On Mon, Jun 08, 2015 at 09:34:07PM -0700, indranil.db wrote:
> I am trying to build tarball from
> http://buildmaster1.test.powerdns.plexis.eu/#/builders/7
Please specify what operating system, compiler version etc.
https://www.powerdns.com/mailing-lists.html has a list of things we need to
know
mance/
and
http://dnsdist.org/
A version of the email below with clickable links is on
http://blog.powerdns.com/2015/05/26/powerdns-needs-your-help-what-are-we-missing/
Thanks!
Bert
On Mon, May 25, 2015 at 02:34:38PM +0200, bert hubert wrote:
> Hi everybody,
>
> As we're work
Hi everybody,
As we're working on PowerDNS 4.x, we are wondering: what are we missing?
The somewhat longer story is that as a software developer, a sort of
feature-blindness appears. We try to make the software better, faster etc,
but by focusing so much on the technology, one can lose sight of t
PowerDNS 2.x End of Life Statement
21st of May 2015
PowerDNS Authoritative Server 2.9.22 was released more than 6 years ago, in
January 2009. Because of its immense and durable popularity, some patch
releases have been provided, the last one of which (2.9.22.6) was made
available over three yea
On Thu, May 21, 2015 at 04:00:40PM +0530, sumit sharma wrote:
> Hi,
>
> I am using powerdns on RHEL6.4 . Inorder to use SO_REUSEPORT i upgraded the
> kernel to 3.9.11.
> I am using the configuration
>
> receiver-threads=4
> reuseport=yes
>
> When i switch on the reuseport, i see the below error
Dean,
I think you ended up on the wrong mailing list! Sadly DNS does not employ
any DH exchanges right now..
Bert
> It seems there is some issue with DH. Details are available in the
> usual places.
>
> This website is getting posted around the place. Perhaps someone can
> send in exim
Arnaud,
It is probably attempting to read the gsqlite3 module from 3.4.1 into 3.4.4.
Double check if the modules for 3.4.4 are installed and where 3.4.4 is
looking for them!
Bert
On Fri, May 15, 2015 at 03:36:04PM +0200, Arnaud Meyer wrote:
> Hi,
>
> I'm using pdns with sqlite3 on debi
On Sat, May 09, 2015 at 06:01:40AM -0700, Anton wrote:
> I am testing PowerDNS Recursor with adns resolver. It has adnshost command to
> check A records.
Hi Anton,
I don't entirely understand your question. If you do benchmarking tests, by
all means use a recent version of PowerDNS, check your ne
http://blog.powerdns.com/2015/05/11/dns-oarc-spring-workshop-2015/
Bert
On Sun, May 10, 2015 at 11:14:46AM +0200, Peter van Dijk wrote:
> Hello,
>
> On 10 May 2015, at 9:17, bert hubert wrote:
>
> >Hi everybody,
> >
> >This afternoon, in around 5 hours, we will p
Hi everybody,
This afternoon, in around 5 hours, we will present dnsdist at DNS-OARC. You
can follow the livestream here:
https://plus.google.com/events/c05u02q7bjd4glm2g505pm0t3fs
We're up on 16:00 Amsterdam time. Details about our presentation, including
PDF, are on https://indico.dns-oarc.net
On Fri, May 08, 2015 at 05:18:06PM -0400, Steve Young wrote:
> Hi,
>I've built pdns with the following options:
>
> ./configure --with-modules=bind gmysql mydns --without-lua
Try:
./configure --with-modules="bind gmysql mydns" --without-lua
With the quotes.
Good luck!
Bert
>
> a
On Wed, May 06, 2015 at 03:00:57PM +0700, Vu Le wrote:
> Does 8-core limitation still apply for recent version of
> pdns-recursor? If the answer is yes, what is the best way to fully
> utilize all cores on a 20-core machine. I guest I will have to use
> multiple instance?
Hi Vu Le,
It really depe
On Fri, May 01, 2015 at 11:13:22AM -0700, Mark Moseley wrote:
> Of all the things I cleaned up, one thing I *didn't* clean up a lot of
> records with trailing dots in the content field (for NS/MX/CNAME records).
This could easily confuse things. If PowerDNS chases a CNAME and it
encounters a trail
Hi everybody!
As we had announced back in February in
http://mailman.powerdns.com/pipermail/pdns-dev/2015-February/001481.html we
have moved the main git repository ('master') of PowerDNS over to PowerDNS
4.x development.
This means that if you track the git master, and do a pull, you'll now get
Hi everybody,
We've recently been contacted regarding issues people are having with
PowerDNS 2.9.22.x. While we are sympathetic, and seeing if we can do a
workaround with configuration statements or judicious use of 'dnsdist' (see
http://dnsdist.org), please be aware that we will not issue any fur
On Fri, Apr 24, 2015 at 11:07:46PM +0200, l...@consolejunkie.net wrote:
> The answer I got was:
>
> The validation is in comparison the easy part, changing the recursor
> to return the DNSSEC-information is more work.
We're on it people!
http://blog.powerdns.com/2015/02/23/powerdns-development-pl
Hi everybody,
In response to the security releases we did yesterday, we've activated the
built-in PowerDNS 'upgrade now' system for the first time, and we have a
question for you.
This system is described in
http://blog.powerdns.com/2014/10/22/powerdns-security-status-polling/ and
documented on h
Hi everybody,
Open-Xchange, Dovecot and PowerDNS are expanding in Japan. Therefore we are
looking for Sales Engineers and Technical Staff.
Ability to work and function in Japan is of course required for these jobs.
If you are interested in joining our team, please contact me!
Bert
__
://www.theregister.co.uk/2015/03/24/open_xchange_skype_dovecot_merger/?page=2
"The thing is, PowerDNS may power 40 - 50 per cent of all the domain names
out there – per principal author Bert Hubert – but the company has until now
had a grand total of two staff members. It's impressive th
Hi,
The story here is:
>> Mar 26 13:10:35 Exiting because communicator thread died with STL error:
>> Creating local resolver socket for ::, does your OS miss IPv6?: Bad file
>> descriptor
PowerDNS can’t generate an IPv6 socket. You can probably solve that by setting:
query-local-address6=
In
Hi everybody,
We’re currently at World Hosting Days[1] in Rust Germany, where we just
announced that PowerDNS will be joining the Open-Xchange family of
companies. Last week it was also announced[2] that the famous Dovecot IMAP
server project is now a part of OX[3] too.
We’ve been working with T
Hi everybody,
Two announcements in one: First, like 7000 others, we'll be visiting World
Hosting Days in Rust, Germany next week. Peter, Pieter and I will be there,
as will be two of our wonderful Certified Consultants (Kees Monshouwer and
Christian Hofstaedtler).
If you want to meet up, please
Hi everybody,
We just posted the following on our blog:
http://blog.powerdns.com/2015/03/11/introducing-dnsdist-dns-abuse-and-dos-aware-query-distribution-for-optimal-performance/
Summary:
Introducing dnsdist: DNS, abuse- and DoS-aware query distribution for
optimal performance
Over the years,
> Sounds like the "Supported Record Types" page needs updating to add KX and
> IPSECKEY.
Patches are welcome. It is very easy to update our Markdown documentation these
days. https://github.com/PowerDNS/pdns/blob/master/docs/markdown/types.md and
press the edit (pencil) icon.
> To bad about D
On Sat, Mar 07, 2015 at 06:52:00PM +0100, Melvin Mughal wrote:
> I fixed the binary log warning by setting the variable to mixed (SET
> SESSION binlog_format = 'ROW';). Now the syslog is just saying no valid
> nameservers. Which config part did I make a mistake?
We can't sell w/o seeing what is in
On Tue, Mar 03, 2015 at 01:31:21PM +0200, Nikolaos Milas wrote:
> We are using pdns-2.9.22 with LDAP backend, using the "Simple" LDAP
> architecture.
(...)
> internal.example.com and to not send AXFRs to the other master
> servers, as specified in nSRecord attribute, for this particular
> subdomain
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi everybody,
With this message, I'd like to congratulate our newest employee Pieter for
doing a PowerDNS release on his first day of work!
Even though the trains failed massively this morning in The Netherlands, it
all worked out.
Welcome to the te
On Fri, Feb 27, 2015 at 02:15:12PM -0800, Mark Moseley wrote:
> We don't do a lot (or practically any) AXFRs, so I hadn't noticed this
> before now.
Hi Mark,
You probably have something in the database that upsets us (which should not
happen of course).
Can you run pdnssec check-zone on example2
On Thu, Feb 26, 2015 at 07:41:04PM +0100, Melvin Mughal wrote:
> I can't find any good reference on how to do this through the PowerDNS API.
> I want to post it a domain from the application via an API call and request
> to make a new master zone file for the domain with the zone template.
Hi Melv
On Mon, Feb 23, 2015 at 12:48:49PM -0600, Nicholas Williams wrote:
> This frequently trips me up a lot, and I end up replying directly to people
> and not sending to the list. I don't see any good reason for not having a
> list reply-to. Also, IIRC, the list software PowerDNS is using supports
> ha
On Mon, Feb 23, 2015 at 12:44:54PM -0600, Nicholas Williams wrote:
> I'm also very interested in finding out more about the change around ASCII
> names.
I can recommend our ever growing set of test cases:
https://github.com/ahupowerdns/pdns/blob/dnsname/pdns/test-dnsname_cc.cc
DNS, surprisingly,
In this post, we’d like to share our current plans for .. PowerDNS 4.x! We
shared this first with the PowerDNS-development community, and after we
gathered feedback, we’re now announcing it more broadly.
The tl;dr: For the next few months we will be spring cleaning git master,
and stable code and
Hi Charles,
The status is that it is happening, and it should soon become more visible.
The start of this is described in our post from this morning:
http://mailman.powerdns.com/pipermail/pdns-dev/2015-February/001481.html
Please join us in testing 4.x as it will be appearing!
Bert
On
On Thu, Feb 19, 2015 at 05:40:47PM +0100, Niels Peen wrote:
> Hello,
>
> I’m using a netmaskgroup to see if a given IP matches:
>
> if nmg:match(ca) then ..
>
> This works very well but I would like to know which specific netmask matched.
> E.g. by having :match (also) return the matching netma
On Thu, Feb 19, 2015 at 03:26:42PM +0100, h...@nitramlexa.com wrote:
> It works like a dream for everybody BUT Windows 7.
> Android, Linux and Windows XP all get the LAN address when asking
> for mail.example.com, but Windows 7 gets the public address.
Check with tcpdump what answers you are reall
2015 at 09:17:39AM +0100, Steffan Noord wrote:
> So the soa needs tob e removed ?
>
>
> -Oorspronkelijk bericht-----
> Van: bert hubert [mailto:bert.hub...@powerdns.com]
> Verzonden: dinsdag 17 februari 2015 9:16
> Aan: Steffan Noord
> CC: 'Pdns'
> Onderwe
On Tue, Feb 17, 2015 at 09:11:44AM +0100, Steffan Noord wrote:
> Yes cnames are eval
> But some clients want to use them.
>
> After checking my dns server i see a error
> [Error] CNAME cmsetup.nl found, but other records with same label exist.
>
> The client has a cname www. cmsetup.nl
> and a cn
On Mon, Feb 16, 2015 at 05:04:51PM +0100, Steffan Noord wrote:
> I have a domein with no www record
Can you run:
pdnssec rectify-zone verbaasdonline.nl
pdnssec check-zone verbaasdonline.nl
?
This is probably a DNSSEC issue.
Bert
>
> The domain has a
> *. verbaasdonline.nl record
>
Hi everybody,
Some assorted remarks & PowerDNS news:
1) New employee
2) Please test our release candidates
3) 3.7.0 has been skipped, all hail 3.7.1
4) World Hosting days in Germany
New employee
To start with, the great news is that on March 2nd,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi everybody,
We're pleased to announce the second release candidate for 3.7.0. RC1 has
seen a lot of production use already, which uncovered a small number of
issues which have been addressed in RC2. We are very grateful for the people
that test our
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Warning: Version 3.4.2 of the PowerDNS Authoritative Server is a major
upgrade if you are coming from 2.9.x. Additionally, if you are coming from
any 3.x version (including 3.3.1), there is a mandatory SQL schema upgrade.
Please refer to the Upgrade
ve/dnssec/#rules-for-filling-out-fields-in-database-backends
Good luck!
Bert
>
>
>
> -Oorspronkelijk bericht-----
> Van: bert hubert [mailto:bert.hub...@powerdns.com]
> Verzonden: vrijdag 30 januari 2015 12:05
> Aan: Steffan Noord
> CC: pdns-users@mailman.po
Hi Steffan,
Could you run: pdnssec rectify-zone startmetplate.nl
Could you show us:
select * from records where domain_id = (select id from domains where
name='startmetplate.nl') ?
thanks!
Bert
On Fri, Jan 30, 2015 at 12:04:48PM +0100, bert hubert wrote:
> On Fri, Jan 3
On Fri, Jan 30, 2015 at 11:59:55AM +0100, Steffan Noord wrote:
> I have a domein with *.domein in a A record
>
> After that sidn is sending me reports that
>
> wildcard proof failed
Please tell us which PowerDNS version you use and the name of the domain
name so we can check.
Thanks!
On Wed, Jan 28, 2015 at 08:57:52AM +0100, Nagy, Attila wrote:
> Maybe I've just overlooked something, but what JSON is needed for an
> NXDOMAIN reply in the remote backend?
Hi Nagy,
To generate an NXDOMAIN:
1) return that there are no records matching the request.
2) if PowerDNS asks for ANY or
Hi everyone,
A brief note for you, your auditors & other folks worrying about security:
PowerDNS products are note vulnerable to CVE-2015-0235.
Our single use of gethostbyname() has been audited to be no risk as the
parameter with which it is called is static
(gethostbyname("a.root-servers.net"))
On Sun, Jan 25, 2015 at 10:33:34AM -0300, Ciro Iriarte wrote:
> Also, the test traffic was stopped, so the trace file should be complete
> and cleaner!.
Ciro,
I don't see anything that is wrong here. From a cold cache, it takes 11
queries to resolve 2.centos.pool.ntp.org.
Your network used up th
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi everybody,
We're very pleased to announce the availability of the first release
candidate of PowerDNS Recursor 3.7.0.
Of note is the massive community contribution, mostly over Christmas.
Especially Ruben Kerkhof, Pieter Lexis, Kees Monshouwer a
Hi everybody,
Many many years ago we let our domain powerdns.org lapse, which was really
stupid. We did not use it at the time, but we'd like to do so again to host
some more community related things.
PowerDNS.ORG is now owned by Archeo, a Marchex company. We've previously
attempted to contact th
he metronome.
Can you confirm you needed doxygen for the sequence described below? Or did
you also run 'make' in the yahttp directory?
Thanks.
Bert
>
> > On Jan 19, 2015, at 9:43 PM, bert hubert wrote:
> >
> > On Sat, Jan 17, 2015 at 05:39:30AM +020
On Fri, Jan 16, 2015 at 01:34:45PM -0300, Ciro Iriarte wrote:
> This were the queries sent from a client:
>
> 2015-01-16 13:04:38 dig @server 3.redhat.pool.ntp.org <-- NXDOMAIN, my
> mistake
> 2015-01-16 13:15:35 dig @server 2.redhat.pool.ntp.org <-- NXDOMAIN, my
> mistake
> 2015-01-16 13:15:52 di
On Mon, Jan 19, 2015 at 02:31:20PM +1100, Peter Nunn wrote:
> Hi Guys,
>
> I'm still getting these lockups on the pdns setup.
>
> I'm having to restart the server every morning at about the same time the
> first user hits it in anger and then it seems to run for the rest of the day
> happily (w
On Sat, Jan 17, 2015 at 05:39:30AM +0200, Keresztes Péter-Zoltán wrote:
> Hello, I am trying to install metronome on a debian wheezy, fist I got the
> errors described in the first messge then I have installed libboost-dev
> when I run the make I get the following output:
Hi Keresztes,
Try:
cd y
On Mon, Jan 19, 2015 at 11:17:30AM -0700, Doug Preston wrote:
> I've used both a precompiled rpm and built the recursor from source (version
> 3.6.2).
Hi Doug,
iputils is only available from 'git' versions, not yet in any released
version.
> Is there something in addition to LUA=1 to enable the
On Thu, Jan 15, 2015 at 09:56:52AM -0300, Ciro Iriarte wrote:
> Hi!, can anybody share what's the usual latency you're seeing with uncached
> queries?.
No, that is not usual. Please reproduce with --trace output and share it
with us. Usually timeouts are involved.
On a production system, try rec_
On Thu, Jan 08, 2015 at 09:17:38AM +1100, Peter Nunn wrote:
> I've got a pdns server at one site that is causing me massive headaches.
> Every morning when the staff come in and start using it (and were not talking
> large numbers) it fails to serve external dns and has to be restarted
> (usual
On Mon, Dec 22, 2014 at 02:39:49PM +0100, Morten Stevens wrote:
> Here is my result compared with bind and unbound:
> 1) pdns-recursor 3.6.2: 169k QPS
> 2) unbound 1.5.1: 327k QPS
> 3) bind 9.9.4-P2: 251k QPS
Well - let me describe how we like to do our benchmarking.
1) Use tcpdump to record actu
On Fri, Dec 12, 2014 at 09:23:16AM +0100, sth...@nethelp.no wrote:
> > You can update auth-zones using 'rec_control reload-zones' at runtime
> > without restarting the recursor, which will discover new zones to be blocked
> > or no no longer blocked.
>
> A couple of questions regarding reload-zone
On Mon, Dec 15, 2014 at 01:14:41PM -0300, Ciro Iriarte wrote:
> Hi!, I'm deplaying some recursors with 3.6.2 (packaged by EPEL) and
> they randomly use a lot of CPU and the queries dy by timeout. I've
> seen loads from 1 to 5 (100% and 500% CPU usage).
Hi Ciro. We've not heard of anything like thi
Hi everybody,
(this message is also on
http://blog.powerdns.com/2014/12/11/powerdns-graphing-as-a-service/ with
pictures and links)
Over the past few months, we’ve worked on our graphing tool, which has proved
to be a wonderful aid in debugging. If you want to get the best help from us
in diagnos
4 at 03:31:35PM +0100, bert hubert wrote:
> Hi everybody,
>
> From PowerDNS users we have heard of problems caused by various domain names
> related to PowerDNS Security Advisory 2014-02 (CVE-2014-8601),
> http://doc.powerdns.com/md/security/powerdns-advisory-2014-02/
>
>
On Wed, Dec 10, 2014 at 01:59:01PM +0530, sumit sharma wrote:
> From my update, the cache is set to 0.
> And i have verified that there is always a packetcache MISS.
This is probably the query cache, which you can disable separately:
query-cache-ttl=0
negquery-cache-ttl=0
Can you try that?
Hi everybody,
>From PowerDNS users we have heard of problems caused by various domain names
related to PowerDNS Security Advisory 2014-02 (CVE-2014-8601),
http://doc.powerdns.com/md/security/powerdns-advisory-2014-02/
If you are not yet in a position to upgrade to 3.6.2, or even if you have
upgra
On Fri, Dec 05, 2014 at 10:55:36AM -0500, Craig Despeaux wrote:
> Dec 05 10:44:47 unbound[26907:7] info: validation failure :
> signature crypto failed from 192.168.0.7
Can you reproduce without 'ANY'? So only A records or SOA records etc.
> Am I missing a step or is PowerDNS broken?
Perhaps. W
Hi everybody,
Yesterday we worked with various providers to debug a problem between
Microsoft Exchange, PowerDNS Recursor and the Microsoft Azure nameservers.
If you or your users employ Microsoft Exchange on IPv6 and see email
delivery problems to domain names hosted on Azure, this message is fo
Hi everybody,
Thanks to the help of official PowerDNS-hero Pieter Lexis, our old DocBook
XML-based documentation has been converted to some pretty good looking
Markdown! You can check it out on http://doc.powerdns.com/
The old documentation is also still online, but the most popular parts have
be
If anyone has developed a similar rule for FreeBSD, please share!
Kind regards,
Bert Hubert
PowerDNS
--
PowerDNS Website: http://www.powerdns.com/
Contact us by phone on +31-15-7850372
___
Pdns-users mailing list
Pdns-users@mailman.po
Hi everybody,
PowerDNS software sadly sometimes has critical security bugs. Even though we
send out notifications of these via all channels available, our recent
security releases have taught us that not everybody actually finds out about
important security updates via our mailing lists, Facebook
On Mon, Oct 20, 2014 at 01:12:07PM -0500, k...@rice.edu wrote:
> > Also, I thought about adding some helpful LUA bits to report date/time
> > or the client's IP address, but from what I understood, only one LUA
> > script can be added to the recursor, maybe a super monster script
> > could be able
On Mon, Oct 13, 2014 at 10:10:43AM -0300, Ciro Iriarte wrote:
> Hi!, I'm running some quick tests on a new Recursor (3.6.1) and I see
> ~ 50% query timeouts. It has a good Internet connection but no clients
> yet, can this be caused by empty cache?.
Yes, on a cold cache, nameservers are a lot slow
On Thu, Oct 02, 2014 at 03:09:40PM +0200, Steffan Noord wrote:
> Hello,
>
> I have a strange problem.
> I have a php script that also signs the domains with dnssec.
> After upgrading top dns 3.4 the script is not signing the domains anymore
> When i run the script from the commandline it works fin
Hi everybody,
As an aside to these giant & impressive release notes, I would like to thank
the PowerDNS open source community for the tremendous amount of work
invested in 3.4.0. It is astounding.
For a small overview, check for example:
https://github.com/PowerDNS/pdns/network/members
On Thu, Sep 18, 2014 at 06:13:15PM -0400, p...@w3eta.net wrote:
> I manage a few PDNS v2.9.22 authoritative servers on SLES V10 and wee need to
> upgrade the OS to SLES V11. We would prefer not to upgrade PDNS.
We can only recommend that you do. 2.9.22 has known security issues, please
see http://
Hi everybody,
Based on strong user interest, we are fast-tracking the implementation of
ALIAS/ANAME records, to solve the 'CNAME at apex' problem. Because of the
fast-tracking, we need rapid feedback to see if we got it right (see the end
of the mail for details).
In short, you can CNAME 'www.you
Hi everybody,
We've just received word from Fedora that they have updates available
(thanks!). In addition, they ask for testers. It would be great if you
could help! The relevant links can all be found below:
From: Morten Stevens
Subject: Fedora pdns-recursor updates
Hello,
Here are our pd
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi everybody,
We regret that we have to announce a PowerDNS Recursor security release:
Issue: A specific sequence of packets can crash PowerDNS Recursor 3.6.0
remotely
CVE:CVE-2014-3614
Affected:
All deployments of PowerDNS Recu
On Tue, Sep 09, 2014 at 08:20:48PM +0200, bert hubert wrote:
> On Tue, Sep 09, 2014 at 05:57:08PM +, Todd Smith wrote:
>
> > Actually that begs one more question--as of right now I actually have
> > network-timeout set to 5000 in recursor.conf, yet obviously it'
On Tue, Sep 09, 2014 at 05:57:08PM +, Todd Smith wrote:
> Actually that begs one more question--as of right now I actually have
> network-timeout set to 5000 in recursor.conf, yet obviously it's still
> timing out considerably sooner than that; is there, say, some other
> setting (that is, of
Bert
>
> -Original Message-
> From: pdns-users-boun...@mailman.powerdns.com
> [mailto:pdns-users-boun...@mailman.powerdns.com] On Behalf Of bert hubert
> Sent: Tuesday, September 09, 2014 1:11 PM
> To: Michael Loftis
> Cc: pdns-users@mailman.powerdns.com
> Subje
Well, as long as one server works you should get an answer.
Try setting a trace-regex on toyota and see what your powerdns reports!
http://doc.powerdns.com/html/rec-control.html - trace-regex
Bert
On Tue, Sep 09, 2014 at 10:06:03AM -0700, Michael Loftis wrote:
> On Tue, Sep 9, 2014 at 9
On Thu, Sep 04, 2014 at 08:45:31AM +0300, Péter-Zoltán Keresztes wrote:
> Hello,
>
> I know the API is still in early stage but is there any documentation for it?
Hi Peter,
What we have is here:
https://github.com/PowerDNS/pdns/tree/master/pdns/docs/httpapi
https://github.com/PowerDNS/pdns/blob/
On Thu, Aug 28, 2014 at 02:48:50PM -0500, Lists wrote:
> launch=gsqlite3
> gsqlite3-database=/root/pdns.db
>
> I have also tried changing permissions and ownership of my pdns
> database file, thinking it was a permissions issue but I still get
> the following errors in /var/log/messages.
>
> gsql
On Fri, Aug 01, 2014 at 07:52:40AM +0200, Pepe Charli wrote:
> Is there any estimated release date for Powerdns 3.4 y Pdnscontrol?
Hi Pepe,
"When it is ready", but we are aiming for within 4 weeks.
Bert
___
Pdns-users mailing list
Pdns-users@m
On Fri, Aug 15, 2014 at 10:47:31AM +0200, Carlos HyD wrote:
> Hi,
>
> I had to rollback two of our dns to 2.9.22 cause of this and I’d like to go
> with latest version:
Hi Carlos -
> dig A cloud11.servidor-de-dns.com @ns1.hospedajeydominios.com
>
> ;; ANSWER SECTION:
> cloud11.servidor-de-dns
nt to apologize for 1) causing this mess and 2) blaming our users for
it. Sorry.
Thanks to Leo, Winfried and Ruben for nagging us about the issue. You were
right.
The situation has now been resolved, and you should no longer have problems
posting to our lists.
Bert
--
Bert Hubert
Neth
On Mon, Jul 14, 2014 at 03:31:17PM +0200, Willem wrote:
> Oops, celebrated too early. Today, I recorded another unexpected NXDOMAIN
> reply:
Willem,
Can you drop by our IRC channel? We can help you debug there.
We are sadly unable to debug issues we can't verify remotely though.
Bert
>
Hi everbody,
First let's start with the good news - we've been receiving some great
feedback from PowerDNS Recursor 3.6.0 deployments using the
'pdns-distributes-queries' setting. According to 'namebench', we now exceed
even on-site Google 8.8.8.8 in perceived performance by a significant
margin,
Hi everybody,
I'm presenting today at ICANN50, at around 3PM London time (10AM US east
coast, 16:00 Dutch time).
You can join in live via:
http://london50.icann.org/en/schedule/mon-tech
which has live audio and slides, and you can also ask questions.
If you are there, we always enjoy me
Hi everybody,
In short: there is a market for (small) PowerDNS jobs, and if you are
available for such work, read on for where we’ll be sending people who need
PowerDNS work done!
The longer story:
As PowerDNS use continues to increase, so does the number of inquiries we
receive from operators t
On Fri, Jun 13, 2014 at 11:04:55AM -0300, Daniel Lopes de Carvalho wrote:
> Hello,
>
> I have a PowerDNS 3 server and recursor running on a linux box and I'm
> looking for a way to forward a query to an address to an IP.
>
> Example: I have a address www.example.com with IP 200.X.X.X, but I want
On Sat, May 31, 2014 at 02:23:38PM -0500, okTurtles wrote:
> I'd prefer for PDNS recursor to do the detecting and mitigating itself,
> but I want a solution ASAP and don't want to wait, so if it doesn't
You want a lot!
Here's what I wrote elsewhere to you, but I'm repeating it here so our
stance
On 04 Jun 2014, at 17:20, okTurtles wrote:
> I tried commenting out `forward-zones-recurse`, but that made things worse.
> Loading pastebin.com and ycombinator.com failed with SERVFAIL.
>
> I did manage to get the trace-regex for them though:
> http://pastebin.com/bvsRQc81
It mentions four t
Hi everybody,
To add some context to the RC1 release, many large scale resolver operators
are currently seeing high levels of DNS-based denial of service attacks.
3.6.0 contains specific countermeaures for the current wave of attacks, and
comes with a more generic Lua feature to rapidly filter ma
On Wed, May 21, 2014 at 08:39:35AM -0400, James Baer wrote:
> Thank you all for looking into this and for the suggestions. I'll
> give them a try and report back.
Thanks. Meanwhile, we've written up our conclusions here:
http://blog.powerdns.com/2014/05/21/a-surprising-discovery-on-converting-ipv6
On Tue, May 20, 2014 at 03:58:19PM -0400, James Baer wrote:
> Any body have an ideas what I can do to correct this problem? I
> really don't see a reason why the recursor would care how many ip
> addresses I have on a system.
Hi James,
>From the investigations performed by Imre and Aki overnight,
=pdns-recursor
> >> setgid=pdns-recursor
> >> daemon=no
> >> local-address=127.0.0.1
> >> threads=1
> >>
> >> [root@c605 ~]# strace /usr/sbin/pdns_recursor >
> >> /tmp/strace-pdns-recursor.txt 2>&1
> >> Segmen
Imre,
Can you strace the startup with threads=1?
Bert
On May 20, 2014 10:25 PM, Imre Gergely wrote:
>
>
> Hi
>
> I did manage to reproduce this in a VM. Installed a CentOS 6.5, and recursor
> 3.5.3 from EPEL. Then I did this:
>
> for i in `seq 1 16`; do for j in `seq 1 254`; do ip a a 10.0
e just found your messages in our spam folder, apologies for this. Our
filter got confused by the koi-8 encoding, for which there is no excuse.
We will get back to you shortly.
Kind regards,
Bert Hubert
>
> Is security problems policy the same, or maybe I need to
> report such issue som
p didn't show it. Try pdnssec check-zone altersvorsorgen.org.
also try pdnssec rectify altersvorsorgen.org.
If that doesn't show anything, try enabling 'query-logging' and 'loglevel=9'
to see what queries powerdns is sending.
Bert
>
>
On Mon, May 12, 2014 at 09:32:08PM +, Daniel Eschner wrote:
> ysql> SELECT * FROM `records` WHERE `domain_id` = 232896;
This should show SOA records. In older verions of PowerDNS, things would
accidentally work w/o SOA records. But no more.
So add those, and things will work.
Bert
_
201 - 300 of 1193 matches
Mail list logo
