Re: [Pdns-users] zoneToCache - File Format
Hi
I'd recommends using RPZ on your recursor, if you sign-up here: [
https://github.com/Homas/ioc2rpz#installation |
https://github.com/Homas/ioc2rpz#installation ] - you'll get a ton of regularly
updates feeds and you an implement your own blacklist/whitelist fairly easily.
Take a look at it and see what you think.
I've been using those feeds for quite a while and without problems.
Regards
Bill
> From: "Pdns-users"
> To: "Pdns-users"
> Sent: Tuesday, 18 January, 2022 21:13:54
> Subject: [Pdns-users] zoneToCache - File Format
> Hi All,
> BackGround:
> PowerDNS Recursor v4.6.0
> I have the example from the docs
> (https://doc.powerdns.com/recursor/lua-config/ztc.html) working perfectly:
> zoneToCache(".", "url", "https://www.internic.net/domain/root.zone;, {
> refreshPeriod = 0 })
> Problem:
> I’d like to load a “BlackList” file (or multiple BlackList files) the same
> way,
> but I have no idea what file format the PDNS zoneToCache function is looking
> for. In a perfect world, I’d like to be able to take a list of domains like
> this:
> Domain1.com
> Domain2.com
> Domain3.com
> *.Domain3.com
> Domain4.com
> Sub.Domain4.com
> Sub2.Domain4.com
> And load them via the zoneToCache feature, and have them all point to a
> specific, common IP Address, like 192.168.1.100, but I can’t seem to figure
> out
> how to accomplish this.
> Any thoughts, examples, or suggestions would be greatly appreciated. Thank you
> very much for your time & help.
> Cheers,
> Clint
> ___
> Pdns-users mailing list
> Pdns-users@mailman.powerdns.com
> https://mailman.powerdns.com/mailman/listinfo/pdns-users
___
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/pdns-users
Re: [Pdns-users] Cant install PDns on RHEL 8.4
From: Chad via Pdns-users Sent: Thursday, 14 October 2021 18:26 To: pdns-users@mailman.powerdns.com Subject: Re: [Pdns-users] Cant install PDns on RHEL 8.4 Here is the error I’m getting when trying to install on RHEL 8.4. Can anyone help me? [root@mercury2021 ~]# yum install -y epel-release Updating Subscription Management repositories. Last metadata expiration check: 0:38:09 ago on Thu 14 Oct 2021 12:45:45 PM EDT. Package epel-release-8-13.el8.noarch is already installed. Dependencies resolved. Nothing to do. Complete! [root@mercury2021 ~]# yum install -y dnsdist Updating Subscription Management repositories. Last metadata expiration check: 0:38:15 ago on Thu 14 Oct 2021 12:45:45 PM EDT. No match for argument: dnsdist Error: Unable to find a match: dnsdist [root@mercury2021 ~]# [root@mercury2021 ~]# yum install pdns-recursor Updating Subscription Management repositories. Last metadata expiration check: 0:36:59 ago on Thu 14 Oct 2021 12:45:45 PM EDT. No match for argument: pdns-recursor Error: Unable to find a match: pdns-recursor [root@mercury2021 ~]# It seems that it cant find pdns-recursor package. You're better off using the most recent releases from the official Powerdns repositories here: https://u19316384.ct.sendgrid.net/ls/click?upn=N7jpbeWTzxtujQAOY3BtvI9DbVZ8bNdv5dKWXoUy6q1gBns8SXNrz1MR0IvlTxq81ldR_TiYiw2AvEYKA17CpEZ-2BkosyazU-2FwWSAS-2B8TaMISPvdiIu1rzYwgSakPsFYjBOYvzUzHVAn68bz1TUBd2d2azygFYaa5eJX5M9Q0BcHOf9ciyAfac2x4Y8NJm3S483UXjh5M7rbhN0yDz2ZZfD2t6H2zvgX4chQcEiPANVSYcsGn6YbC8YxhYYZ6JzeRelYhaMmsR66AWJg1-2BEebz1rKp5N-2Foi4MmcbE3K7MgtdZfT-2BI-3D Regards Bill ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users
Re: [Pdns-users] PowerDNS admin Configuration
Hi I don't know why you think PowerDNS-Admin is not maintained any more or had it's last code change two years ago. It is under continued development but I'm guessing you're not talking about this product: [ https://u19316384.ct.sendgrid.net/ls/click?upn=N7jpbeWTzxtujQAOY3BtvNu2aMstFk46bdwiUkoypzOze2Ai63QM4-2BRXI0s8fZwCb1MUtwJg-2BzeDQ2OZYebTRw-3D-3DGT_V_TiYiw2AvEYKA17CpEZ-2BkosyazU-2FwWSAS-2B8TaMISPvdiIu1rzYwgSakPsFYjBOYvz4c528DWwtVf76sYOdQzkH6vNwf-2FpyN516bvKWJZEwdMOEswr3VbA-2FEeRK5dy6biUjswmG2FU31EhsNYfRBL5ylALdXlm6Hab0XHpDUrSsso89mjNWjCLVoU7ST5lOf9lpPy1anlIz-2BRUf4oc4BrmYa0kqFgTl9I9pi5fzlV7SIY-3D | https://u19316384.ct.sendgrid.net/ls/click?upn=N7jpbeWTzxtujQAOY3BtvNu2aMstFk46bdwiUkoypzOze2Ai63QM4-2BRXI0s8fZwCb1MUtwJg-2BzeDQ2OZYebTRw-3D-3DU_nL_TiYiw2AvEYKA17CpEZ-2BkosyazU-2FwWSAS-2B8TaMISPvdiIu1rzYwgSakPsFYjBOYvz4c528DWwtVf76sYOdQzkH14WnvqOpeCQl54W5p0I6o7Ttv4FZHQV8O6VUWmAirakwrv6T3bqxnLKsPHwTtL8Zu2pvW-2FA8XG2FNLZ6SeO5iXTy5XNzyUB-2BjpLoPP6oPhhzwIET6pFfm0n-2BrVeKkP9lb8tD-2BXj6PDfiBqfTn xph34-3D ] Perhaps the o/p is also talking about another product? I can assure you both that the product I've mentioned does work and works well as I've been using it for quite a while and without problems. Regards Bill > From: "Pdns-users" > To: frank+p...@tembo.be > Cc: "Pdns-users" > Sent: Tuesday, 20 July, 2021 13:13:25 > Subject: Re: [Pdns-users] PowerDNS admin Configuration > I would say look for other GUI instead of powerdns admin because last code > change was 2 years ago and look like no one maintaining any more. > Recently I moved from powerdns admin to powerdns manager which is latest and > simplified GUI. > Good luck. > Sent from my iPhone >> On Jul 20, 2021, at 4:46 AM, frank+pdns--- via Pdns-users >> wrote: >> Hi Adivya, >> This is the PowerDNS users mailing lists, for users of the PowerDNS open >> source >> products (PowerDNS Auth, PowerDNS Recursor and dnsdist). The PowerDNS Admin >> product you're referring to, is not a PowerDNS product (despite the name) >> and I >> guess most people on this list don't use it. I have no idea if there is a >> PowerDNS Admin users mailing list, but if there is, you're better off asking >> your question there. >> Kind Regards, >> Frank >>> On 16 Jul 2021, at 8:42 PM, Adivya Singh via Pdns-users < [ >>> mailto:pdns-users@mailman.powerdns.com | pdns-users@mailman.powerdns.com ] > >>> wrote: >>> Hi Team, >>> I am unable to create a install and Configure a PowerDNS admin on a Server, >>> it >>> installed Fine, but when i am trying to open the Link , it say "Page not >>> Found >>> error" >>> it never shows any error while installation and Configuration, I am using a >>> Setup in Canonical Open Stack where I am using Internal IP for >>> Configuration, >>> There is no Floating IP attached\ >>> Regards >>> Adivya Singh >>> ___ >>> Pdns-users mailing list >>> [ mailto:Pdns-users@mailman.powerdns.com | Pdns-users@mailman.powerdns.com ] >>> https://u19316384.ct.sendgrid.net/ls/click?upn=N7jpbeWTzxtujQAOY3BtvLSTyiAKlnRLTCW2Mfn-2FkRSgTPn6E0-2B2P5Ka2gDdhtYWwi3Y4q-2BYQAg4o56l5fAGz4SeWucoi3bghTPYqnSgVZ0-3DUrlR_TiYiw2AvEYKA17CpEZ-2BkosyazU-2FwWSAS-2B8TaMISPvdiIu1rzYwgSakPsFYjBOYvz4c528DWwtVf76sYOdQzkH5-2FCxBBfw65Leq2qmuW7nIR-2BGADV7C4rAri7soYPiNHF9s4vsTvotx-2F9pAwiMKahhlUSWJtOQGJItFGWF3DoTMzokkZaKMPCvs0kZ5BsUrGzOjoTZozZvg4G-2Bw-2FVCJnZ-2BlcNxzljZIBcmsVGQV1CmNs-3D >> Frank Louwers >> PowerDNS Certified Consultant @ [ >> https://u19316384.ct.sendgrid.net/ls/click?upn=x-2BLizvQ-2FnFV1pXT1RZAVp-2FiAygPkrYr3vTKxl2nXSmw-3DUwYp_TiYiw2AvEYKA17CpEZ-2BkosyazU-2FwWSAS-2B8TaMISPvdiIu1rzYwgSakPsFYjBOYvz4c528DWwtVf76sYOdQzkH8cy82SPiFH-2F2AgC7PAeun-2FLJCEusY9d6CwebnjCrVAzVMAqFeUe7l2zfR8DwJ1veJGR-2FyQvlt6SDjAoAVB79-2FVevLsYNJ-2FOz3K2-2BNE3Yhl5E-2FED0ZKQ4R1wVL4Aslum8H-2BYfFmsUynBK41alA0y-2FGw-3D >> | Kiwazo.be ] >> ___ >> Pdns-users mailing list >> Pdns-users@mailman.powerdns.com >> https://u19316384.ct.sendgrid.net/ls/click?upn=N7jpbeWTzxtujQAOY3BtvLSTyiAKlnRLTCW2Mfn-2FkRSgTPn6E0-2B2P5Ka2gDdhtYWwi3Y4q-2BYQAg4o56l5fAGz4SeWucoi3bghTPYqnSgVZ0-3Db-JH_TiYiw2AvEYKA17CpEZ-2BkosyazU-2FwWSAS-2B8TaMISPvdiIu1rzYwgSakPsFYjBOYvz4c528DWwtVf76sYOdQzkH5b3YYtHYUa8kwZrjY-2BxK4QB-2Fv1bB1IUWcjh2KTZK5k4Vdzifmmln1bgJPsFKlRN5E4yP21uDbZ7IieF-2BliEL6NVvfz8zTcINatTXgBSC1-2F3x7NbFGGCkICto-2ByWfOZT4niXxiExKJ-2BoWk3YOXMnO4g-3D > ___ > Pdns-users mailing list > Pdns-users@mailman.powerdns.com > https://u19316384.ct.sendgrid.net/ls/click?upn=N7jpbeWTzxtujQAOY3BtvLSTyiAKlnRLTCW2Mfn-2FkRSgTPn6E0-2B2P5Ka2gDdhtYWwi3Y4q-2BYQAg4o56l5fAGz4SeWucoi3bghTPYqnSgVZ0-3Dc-DX_TiYiw2AvEYKA17CpEZ-2BkosyazU-2FwWSAS-2B8TaMISPvdiIu1rzYwgSakPsFYjBOYvz4c528DWwtVf76sYOdQzkHy1bnXQeikCTSDfUYHRlMs7ePNdUEnFhyEdIEBqYEDdnrtXp7RPIdJ0JrUxxqQ2bkAPQtYK5HJVIBjz7MxHAPWGwh4bMVWdBd506B-2FbtvPdmr1sFaBRAgeTqoXfSEvIpkHrlk9t8C-2BeW5IcL7V0zlFA-3D ___ Pdns-users
Re: [Pdns-users] Issues with PowerDNS Authoritative Server on CentOS7
Perhaps this might help explain the required configuration of the Authoritative & Recursor servers. Regards Bill > From: "Pdns-users" > To: "Pdns-users" > Sent: Monday, 17 August, 2020 23:33:17 > Subject: [Pdns-users] Issues with PowerDNS Authoritative Server on CentOS7 > Hello, > My name is Fabio. > I installed 2 VMs each running PowerDNS as Authoritative servers, but for > whatever reason I cannot make this to work. > When I set other VMs with the nameserver of my DNS, none of my query get > resolved. > I need assistance with this. How can I troubleshoot this? > What information do I need to provide? > I’m reading all the documentation but Cannot find troubleshoot steps or > anything > that can help me. > Thank you. > Regards, > Fabio Perez > ___ > Pdns-users mailing list > Pdns-users@mailman.powerdns.com > https://mailman.powerdns.com/mailman/listinfo/pdns-users ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users
Re: [Pdns-users] Mysql cluster backend & rpz
- Original Message - > From: "Otto Moerbeek" > To: "bill pye" > Cc: "Pdns-users" > Sent: Monday, 22 June, 2020 12:44:31 > Subject: Re: [Pdns-users] Mysql cluster backend & rpz > On Mon, Jun 22, 2020 at 10:07:07AM +, Bill Pye via Pdns-users wrote: > >> As a follow-up to my last post I have a question (or two) about using a mysql >> cluster as the backend and using rpz. >> >> First, where does PDNS-recursor store the download zone for an rpz, is it in >> the >> mysql db or an on-disk file? I'd assume it's on-disk. >> >> Second, as I use a cluster of three pdns, pdns-recursor & dnsdist and the rpz >> zone is on-disk I'd need that specified in each recursor I guess? >> >> I'm probably missing something obvious here so a nudge in the right direction >> would be appreciated. :) >> >> Regards > > Recursor knows nothing about databases > > RPZ data is stored in memory. Starting wit 4.2. you can write it to > disk (using the dumpFile attribute) and use that file for a quick load > on restart (using the seedFile attribute). > > And yes, you'll need to specify the rpz zone in each recursor where > it should be used. > > -Otto Otto Thanks again and I guess a bit more reading for me. :) PDNS: 4.3.0 PDNS-recursor: 4.3.0 DNSDIST: 1.5.0 rc3 Regards Bill ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users
Re: [Pdns-users] Problem configuring rpz
- Original Message - > From: "Otto Moerbeek" > To: "bill pye" > Cc: "Pdns-users" > Sent: Monday, 22 June, 2020 12:40:58 > Subject: Re: [Pdns-users] Problem configuring rpz > On Mon, Jun 22, 2020 at 09:57:13AM +, Bill Pye via Pdns-users wrote: > >> Hi all >> >> I'm a home user of your excellent software and by no means an expert in DNS. >> A >> while ago I was experimenting with setting-up rpz files on my DNS servers, >> that >> all worked OK. Recently I've been trying to configure the rpz via AXFR from >> ioc2rpz here: [ https://ioc2rpz.net/ | https://ioc2rpz.net/ ] >> >> After a bit of trial and error (normal for me!) I have this working quite >> well >> but I did hit a 'problem' and have a couple of questions. >> >> While reading the documentation of the feed it mentioned that the feeds were >> updated every thirty minutes, PDNS-recursor documentation states that the >> zones >> default is used if not specified in the config file: >> >> "refresh >> >> >> >> An integer describing the interval between checks for updates. By default, >> the >> RPZ zone’s default is used" >> >> >> >> >> That sounded reasonable so I left that alone and started with one feed which >> contained four records. Strangely that resulted in an IXFR being done every >> second, I left that running for a while (i.e. for about 12 hours) and it >> never >> stopped. Is this a bug and should I file one on github? >> >> >> >> >> >> Next a question, the documentation states the Refresh is an "integer" but it >> doesn't mention that it's a per-second "integer" - should that be added to >> the >> documentation? . Could the fact that if it's left empty be responsible for my >> once-per-second IXFR? As the feed said it was updated every thirty minutes >> override that once-per-second? >> >> The relevant SOA record from my feed is this: >> >> dns-bh.ioc2rpz. 604800 IN SOA ioc2rpz-srv1.ioc2rpz.net. ioc2rpz.ioc2rpz.com. >> 1591664280 43200 900 2592000 7200 >> >> Obviously that has a refresh of 15 minutes which is not the 30 mins the >> document >> says but should my once-per-second IXFR be happening with that SOA? Once I >> added a refresh to my rpzmaster entry it all worked as expected. :) >> >> I hope that all makes sense but if I've missed something or it isn't too >> clear >> then just let me know. >> >> Regards >> >> >> Bill > > Please always tell which version you are using. > > An issue that sounds very much lkike what you are seeing was fixed in > https://github.com/PowerDNS/pdns/pull/8778. This is also in 4.3.1 > > For older versions, you should set a refresh interval explicitly. > > As for the feed's data update interval vs their published refresh > interval in their SOA record, I think yo have to contact the feed source. > > -Otto Otto It seems to be one of those days, here's the version for the list: PDNS: 4.3.0 PDNS-recursor: 4.3.0 DNSDIST: 1.5.0 rc3 Regards Bill ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users
[Pdns-users] Mysql cluster backend & rpz
As a follow-up to my last post I have a question (or two) about using a mysql cluster as the backend and using rpz. First, where does PDNS-recursor store the download zone for an rpz, is it in the mysql db or an on-disk file? I'd assume it's on-disk. Second, as I use a cluster of three pdns, pdns-recursor & dnsdist and the rpz zone is on-disk I'd need that specified in each recursor I guess? I'm probably missing something obvious here so a nudge in the right direction would be appreciated. :) Regards Bill ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users
[Pdns-users] Problem configuring rpz
Hi all I'm a home user of your excellent software and by no means an expert in DNS. A while ago I was experimenting with setting-up rpz files on my DNS servers, that all worked OK. Recently I've been trying to configure the rpz via AXFR from ioc2rpz here: [ https://ioc2rpz.net/ | https://ioc2rpz.net/ ] After a bit of trial and error (normal for me!) I have this working quite well but I did hit a 'problem' and have a couple of questions. While reading the documentation of the feed it mentioned that the feeds were updated every thirty minutes, PDNS-recursor documentation states that the zones default is used if not specified in the config file: "refresh An integer describing the interval between checks for updates. By default, the RPZ zone’s default is used" That sounded reasonable so I left that alone and started with one feed which contained four records. Strangely that resulted in an IXFR being done every second, I left that running for a while (i.e. for about 12 hours) and it never stopped. Is this a bug and should I file one on github? Next a question, the documentation states the Refresh is an "integer" but it doesn't mention that it's a per-second "integer" - should that be added to the documentation? . Could the fact that if it's left empty be responsible for my once-per-second IXFR? As the feed said it was updated every thirty minutes override that once-per-second? The relevant SOA record from my feed is this: dns-bh.ioc2rpz. 604800 IN SOA ioc2rpz-srv1.ioc2rpz.net. ioc2rpz.ioc2rpz.com. 1591664280 43200 900 2592000 7200 Obviously that has a refresh of 15 minutes which is not the 30 mins the document says but should my once-per-second IXFR be happening with that SOA? Once I added a refresh to my rpzmaster entry it all worked as expected. :) I hope that all makes sense but if I've missed something or it isn't too clear then just let me know. Regards Bill ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users
