to check the running configuration of
dnsmasq and then perform an update for these, too (didn't check what
the RFC says about this).
Just my thoughts...
Best,
-Michael
Cheers,
Simon.
On 23/07/15 10:18, Michael Tremer wrote:
Hello Simon, hello list,
I was just wondering if someone has
Hello Simon,
hello list,
I was just wondering if someone has ever considered to support RFC5011
in dnsmasq:
https://tools.ietf.org/html/rfc5011
This will automatically update the trust anchor in case the KSK of the
root zone is replaced which will probably happen this year.
The
Hello,
I am not sure if I am experiencing the same bug here or if it is
somewhat different.
When I try accessing some domains that use DNSSEC (like ipfire.org does,
but this applies to other as well), I sometimes get SERVFAIL. This
happens usually for bigger replies where fragmentation comes
are external to dnsmasq, and which might be the source
of the delays.
I'm wondering about adding an option which would just log queries
which take more than a couple of seconds, which would make tracing
this sort of thing easier.
Cheers,
Simon.
On 11/01/15 20:59, Michael Tremer
=094b5c3d904bae9aeb3206d9f3b8348926b84975
would be a very likely candidate to fix the crash problem. If that
doesn't do it it would be really good to find a way to reproduce the
problem.
Cheers,
Simon.
On 02/01/15 09:42, Michael Tremer wrote:
Hello Simon,
thanks for looking
busy and traveling. Getting to where I have available time _and_
a good cellphone signal is tricky, and I have a huge email
backlog to crawl out from. I'll look at this as soon as I can.
Cheers,
Simon.
~ Simon
On October 21, 2014 3:11:10 PM CEST, Michael Tremer
Hello fellow dnsmasq users,
there is a topic on the IPFire support forums I would like to point you
to:
http://forum.ipfire.org/index.php?topic=11726.0
It appears that dnsmasq cannot verify resource records of a
DNSSEC-enabled domain. That domain uses RSA/SHA1-NSEC3-SHA1 for its
signatures.
Hello list,
I think I might have some very similar problem here. It is not specific
to dnsmasq. The result is the same to what Conrad has reported.
When ever dnsmasq is running with DNSSEC enabled, I cannot resolve any
DNSSEC-enabled domain. Zones that do not have DNSSEC work as usual.
When
On Wed, 2014-08-20 at 19:54 +0100, Simon Kelley wrote:
On 20/08/14 14:28, Michael Tremer wrote:
Hello list,
I think I might have some very similar problem here. It is not specific
to dnsmasq. The result is the same to what Conrad has reported.
When ever dnsmasq is running
Hello Simon,
thanks for your reply.
On Wed, 2014-07-30 at 22:24 +0100, Simon Kelley wrote:
On 30/07/14 11:51, Michael Tremer wrote:
Hello fellow dnsmasq users,
I am working on the free firewall distribution called IPFire
(www.ipfire.org) and inside of that distribution, dnsmasq is used
Kelley and
+ Michael Tremer
+
+ This program is free software; you can redistribute it and/or modify
+ it under the terms of the GNU General Public License as published by
+ the Free Software Foundation; version 2 dated June, 1991, or
+ (at your option) version 3 dated 29 June, 2007
11 matches
Mail list logo