[Pdns-users] Goodbye DNS, Goodbye PowerDNS!

Goodbye DNS, Goodbye PowerDNS! Please read the whole post on https://blog.powerdns.com/2020/11/27/goodbye-dns-goodbye-powerdns/ which also has clickable links. But the gist is: After over 20 years of DNS and PowerDNS, I am moving on. Separate from this page, I am releasing a series of three

Re: [Pdns-users] pdns query wrong SOA records with ipv6 and miss the right domain this way

On Tue, Oct 06, 2020 at 08:29:49PM +0200, Oliver Dzombic via Pdns-users wrote: > SELECT content,ttl,prio,type,domain_id,disabled,name,auth FROM records > WHERE disabled=0 and type='SOA' and > name='7.3.c.f.9.0.2.0.0.0.0.0.3.1.0.0.8.d.2.1.0.0.a.2.ip6.arpa' Can you run that query on your database

Re: [Pdns-users] Issues with PowerDNS Authoritative Server on CentOS7

On Mon, Aug 17, 2020 at 09:33:17PM +, Fabio Perez via Pdns-users wrote: > Hello, > My name is Fabio. > I installed 2 VMs each running PowerDNS as Authoritative servers, but for > whatever reason I cannot make this to work. > When I set other VMs with the nameserver of my DNS, none of my query

Re: [Pdns-users] Recursor and LUA scripting: I don't understand why preresolve answering a CNAME won't cascade to other records

On Sun, May 31, 2020 at 12:08:36PM +0200, Oscar Koeroo via Pdns-users wrote: > I’m using the following LUA script to intercept, but I don’t understand > the results. Why doesn’t the dig get the CNAME to got to the A record I > have in my domain.local zone? I expected dig to try to get the CNAME

Re: [Pdns-users] SERVFAIL on all requests

intercepting and breaking your traffic to root servers. The real J-root will not answer with IP addresses for reddit.com. Bert > > Regards, > > Dave > > On 5/25/20 4:04 PM, bert hubert wrote: > >On Mon, May 25, 2020 at 03:57:22PM -0400, Dave Burkholder via Pdns-users

Re: [Pdns-users] SERVFAIL on all requests

On Mon, May 25, 2020 at 03:57:22PM -0400, Dave Burkholder via Pdns-users wrote: > When I enable trace, I get lines like: > > May 25 15:36:44 system.cdc.lan pdns_recursor[16801]: [2]  bing.com: Got 3 > answers from b.root-servers.net (199.9.14.201), rcode=0 (No Error), aa=0, in > 6ms > May 25

Re: [Pdns-users] why CAP_CHOWN?

On Sat, May 16, 2020 at 08:42:21PM +0200, Michael Ströder via Pdns-users wrote: > But I wonder why CAP_CHOWN is set in CapabilityBoundingSet= and > AmbientCapabilities= and I could not find a reason in the git history of > that file. Hi Michael, We chown the UNIX domain control socket to the

Re: [Pdns-users] SERVFAIL on backend failure - is this possible?

On Wed, Feb 26, 2020 at 12:35:21AM +0200, Vytenis A via Pdns-users wrote: > While trying to implement authoritative DNS server using "remote" > backend, I've stumbled into an issue when HTTP backend is unreachable > - PowerDNS is returning NXDOMAIN. Can you reproduce this for us so we can check?

Re: [Pdns-users] Journal Log Format for Recursor

Hello Chris, On Sat, Dec 28, 2019 at 10:57:36PM +1100, Chris Jones wrote: > Can someone please advise what the format of the following logs are that > are going to journald. Yes, but please know this format is not in any way guaranteed. In other words, it might change from release to release. If

Re: [Pdns-users] PowerDNS Recursor / dnsdist: EDNS Client Subnet

On Sun, Nov 24, 2019 at 11:50:00AM +0100, Bjoern Franke via Pdns-users wrote: > E.g. if I use DoT with my mobile phone and come from 89.15.232.0/21 (o2 > Germany in Hamburg), usually the traffic to Akamai is routed to Akamai in > Hamburg if I use o2's DNS, OpenDNS or 8.8.8.8. Using my dnsdist in >

Re: [Pdns-users] Forward client request

On Tue, Nov 12, 2019 at 11:05:30AM +, mendisobal via Pdns-users wrote: > How i can forward recursive DNS requests based on source address of the > client. To do this need to have ability to return address of the next NS from > preresove function (instead of NS-records). > Is there any

Re: [Pdns-users] PowerDNS authoritative server UDP port?

On Tue, Oct 29, 2019 at 08:33:29PM -0600, Aaron D. Gifford wrote: > root pdns_serve 40055 16 udp4 192.168.50.12:19413 *:* > ... > > Why is it listening on UDP port 19413? I thought I'd disabled various > subsystems that might want to listen on a TCP or UDP port. This is likely the DNS

Re: [Pdns-users] Port pdns authoritative server and recursor

On Mon, Oct 07, 2019 at 06:07:28PM +, Kjell Inge Meisal wrote: > What is the required procedure to port pdns authoritative server to a new > server? > G400 Hello, PowerDNS is a generic piece of UNIX software, and as such is moved much like all other software. In general we would recommend

Re: [Pdns-users] Can I filter AAAA DNS requests for Netflix?

Hello everyone, I used to use this script: --[[ Sometimes, domains break when IPv6 is used. A common example is Netflix via an IPv6 tunnel, which Netflix interprets as a proxying attempt. This function strips IPv6 from one or more subdomains. It can be

Re: [Pdns-users] Only REFUSED responses after upgrade.

On Tue, May 28, 2019 at 03:06:33PM -0400, Chris wrote: > This DNS server has been running on Debian 7 Wheezy for years without issue. > Debian 7.11 packaged PowerDNS 2.9.22. Since 2.9.22 PowerDNS has changed a lot. Run pdnsutil check-zone on your zones. You are likely missing SOA records, or have

Re: [Pdns-users] DNSSEC same key for all

On Mon, May 20, 2019 at 10:56:33AM +0200, Bart Mortelmans wrote: > If you're using MySQL backend, then I guess you could turn the cryptokeys > table into a view that would return the same key for every domain name. But > in general I think that would be bad practice and creating a new KEYSET for >

[Pdns-users] PowerDNS & Open Source

Hi everyone, First, apologies for boring you with a non-technical post. But I still think it is important. More than three years ago we announced that PowerDNS would be shipping non open source software, also known as the PowerDNS Platform. We hoped that you would understand.

Re: [Pdns-users] Azure?

On Mon, Apr 29, 2019 at 10:24:11PM +, Ryan Finnesey wrote: > Is there anyone within the group that has deployed Power DNS on Azure? I > am looking for some general feedback. I am looking at using Power DNS for > a registry and was hoping to host within Azure. In addition to what Pieter

Re: [Pdns-users] Recursor reply SRVFAIL from the first NS server and does not try other NS servers

On Mon, Apr 08, 2019 at 10:53:24AM +, Mohamad F. Barham wrote: > I have pdns-recursor running on the campus, and I have issue with NS servers : Hi Mohamad, Before we can investigate, which exact version of the PowerDNS Recursor are you running? Do you run with any Lua scripts? Bert

Re: [Pdns-users] Remote Backend SOA Response

On Sat, Feb 23, 2019 at 08:12:40PM +1100, Chris Jones wrote: > Thanks Bert, but I don’t understand how my backend is doing too much work? > How does PowerDNS know what the zone is if my backend doesn’t figure it out? Chris, please carefully read the blog post. It is in there. "The PacketHandler

Re: [Pdns-users] Remote Backend SOA Response

On Sat, Feb 23, 2019 at 03:49:28PM +1100, Chris Jones wrote: > Hi there, > > I am in the process of writing a custom backend with PowerDNS 4.1.5 and I > have a question on the expected response for SOA records. Hi Chris Jones 44, It looks like your backend is doing too much work. In

Re: [Pdns-users] PowerDNS Recursion / Forward-Zone (Strange issue)

Hi Devin, First thing of note, you forward using 'forward-zones=*.domain.com=10.13.13.13:53'. This is never going to work, you should remove "*.". Can you see if that helps? Bert > Dear Users, I am running the latest version of PowerDNS Recursion > software, and I had an outage this

Re: [Pdns-users] PowerDNS recursor -ECS

On Sat, Feb 09, 2019 at 10:15:21PM -0500, Rami Al-Dalky wrote: > I have a question. Is there any cases where the recursor will send a DNS > query with loopback IP in the client-subnet? Yes. https://doc.powerdns.com/recursor/settings.html?highlight=ecs#ecs-scope-zero-address explains this

Re: [Pdns-users] Graphing as a service: Disappearing CPU graphs

On Wed, Jan 23, 2019 at 02:58:51PM +0100, sth...@nethelp.no wrote: > - The User CPU% and System CPU% graphs sometimes disappear, after > days/weeks of uptime. The *space* for the graphs (with legends for > User CPU% blue and System CPU% red, on the right hand side) is still > present but the

Re: [Pdns-users] oracle backend / DNS flag day

On Mon, Jan 21, 2019 at 02:14:47PM +, Leo Vandewoestijne wrote: > I'm trying to upgrade a powerdns (auth) server that is using the oracle > backend, > which seems not compiling anymore since 4.1.0 > This was reported at: Hi Leo, Providing free Oracle support is very expensive for us in

Re: [Pdns-users] pdns-recursor: expected log entries on sendto ENOBUFS error + qname minimization

On Sun, Jan 20, 2019 at 02:35:00PM +, nusenu wrote: > Hi, Hello "Nusenu". > I've been pondering with > "sendto failed: No buffer space available" > errors using unbound [0]. > > To see how pdns-recursor behaves on the same box > I switched from unbound to pdns-recursor > and don't get any

Re: [Pdns-users] CNAME not advertised on A/AAAA request

On Thu, Jan 17, 2019 at 02:15:25PM +0100, Kevin Olbrich wrote: > I don't know what I am doing wrong here: So far I don't know either. > Jan 17 14:04:28 dnsmaster01.srvfarm.net pdns_server[19643]: Exception > building answer packet for cgn01.example.com/A (Parsing record content > (try 'pdnsutil

Re: [Pdns-users] What signal to tell PDNS to shut down?

On Sun, Jan 13, 2019 at 08:32:33PM +, Brian Candler wrote: > >sends a `SIGTERM` to PID 1, waits some amount of time, and then sends > >SIGKILL to force it to stop. It’s having to resort to SIGKILL, because > >`pdns_server` doesn’t respond to `SIGTERM`. What is the correct signal to > >tell

[Pdns-users] A small PowerDNS Update

Hi everyone, From an article I just posted: "This is a more personal post than I usually write, and it was prompted by several people asking what I had been up to lately. It turns out that it is somewhat of a story. It is a long story too. Since the beginning of 2018 day to day management of

Re: [Pdns-users] configure: error: Did not find the mysql library dir in /usr/lib/mysql

On Wed, Dec 19, 2018 at 05:20:31PM -0600, Cliff Hayes wrote: > I am trying to install authoritative server 4.0.6 on Fedora 28 and am > getting: Hi Jeff, Did you install the development libraries for MySQL as well? To compile, we need more than the client library as used by applications. >

Re: [Pdns-users] PDNS and Isilon Smartconnect Delegation

On Mon, Dec 17, 2018 at 10:51:17AM -0500, Ian Easter wrote: > Isilon round robin issue ended up being related to network configuration > for the guest machines. Once I cleared that up, the PDNS Recursor Forward > Zone configuration worked without a hitch. Thank you so much for reporting back on

Re: [Pdns-users] Spoof MX records

On Sat, Dec 15, 2018 at 09:42:21AM +0100, Bit World Computing - Michael Mertel wrote: > Hi Aleksandr, > > I’am somewhat lost, I’am able to set a rule to have the Lua function called > for MX requests, but how do I return a response? Spoof ist just for > A-records, but not for MX. >

Re: [Pdns-users] PDNS and Isilon Smartconnect Delegation

On Thu, Dec 13, 2018 at 02:17:23PM -0500, Ian Easter wrote: > Recently switched from BIND9.7.3 to PowerDNS and working through some > adjustments. > > We previously followed the guidelines for DNS based on the documentation: >

Re: [Pdns-users] Unable to resolve domain when using DO and not AD

On Wed, Dec 12, 2018 at 05:59:20PM +0100, Luca Lesinigo wrote: > Right now I am refraining to disclose the domain because I don’t know if > this behavior could disclose a software/version/configuration with some > kind of known vulnerability. Sadly, that is where we stop reading about your

Re: [Pdns-users] How to understand cause of rejected notify

On Sat, Dec 01, 2018 at 08:37:16PM +, MRob wrote: > As I have had no luck to understand why supermaster only create entry in > Received NOTIFY for example.com from 1.1.1.1:2101 for which we are not > authoritative (Refused) > > Received unsuccessful notification report for 'example.com' from

Re: [Pdns-users] recursor: no reverse lookups

On Sun, Nov 18, 2018 at 04:10:52PM +0100, bert hubert wrote: > On Sun, Nov 18, 2018 at 03:00:53PM +, Sig Pam wrote: > > [root@hallo ~]# nslookup - 192.168.94.66 > > > > > set port=53 > > > > > 192.168.94.66 Ok, I see it now, try adding

Re: [Pdns-users] recursor: no reverse lookups

On Sun, Nov 18, 2018 at 03:00:53PM +, Sig Pam wrote: > [root@hallo ~]# nslookup - 192.168.94.66 > > > set port=53 > > > 192.168.94.66 Hi Sig, Before delving deeper into this, can you try: dig -x 192.168.94.66 @yourips ? We never know what nslookup sends out, so it is hard to debug

Re: [Pdns-users] Two sqlite backends, only one getting queried

On Wed, Oct 17, 2018 at 01:52:19PM +0200, LordEidi wrote: > PowerDNS starts and runs without an error. But when queried I only get > answers to records which are in the first sqlite DB. The content of the > second DB is completely ignored. No error in the logs. There is also no zone > info when

Re: [Pdns-users] recursor 4.0.4 and SERVFAIL

Dear mr "Bits of Info G" (is it ok if I call you that? you do realise it is somewhat rude to show up with an obvious fake name?) Can you share your trace-regex setting please? How did you set it, with rec_control? Can you also check your loglevel, these traces are logged at Warning level.

Re: [Pdns-users] PowerDNS resource usage

On Thu, Jul 26, 2018 at 03:51:32PM -0600, George wrote: > I am going to host DNS for 2000+ domains on one PowerDNS master server and > 3 slaves. They all will run mysql server as backend. Can you please tell me > how many server resources(CPU, RAM) would be good for such a setup and what > if any

Re: [Pdns-users] Override NXDOMAIN with A reply

On Wed, Jul 25, 2018 at 10:41:09AM +0200, Kevin Olbrich wrote: > I set up two dnsdist instances against an internal authoritative DNS. > To better support our users, I would like to install an intranet site which > explains why a website ist not available (most likely typo). Hi Kevin - we have a

Re: [Pdns-users] Powerdns life cycle

On Wed, Jul 25, 2018 at 08:39:11AM +, Diego Bellini wrote: > I have tried to have a look at the website > www.powerdns.com but I couldn't find the information > I needed > More or less last year I installed powerdns authoritative server 4.05 > I was wondering till

Re: [Pdns-users] Performance issues

On Tue, Jul 24, 2018 at 02:22:08PM +0200, Martijn Reening wrote: > We are running PowerDNS 4.1.3 and have tested against MySQL 5.1.73 en > PostgreSQL 10.4. It runs on CentOS 6.9, tested with both kernel versions > `2.6.32-696.20.1.el6.x86_64` and `4.15.13-x86_64-linode106`. Thanks! >1.32192

Re: [Pdns-users] Performance issues

On Tue, Jul 24, 2018 at 01:54:53PM +0200, Martijn Reening wrote: > We have run out of ideas where to look and what to tune. Perhaps anyone > here could help us further? could you tell us what database you run, what version of PowerDNS, what the output is of 'pdnsutil bench-db', what operating

Re: [Pdns-users] PDNS Authoritative Server DDOS Protection

On Tue, Jul 17, 2018 at 03:24:22PM +0430, Hamed Haghshenas wrote: > Could you please let me know how handle these large DDOS attacks? Hi Hamed, Please take a look at https://dnsdist.org/guides/dynblocks.html#dynblockrulesgroup This is specifically meant for the case of many different IP

Re: [Pdns-users] Notify Error

On Mon, Jul 16, 2018 at 03:50:16PM -0700, shaolin wrote: > I've recently set up a new pdns master server and I am trying to notify to > a third party. > > I am queueing up a test notify and it queues fine but results in this error > > Jul 2 16:12:49 pdns[55361]: Received unsuccessful

Re: [Pdns-users] PDNS Authoritative Server DDOS Protection

On Sat, Jul 07, 2018 at 03:49:16PM +0430, Hamed Haghshenas wrote: > I'm using PDNS Authoritative Server 4.1.3, today I see my server not > response and error or timeout on resolves . Hi Hamed, What you can best do is install dnsdist and put it in front of your authoritative servers. Try this

Re: [Pdns-users] PDNS inconsistent behavior for SOA record

On Tue, Jun 05, 2018 at 08:57:32AM -0700, Anthony fajri wrote: > Hi Expert, > we are using PDNS for our 3GPP DNS Server. > we are using PDNS 2.9.22.6 on Centos 5. Hello Anthony, We do support 2.9.22 in any way anymore. Please attempt to reproduce your problem with Authoritative Server 4.1 and we

Re: [Pdns-users] (no subject)

On Thu, May 17, 2018 at 05:34:42AM +, Mohamad F. Barham wrote: > > I have installed pdns-recursor on a centos machine, I'm trying to resolve > > ramallah-gis.ps , some times it can get the A record and most of the time > > returns > > ServFAIL . Hi - I can't reproduce this problem here.

Re: [Pdns-users] SOA record not resolved for my domains

On Sun, Apr 29, 2018 at 02:50:59PM +0430, Hamed Haghshenas wrote: > I found the problem, it’s related to use wrong Schema, I update my > database tables with Default Schema get from > https://doc.powerdns.com/authoritative/backends/generic-mysql.html and fix > the problem . !متشکرم It is always

Re: [Pdns-users] SOA record not resolved for my domains

On Thu, Apr 26, 2018 at 10:42:00AM +0430, Hamed Haghshenas wrote: > My domain is web45.ir and the nameservers are ns1.web45.ir and ns2.web45.ir Ok, these do answer correctly, except for the SOA. Can you run pdnsutil check-zone web45.ir? It seems something is specifically wrong with the SOA

Re: [Pdns-users] rec_control dump-cache not dumping to file

On Tue, Apr 24, 2018 at 07:37:11PM +, Eric Raymond wrote: > I have found this to be not working in 4.1.X releases, and havent tried in > any other branch. > Perhaps I am misunderstanding the command, but it appears to do nothing > > # rec_control dump-cache /tmp/cache-dump > dumped 1970

[Pdns-users] Announcing: Lua records, GSLB

Hi everyone, Yesterday we merged the new "LUA Records", and they have now appeared in the master builds you can apt-get or yum from https://repo.powerdns.com (or find the tarballs, https://builder.powerdns.com ) Here is the first part of the blogpost: "While PowerDNS ships with a powerful

Re: [Pdns-users] GLSB with Health Check Mechanism

On Tue, Apr 24, 2018 at 02:22:04PM +0430, Hamed Haghshenas wrote: > Hello Dears, Hi! > Now I want add health check, for Example, before redirect 185.131.128.0/18 > requests to I.J.K.L check the health of I.J.K.L > > With ping, http or . and if is OK redirect to I.J.K.L else redirect to >

Re: [Pdns-users] How to make Policy.NODATA response in policy zone?

On Mon, Apr 16, 2018 at 11:48:43AM +, MRob wrote: > RPZ doxs are here > https://doc.powerdns.com/recursor/lua-config/rpz.html > > With no information how to make the policy responses in the zone file. I had If you read the very first line of that link, it tells you this is an implementation

Re: [Pdns-users] How to make Policy.NODATA response in policy zone?

On Mon, Apr 16, 2018 at 11:33:17AM +, MRob wrote: > I can make NXDOMAIN applied policy for a domain in policy zone with this: > example.com CNAME . > > But how to cause NODATA response? Hello "MRob", We recommend that you read the documentation we wrote for you on

Re: [Pdns-users] DDNS with ClientSubnet(EDNS) not working

Dear mr "SpamSpamsdasda", Please email this list again when you've at least made a token effort to take us seriously. I do not appreciate it when people require anonymous help and blatantly disregard that there are real human beings here trying to help, but you do not even give them the courtesy

Re: [Pdns-users] PowerDNS recursor stripping AA bit from forwarded responses

On Thu, Feb 22, 2018 at 03:32:31PM -0800, Julian Mehnle wrote: > If I set it up this way, all the responses coming back to the recursor are > having their AA bits stripped (set to 0) (presumably by this code > > when

Re: [Pdns-users] Recursor ask zones first to authoritative server

On Tue, Feb 20, 2018 at 11:19:39AM +0100, Davide Panarese wrote: > i have a lot of local zones into my Authoritative server that are not > published on the internet and it’s a big deal to specify all of them to > recursor.conf (forward-zone parameter), because we add local domains > every days.

[Pdns-users] New (in PowerDNS): ipcipher

Hi everyone, tl;dr - today (Sunday) at 17:40 CET / 08:40 PST you can watch me present about 'ipcipher', a method for encrypting IP addresses to enhance user privacy, at the NDSS DNS Privacy Workshop through: https://www.ndss-symposium.org/dns-privacy-workshop-programme/ We'd love to hear your

Re: [Pdns-users] Delegation of subdomain

Hi Jakob, We no longer support the 'recursor=' setting because it is very tricky. You may want to read https://doc.powerdns.com/authoritative/guides/recursion.html which offers help on how to achieve your goals in other ways. Good luck! Bert On Wed, Feb 07, 2018 at 11:54:13AM +0100,

Re: [Pdns-users] RE ignoring non-query opcode 6

On Tue, Feb 06, 2018 at 07:37:16PM -0800, Jake Hansen wrote: > Hello kind gents, Hello Jake! We have women here too, by the way! I think so, at least. > Someone turned me on to pdns_recursor and i'm trying to deploy it. I have > a pair of A-10 Load balancers front ending and now the logs are

[Pdns-users] PowerDNS at FOSDEM this weekend!

Hi everyone, PowerDNS is present in force at FOSDEM tomorrow and Sunday! Peter van Dijk, Pieter Lexis, Andrea Tosatto and me of the PowerDNS company are there, plus certified consultants Chris Hofstaedtler & Kees Monshouwer. We've also heard from many other users they will be attending. On

Re: [Pdns-users] Intermittent recursion failure due to timeout

Hi Brian, On Tue, Jan 23, 2018 at 02:00:58PM -0700, Brian T wrote: > My recursor config has 'network-timeout' set to 5500ms (instead of the > default 1500ms), so I can understand the "timeout resolving after > 5535.35msec" message, but I was surprised by the timestamps of the messages > all being

[Pdns-users] PowerDNS is looking for a contractor for work in the UK

Hi everyone, PowerDNS is urgently looking for a contractor! This is not a direct PowerDNS vacancy, but it does involve working with the PowerDNS team. A large scale PowerDNS user based in the UK (England, but not in London) is looking for a contractor to help with a major DNS rollout project.

[Pdns-users] Meltdown impact on PowerDNS/dnsdist

Hi everybody, We have done some very tentative measurements on the Linux Meltdown workaround & impact on DNS performance. Based on very early measurements we see around a 10% impact in queries per second for a UDP heavy workload. In addition, one largescale user of PowerDNS Authoritative

[Pdns-users] PowerDNS End-of-Year post

HTML version with clickable links: https://blog.powerdns.com/2017/12/29/powerdns-end-of-year-post-thank-you/ Greetings! 2017 has been a great year for PowerDNS and Open-Xchange. In this post, we want to thank everyone that contributed, and highlight some specific things we are happy about. *

Re: [Pdns-users] Could not retrieve security status update / spamhaus.org unable to query

On Fri, Dec 29, 2017 at 12:02:13AM +0100, Sophie Loewenthal wrote: > Hi everyone, good morning! > I had this message in my logs in a new installation with a new VPS provider, > and wonder if this is them or pdns_resolver blocking, > Dec 28 22:42:11 mx10 pdns_recursor[7093]: Could not retrieve

Re: [Pdns-users] [Pdns-announce] PowerDNS Lua/GSLB records: we need your feedback

On Fri, Dec 15, 2017 at 04:43:20PM +0100, Marco Davids (Private) wrote: > > We are happy to share a new development with you, one that we hinted > > at over a year ago: Lua resource records. > > Great stuff! Thanks! > > In this post, we ask for your help: did > > we get the feature right?

[Pdns-users] PowerDNS Lua/GSLB records: we need your feedback

Hi everyone, I just posted information about our new Lua records on https://blog.powerdns.com/2017/12/15/powerdns-authoritative-lua-records/ and we really need your feedback to get this right, as we plan to release this feature in January. These Lua records power our 'powerdns.org' information

Re: [Pdns-users] Powerdns ver 4

On Thu, Dec 14, 2017 at 11:43:48PM +, Donald Jayawardena wrote: > Can someone please show me where we can download powerdns version 4 from? > Currently Centos 7 has only version 3.4.11. Try https://repo.powerdns.com, it has repositories for Centos 7. Bert

Re: [Pdns-users] Speeding up the slave request

On Thu, Dec 14, 2017 at 08:02:36AM -0700, bloat list wrote: > Hi, > > Where else can I get help if not this list? Well, "bloat list", or may I call you bloat? We often provide help, but we do prioritise between people trying hard to hide who they are and people that do not take this precaution.

Re: [Pdns-users] pdnsutil secure-zone algorithm 5 or 8

On Thu, Nov 30, 2017 at 08:28:10PM +0100, Daniel Eriksson wrote: > Hi all! > > pdnsutil secure-zone is creating algorithm 13. > > How can I do to make it to create algorithm 5 or 8 instead? Daniel, Can I please ask you to read the documentation. We spent a lot of time writing it. You send us

Re: [Pdns-users] Run powerdns with pre-signed dnssec zones

On Thu, Nov 30, 2017 at 02:43:40PM +0100, Daniel Eriksson wrote: > How can I run powerdns with pre-signed dnssec zones, without the need to > sign every single zone v4.0? You don't need to sign all zones. In fact, you must tell PowerDNS which ones to sign. It will not autosign all of them. > Do

Re: [Pdns-users] Bind config file includes

On Wed, Nov 15, 2017 at 11:31:09AM -0800, Tim Traver wrote: > When I try and start pdns, I get the following error in the logs : > > Nov 15 11:25:06 pdns_server: Unable to open './reverse/1.conf': No such file > or directory Hi Tim, It may be that we use different methods to determine relative

Re: [Pdns-users] Are stub zones supported by PowerDNS recursor?

On Thu, Oct 19, 2017 at 11:39:00AM +0200, Marco Pizzoli wrote: > Hi all, > I am new to PowerDNS and to this mailing list as well. Welcome! > I am looking for stub zone support in PowerDNS but failing to see it > referenced in the documentation. Some of the things that stub zones we can do, we

Re: [Pdns-users] Statistics

On Sun, Sep 24, 2017 at 03:12:49PM -0300, Thiago Farina wrote: > Hi, > > I would like to know how many queries pdns has answered so far. > > How can I get this information? By reading the fine documentation, for example

Re: [Pdns-users] Performance drop after upgrade from auth 3.4.11 to 4.0.4

On Tue, Sep 19, 2017 at 08:46:18PM +0200, Klaus Darilion wrote: > Hi! > > Setup: PowerDNS with gqgsql backend, several 100.000 zones (type=NATIVE) > on a 4 CPU VM with 8GB Ram Klaus, Can you redo your measurements against 4.1rc1? We fixed a lot in there. Would be interesting to know if 4.1 is

Re: [Pdns-users] Couple of (maybe) oddities . . .

On Fri, Sep 01, 2017 at 01:13:32PM +, Rob Dawson wrote: > First Oddity - For each inbound call, the active SBC sends a query to both > servers simultaneously. I can see the queries hitting port 53 via > tcpdump, the odd thing is that only one server will send a reply i.e. if > server A

Re: [Pdns-users] CAA records again

On Mon, Aug 14, 2017 at 03:41:45PM -0400, Curtis Maurand wrote: > Yesterday, I had caa records working. At least the server was returning > something. In my work to get dnssec working, I've managed bread CAA > support somehow. Now,even though the record exists, the server does not > return a

Re: [Pdns-users] PowerDNS Job opening: Solution Engineer

One thing I forgot to mention: if you want to know more about this vacancy, or would like to work for us in general, please contact either me off-list or powerdns.care...@powerdns.com Thanks! Bert On Wed, Aug 09, 2017 at 01:37:36PM +0200, bert hubert wrote: > Hi everyone, > >

[Pdns-users] PowerDNS Job opening: Solution Engineer

Hi everyone, PowerDNS is again looking for great people! With the increasing number of rollouts going on, we are looking for a "Solution Engineer". As you are the biggest PowerDNS experts we know of, we hope some of you would be interested in working with us: In brief, the Solution Engineer

Re: [Pdns-users] pdns recursor edns-client-subnet caching problems

On Wed, Aug 02, 2017 at 05:52:26AM +, Shawn Zhou wrote: > Hi, > I am trying out pdns recursor 4.0.6 on Ubuntu Xenial and cache lookup for > same record with and without client subnet give me the same result which is > not expected. I expect [3] to return a different value as the cache should

Re: [Pdns-users] recursive server failing

On Sat, Jul 29, 2017 at 12:19:11AM -0400, Charles Sprickman wrote: > Here’s a few things I’ve tried: > > - Verify with DNSVIZ: http://dnsviz.net/d/dot.nyc.gov/dnssec/ > - Update PowerDNS to powerdns-recursor-4.0.6 > - Remove “scrub” rules from pf configuration > - Change pf rules to be stateless

[Pdns-users] PowerDNS/Open-Xchange conferences & events

Hi everyone, As we are working on the 4.1 & 1.2 releases, please know you can also meet us in real life! We are just back from IETF in Prague, here is a list of other places where we will be present: * August 4th-8th: SHA 2017, Zeewolde, The Netherlabds The famous 4-yearly Dutch hacker

[Pdns-users] PowerDNS Presentations at RIPE and DNS-OARC

Hi everyone, Over the last week, PowerDNS attended RIPE in Budapest, ICANN & DNS-OARC in Madrid. Peter, Pieter and I presented on various subjects, some of which may interest you. Here are links to the presentations (video and slides): RIPE: Pieter Lexis on dnsdist: Video:

Re: [Pdns-users] SRV records - wow, hounded for payment already?

> I'll either go back to BIND if I will continuously be told such things > when asking for basic help or I'll find one of our devs who knows the > product. I just wanted to get some hands on time with it first. Please go to BIND. I'm sure you'll find volunteers there willing to help you based on

Re: [Pdns-users] The world can't see me... yet

On Fri, Mar 03, 2017 at 05:55:21PM -0700, NoBloat wrote: > Nothing is getting in or out. The world is not seeing the dns server/s, the > dns servers aren't seeing each other. > What am I missing here? "NoBloat", Please specify your real IP addresses and domain names so we can try.

[Pdns-users] PowerDNS Recursor 4.1 plans

Hi everyone, In this message, we ask you to look at our intended PowerDNS Recursor 4.1 development plan. The 4.0 release train has been very successful and reliable for a major '.0' release and is seeing wide production use, including DNSSEC validation for millions of clients. However, we have

Re: [Pdns-users] pdns_recursors trusts addtional section where it better shouldn't

On Fri, Feb 17, 2017 at 02:33:37PM +0100, Peter van Dijk wrote: > >Call me confused, but it happened every day this week. > > Because OVH put those records in the .net zone. OVH did this. OVH needs to > fix this. There is no ‘security issue’, there is no ‘CVE needed’. There is > just OVH that

Re: [Pdns-users] pdns_recursors trusts addtional section where it better shouldn't

On Fri, Feb 17, 2017 at 10:49:08AM +0100, Thomas Mieslinger wrote: > ovh changed its MX A records and now my employers Mail relays can't send > email to ovh. Have you attempted to talk to OVH about their misconfiguration? I ask this because the DNS Resolver community keeps getting asked to solve

[Pdns-users] PowerDNS Jobs, 4.1.x planning, research

Hi everyone, In this post, we want to mention a few things: PowerDNS Jobs, 4.1 plans & some DNSSEC research. First, PowerDNS is growing rapidly as more and more large scale service providers displace closed DNS systems by PowerDNS, especially for security enhanced DNS and "parental control".

[Pdns-users] PowerDNS Year 2016 in review

Hi everyone, We just posted "PowerDNS: 2016 in review" in our blog, https://blog.powerdns.com/2016/12/27/powerdns-2016-in-review/ Text version, which lacks clickable links, is below. But for best results, try the blog! As 2016 draws to a close, we’d like to share a few words on what has been

Re: [Pdns-users] PDNS 4 0 0-alpha2 Hit and Miss

On Mon, Dec 19, 2016 at 12:11:58PM -, Palm Internet wrote: > Hi Guys > > Ubuntu server 16.04 64 bit > > I have tried to locate version 4.0.0 but Ubuntu keeps installing the alpha > version Then this is the bug we should solve. We can't do any support on 4.0.0-alpha2. > Any ideas please. I

Re: [Pdns-users] Authority not refreshing stale mysql connections?

On Thu, Nov 24, 2016 at 01:19:03PM -0800, MRob wrote: > I'm sorry I left that out. I installed using apt-get on Ubuntu. Package is > called: > pdns-server 4.0.0~alpha2-3build1 Thanks! > Since you have heard reports of this before, do you know if the problem only > happens on lightly used

Re: [Pdns-users] Authority not refreshing stale mysql connections?

MRob, It is tremendously helpful if you let us know which version of PowerDNS you are running and on which platform. We are aware of some versions of PowerDNS having this issue but we need to know what you are running. Thanks. Bert On Thu, Nov 24, 2016 at 12:46:42PM -0800, MRob

[Pdns-users] smart failover: Lua record experiments

Hi everyone, Recently it has been noted that some DNS hosters have rolled out proprietary features which are pretty nice - DNS based failover for example. Given the big DNS outages a few weeks ago, it appears there is a case to standardise such DNS based failover so domain owners are able to

Re: [Pdns-users] Recursor v3 to v4

On Thu, Oct 06, 2016 at 04:50:09PM -0300, Ciro Iriarte wrote: > Hi!, are there any guidelines to migrate a v3 recursor to v4?, I'm > particularly interested in any LUA scripting changes... Hi Ciro, We haven't written a specific porting guide. However, you'll probably find that 50% of your

[Pdns-users] Several small PowerDNS things: NFV version, OX Summit, Mugs

Hi everybody, We try not to spam you too much, so a few combined updates: 1) Mugs, 2) OX Summit, 3) Thoughts on NFV. 1) To clarify the recent mug update, this was for the people that applied for the PowerDNS 4.0.0 Release Giveaway. If you did not apply, or do not qualify, but still want a

[Pdns-users] Mug vouchers have been sent

Hi everybody, Yesterday you should have received your PowerDNS 4.0.0 Release Mug vouchers. If you haven't, please complain to powerdns-4.0-contribut...@powerdns.com ! Apologies for the delays, but the mugs are pretty nice. Please show them off :-) Bert

  1   2   3   4   5   6   7   8   9   >