https://mailman.powerdns.com/mailman/listinfo/pdns-users
>
_______________________________________________
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/pdns-users

Reply via email to