Re: [dnsdist] TR: end of life statement documentation

ou're so inclined, you can contribute the EOL page via github[1]. Best regards, Pieter 1 - https://github.com/PowerDNS/pdns/tree/master/pdns/dnsdistdist/docs -- Pieter Lexis PowerDNS.COM BV -- https://www.powerdns.com ___ dnsdist mailing list dns

Re: [dnsdist] Negate Selector for NetmaskGroupRule

tion(AndRule{NotRule(NetmaskGroupRule(trustedNMG)), makeRule("intern.mydomain.net")}, SetNegativeAndSOAAction([...]) Please keep in mind that SetNegativeAndSOAAction is renamed to NegativeAndSOAAction in the upcoming 1.6 release. Hope this helps! Cheers, Pieter 1 - https://dnsdist.org/rul

Re: [dnsdist] attempting to spoof a couple records

10.5.0.0/24") addAction(AndRule{NetmaskGroupRule(nmg), QNameRule("name.int.domain")}, SpoofAction("10.7.7.7", "2001:db8::1")) This'll lead to showRules showing this: 0 0 (Src: 10.1.0.0/24, 10.5.0.0/24, 127.0.0.0/8) && (qname==name.int.domai

Re: [dnsdist] HELP IN ADDING CUSTOM VALUE IN DNSDIST PROXY PROTOCOL BEFORE FORWARDING QUERY TO BACKEND

proxy protocol headers before sending it to the backend. > > Any pointers on how we can achieve this? Did you have a look at the documentation[1,2]? Cheers, Pieter 1 - https://dnsdist.org/advanced/proxyprotocol.html 2 - https://dnsdist.org/rules-actions.html#SetAdditionalProxyProtocolV

Re: [dnsdist] cache dnsdist not working for my setup

n > 1.5 dnsdist runs as the dnsdist user. 2 things might be the case 1. the /var/lib directory is not accessable to all users 2. a protection setting in the systemd service file might prevent thist (most likely ProtectSystem=full) Have a look at what might be the culprit her

Re: [dnsdist] Fatal error: binding socket

setLocal('192.168.1.10:5200') I also see that you set the ACL to 0.0.0.0, which means 0.0.0.0/32 (so 1 IP address) if you want to open up dnsdist to all IP addresses (which is not recommended, please limit to specific subnets), use 0.0.0.0/0. Cheers, Pieter -- Pieter Lexis P

Re: [dnsdist] regexrule for ipv6-PTR-queries (ipv6-subnet)

(qname in 7.8.b.d.0.1.0.0.2.ip6.arpa.) && (qtype==PTR) to pool knot This should be exactly what you need. Cheers, Pieter -- Pieter Lexis PowerDNS.COM BV -- https://www.powerdns.com ___ dnsdist mailing list dnsdist@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/dnsdist

Re: [dnsdist] (Re-)creating RPM packages with DoH support from .src.rpm

packaging woes. However, several of the cmake options in the link to our build file[2] might help you zero in on how to strip down libh2o to use system libraries. Best regards, Pieter 1 - https://github.com/PowerDNS/pdns-builder 2 - https://github.com/PowerDNS/pdns/blob/e0dbe9f93a99f5f0aab46f

Re: [dnsdist] DNS LB record with dnsdist caching

arsed, just put on the wire as their raw bytes. Best regards, Pieter -- Pieter Lexis PowerDNS.COM BV -- https://www.powerdns.com ___ dnsdist mailing list dnsdist@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/dnsdist

Re: [dnsdist] setDOHLocal/setTLSLocal?

Hi Mark, On 5/1/20 5:56 PM, Nejedlo, Mark via dnsdist wrote: >> From: Pieter Lexis via dnsdist >> On 5/1/20 5:23 PM, Nejedlo, Mark via dnsdist wrote: > I did read the docs. addXXXLocal is not equivalent to setLocal. Specifically, the config reference page specifies addLoc

Re: [dnsdist] setDOHLocal/setTLSLocal?

rg/guides/dns-over-https.html 2 - https://dnsdist.org/guides/dns-over-tls.html -- Pieter Lexis PowerDNS.COM BV -- https://www.powerdns.com ___ dnsdist mailing list dnsdist@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/dnsdist

Re: [dnsdist] DNS DIST Drops Problems

and using the `grepq` and `topSlow` commands in the dnsdist console[1] and setting setVerboseHealthChecks to true in your config so dnsdist logs when a backend server goes down. 1- https://dnsdist.org/reference/config.html#grepq -- Pieter Lexis PowerDNS.COM BV -- https://www.powerdns.com

Re: [dnsdist] SNMP Support

nt packages of all the dependencies installed; libedit-dev and liblua5.1-0-dev (or libluajit-5.1-dev). Good luck, Pieter -- Pieter Lexis PowerDNS.COM BV -- https://www.powerdns.com ___ dnsdist mailing list dnsdist@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/dnsdist

Re: [dnsdist] SNMP Support

ntOS 7 or 8(on the correct OS of course) from repo.powerdns.com. Those are built with snmp support enabled. Regards, Pieter -- Pieter Lexis PowerDNS.COM BV -- https://www.powerdns.com ___ dnsdist mailing list dnsdist@mailman.powerdns.com https://ma

Re: [dnsdist] pool selection without implicit accept

to judge if what you're asking for is indeed a new feature that could be implemented. Cheers, Pieter 1 - https://dnsdist.org/rules-actions.html#AndRule -- Pieter Lexis PowerDNS.COM BV -- https://www.powerdns.com ___ dnsdist mailing list dnsdi

Re: [dnsdist] Get topQueries and topResponses over dnsdist API

get about this? Cheers, Pieter 1 - http://github.com/PowerDNS/pdns/issues/new -- Pieter Lexis PowerDNS.COM BV -- https://www.powerdns.com ___ dnsdist mailing list dnsdist@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/dnsdist

Re: [dnsdist] dnsdist 1.4.0-beta1 released

Hi Christoph, On 6/6/19 11:02 PM, Christoph wrote: > Are buster packages just build less frequently or is there a general > issue with buster repo? Looks like we forgot to upload them! They are in the repo now. Cheers, Pieter -- Pieter Lexis PowerDNS.COM BV -- https://www.powerd

Re: [dnsdist] DNSDist Console not showing statistics?

ersion of dnsdist is this and on what OS are you running this? Can you check that you actually connect to the console (using `dnsdist -c`) and not accidentally start a new process? Best regards, Pieter -- Pieter Lexis PowerDNS.COM BV -- https://www.pow

Re: [dnsdist] Dnsdist with dnscrypt

cation did you specify? Please remember that the dnsdist process is very unprivileged and can not write to all directories on the file-system. Best regards, Pieter -- Pieter Lexis PowerDNS.COM BV -- https://www.powerdns.com ___ dnsdist mailing list dnsdist@m

Re: [dnsdist] Dynamic DNS Updates sent to all servers

/github.com/PowerDNS/pdns/issues/new -- Pieter Lexis PowerDNS.COM BV -- https://www.powerdns.com ___ dnsdist mailing list dnsdist@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/dnsdist

[dnsdist] dnsdist RPM packages for CentOS/EL 6 had broken scriptlets

/pull/6641 -- Pieter Lexis PowerDNS.COM BV - https://www.powerdns.com signature.asc Description: OpenPGP digital signature ___ dnsdist mailing list dnsdist@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/dnsdist

Re: [dnsdist] Rule for specific IP

;google.com'), makeRule('127.0.0.1')}), DropAction()) This will block google.com (and everything under it) for 127.0.0.1/32. Cheers, Pieter -- Pieter Lexis PowerDNS.COM BV -- https://www.powerdns.com ___ dnsdist mailing list dnsdist@

Re: [dnsdist] server policy to failover to another pool

could create this as a LuaPolicy as well. If you want to use existing Policies, you could 'fake' this with wrandom. Just give the secondairy servers a very big (1M+) weight. They will then receive one in a million packets when all the other servers are up. Best regards, Pieter --

Re: [dnsdist] Separate EDNS option for "client IP"

NS/pdns/pull/5594, feedback is much appreciated. Best regards, Pieter -- Pieter Lexis PowerDNS.COM BV -- https://www.powerdns.com ___ dnsdist mailing list dnsdist@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/dnsdist