--
Mark Andrews
> On 9 May 2022, at 22:32, Veronique Lefebure
> wrote:
>
> Second thought on this topic:
>
> are the BIND EDNS messages rather related to
>
> gr/DNSKEY (alg 8, id 13987): No response was received until the UDP payload
> size was decreased, indicating that the server might
Second thought on this topic:
are the BIND EDNS messages rather related to
gr/DNSKEY (alg 8, id 13987): No response was received until the UDP payload
size was decreased, indicating that the server might be attempting to send a
payload that exceeds the path maximum transmission unit (PMTU) size
> On 9. 5. 2022, at 13:19, Veronique Lefebure
> wrote:
>
> If the problem is simply ipv6, is it correct to say that the BIND messages
> above are misleading ?
> Or is there really a EDNS-related issue ?
named has no way why the remote server didn’t reply and assumes it was EDNS
Can **you** t
Hello,
Now we are investigating another case:
On our internal DNS server we see :
08-May-2022 20:48:14.248 edns-disabled: info: success resolving
'grid31.physics.uoi.gr/A' (in '.'?) after reducing the advertised EDNS UDP
packet size to 512 octets
08-May-2022 20:48:14.249 edns-disabled: info: s
> On 5 May 2022, at 00:17, Veronique Lefebure
> wrote:
>
> Thanks Greg and Ondrej,
>
> Many thanks for the pointer to DNS Cookies in BIND 9 (isc.org)
>
> I have used https://ednscomp.isc.org/ednscomp/1ba42afa27 to check if they
> are compliant, but the answer is ambiguous:
>
> EDNS Complia
Thanks Greg and Ondrej,
Many thanks for the pointer to DNS Cookies in BIND 9 (isc.org)
https://kb.isc.org/docs/aa-01387
I have used https://ednscomp.isc.org/ednscomp/1ba42afa27 to check if they are
compliant, but the answer is ambiguous:
EDNS Compliance Tester
Checking: 'sour.woinsta.com' as
On 04. 05. 22 14:34, Greg Choules via bind-users wrote:
Hi Veronique.
Every DNS server should support EDNS by now. It has been around for a
very long time. Even if it doesn't support EDNS it should ignore it.
I made some test queries and packet captures to 23.82.12.28. Whatever
this box is, p
Hi Veronique.
Every DNS server should support EDNS by now. It has been around for a very
long time. Even if it doesn't support EDNS it should ignore it.
I made some test queries and packet captures to 23.82.12.28. Whatever this
box is, please talk to the manufacturer about EDNS support.
Or.. it ma
> On 4. 5. 2022, at 14:12, Veronique Lefebure
> wrote:
>
> Hello,
>
> If we see this on our DNS server logs (BIND 9.11):
>
> 04-May-2022 12:55:37.675 edns-disabled: info: success resolving
> 'sour.woinsta.com/A' (in 'woinsta.com'?) after disabling EDNS
>
> - are we correct to say that with B
Hello,
If we see this on our DNS server logs (BIND 9.11):
04-May-2022 12:55:37.675 edns-disabled: info: success resolving
'sour.woinsta.com/A' (in 'woinsta.com'?) after disabling EDNS
- are we correct to say that with BIND 9.16, that query wil always fail because
EDNS won't be disabled anymore
10 matches
Mail list logo