Heh, totally missed the error. duh. Thanks for pointing it out. I’ll check out the hairpinning on the nat. didn’t even think of that. Sent from my iPhone
> On Dec 7, 2022, at 3:18 PM, Brian Candler <b.cand...@pobox.com> wrote: > > On 07/12/2022 18:47, Curtis Maurand via Pdns-users wrote: >> dig doesn't return an error > ... >> root@sirius:~# dig sirius.xyonet.com >> >> ; <<>> DiG 9.16.33-Debian <<>> sirius.xyonet.com >> ;; global options: +cmd >> ;; Got answer: >> ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 10323 > > To be clear: SERVFAIL *is* an explicit error response from the recursor. It > means it couldn't contact any of the nameservers for the domain you're > querying. > > And I suspect this would also fail: > > root@sirius:~# dig +norec @208.105.217.26 sirius.xyonet.com. > > Hence the problem is that the nameserver can't be reached on its *public* IP > from the *private* network. But as you've found, sending the query to the > private IP fixes this. I'm glad you've managed to make it work! > _______________________________________________ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users
