[Pdns-users] Question about PDNS SOA presentation.

[Michael Van Der Beek]

Hi Peter,

That's interesting. My pdns.conf did not have default-soa-edit line.
Also didn't even know about that option. Don't have any domain specific soa 
meta configs in the mysql database.

Looking into the database I found.

MariaDB [powerdns]> select * from domainmetadata
-> ;
++---++-+
| id | domain_id | kind   | CONTENT |
++---++-+
|  1 | 1 | NSEC3PARAM | 1 0 1 ab|
|  2 | 1 | SOA-EDIT   | INCREMENT-WEEKS |
++---++-+
2 rows in set (0.00 sec)

Didn't setup the fields. Either it was when I signed the domain. No matter..
Setting the SOA-EDIT to "" I get back the correct values.

Thanks Peter!
Been scratching my head about this for a while.

Regards,

Michael




___
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/pdns-users

Re: [Pdns-users] Question about PDNS SOA presentation.

[Peter van Dijk]

On 6 Mar 2019, at 8:06, Michael Van Der Beek wrote:


;; ANSWER SECTION:
cyber-mage.com. 86400   IN  SOA ns1.linode.com. 
hostmaster.cyber-mage.com. 2019033066 28800 7200 1209600 86400


|  1 | 1 | cyber-mage.com | SOA  | ns1.linode.com 
hostmaster.cyber-mage.com 2019030501 28800 7200 1209600 86400 | 86400 
|0 |NULL |0 | rvms80ecrvpfkr7n6a3ksp4tc5f2g9bk |   
 1 |


2019033066 - 2019030501 = 2566, which happens to be the number of weeks 
since January 1, 1970. In other words, it looks like you have 
SOA-EDIT=INCREMENT-WEEKS configured, described at 
https://doc.powerdns.com/authoritative/dnssec/operational.html#increment-weeks


Kind regards,
--
Peter van Dijk
PowerDNS.COM BV - https://www.powerdns.com/
___
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/pdns-users

[Pdns-users] Question about PDNS SOA presentation.

[Michael Van Der Beek]

Hi Frank,

After removing the recursor option in pdns.conf

 dig @72.14.187.43 cyber-mage.com SOA

; <<>> DiG 9.2.4 <<>> @72.14.187.43 cyber-mage.com SOA
; (1 server found)
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 22124
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;cyber-mage.com.IN  SOA

;; ANSWER SECTION:
cyber-mage.com. 86400   IN  SOA ns1.linode.com. 
hostmaster.cyber-mage.com. 2019033067 28800 7200 1209600 86400

;; Query time: 200 msec
;; SERVER: 72.14.187.43#53(72.14.187.43)
;; WHEN: Thu Mar  7 16:16:19 2019
;; MSG SIZE  rcvd: 90


It still wrong.
Read in this mailing list that somebody complained about the pdnsutils increase 
soa record time also results in a random last 4 digits instead of increasing it 
sequentially. But nobody replied to him. His version was 4.1.x. I presume that 
in his case the first setup was correct. Maybe it was partially fixed from 
4.0.6 to 4.1.x


Regards,

Michael
___
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/pdns-users

Re: [Pdns-users] Question about PDNS SOA presentation.

[frank+pdns--- via Pdns-users]

Hi Michael,

> On 7 Mar 2019, at 04:48, Michael Van Der Beek  > wrote:
> 
> Hi Frank,
> 
> Currently not using dnsdist.. just installed that in case I want to try 
> special splitting of traffic.
> 
> Currently 
> Pdns Auth (72.14.187.43:53) -> Recursor (127.0.0.1:53)

Can you disable the connection to the recursor and see what happens? Do you get 
different answers, no answers, …?

> 
> Eventually, when traffic goes high, will use dnsdist to load balance multiple 
> Auths and recursors.

The first thing you’d need to do, is separate the auth from the recursor. Even 
with dnsdist, it’s best to completely separate the dnsdist-for-recursors from 
the dnsdist-for-auth.

Regards,

Frank

> That is why I installed dnsdist as an eventual progression.
> 
> Regards,
> 
> Michael
> ___
> Pdns-users mailing list
> Pdns-users@mailman.powerdns.com 
> https://mailman.powerdns.com/mailman/listinfo/pdns-users 
> 
___
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/pdns-users

[Pdns-users] Question about PDNS SOA presentation.

[Michael Van Der Beek]

Hi Frank,

Currently not using dnsdist.. just installed that in case I want to try special 
splitting of traffic.

Currently
Pdns Auth (72.14.187.43:53) -> Recursor (127.0.0.1:53)

Yes I know, I know eventually need to change config so that Auth is standalone 
and not forward recursion traffic to recursor. Traffic is not high so not 
really urgent at the moment.

So currently querying my server is direct to PdnsAuth not going through the 
recursor (which is for recursion traffic).

Eventually, when traffic goes high, will use dnsdist to load balance multiple 
Auths and recursors.
That is why I installed dnsdist as an eventual progression.

Regards,

Michael
___
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/pdns-users

Re: [Pdns-users] Question about PDNS SOA presentation.

[frank+pdns--- via Pdns-users]

Hi Michael,

It seems you have pdns-auth, pdns-recursor and dnsdist installed. Could you 
tell us a bit more about your configuration? What’s listening on port 53, and 
how is it configured?

Regards,

Frank Louwers
PowerDNS Certified Consultant

> On 6 Mar 2019, at 08:06, Michael Van Der Beek  > wrote:
> 
> Hi All,
>  
> I’m a bit confused about my SOA record.
> When I query it.
> dig @server1.cyber-mage.com SOA cyber-mage.com 
>  
> ; <<>> DiG 9.9.4-RedHat-9.9.4-61.el7_5.1 <<>> @server1.cyber-mage.com SOA 
> cyber-mage.com 
> ; (2 servers found)
> ;; global options: +cmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 5232
> ;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
> ;; WARNING: recursion requested but not available
>  
> ;; OPT PSEUDOSECTION:
> ; EDNS: version: 0, flags:; udp: 1680
> ;; QUESTION SECTION:
> ;cyber-mage.com .IN  SOA
>  
> ;; ANSWER SECTION:
> cyber-mage.com . 86400   IN  SOA 
> ns1.linode.com . hostmaster.cyber-mage.com 
> . 2019033066 28800 7200 1209600 86400
>  
> ;; Query time: 219 msec
> ;; SERVER: 72.14.187.43#53(72.14.187.43)
> ;; WHEN: Wed Mar 06 14:49:45 +08 2019
> ;; MSG SIZE  rcvd: 101
>  
> But my mysql records are:
> MariaDB [powerdns]> select * from records where type="SOA";
> ++---++--+--+---+--+-+--+--+--+
> | id | domain_id | name   | type | content
>   | ttl   | prio | 
> change_date | disabled | ordername| auth |
> ++---++--+--+---+--+-+--+--+--+
> |  1 | 1 | cyber-mage.com  | SOA  | 
> ns1.linode.com  hostmaster.cyber-mage.com 
>  2019030501 28800 7200 1209600 86400 | 
> 86400 |0 |NULL |0 | rvms80ecrvpfkr7n6a3ksp4tc5f2g9bk |
> 1 |
> | 23 | 2 | 187.14.72.in-addr.arpa | SOA  | ns1.linode.com 
>  hostmaster.cyber-mage.com 
>  2019022501 28800 7200 1209600 86400 | 
> 86400 |0 |NULL |0 |  |
> 1 |
> ++---++--+--+---+--+-+--+--+--+
>  
> And
> MariaDB [powerdns]> select * from domains;
> ++++++-+-+
> | id | name   | master | last_check | type   | 
> notified_serial | account |
> ++++++-+-+
> |  1 | cyber-mage.com  | NULL   |   NULL 
> | MASTER |  2019030501 | NULL|
> |  2 | 187.14.72.in-addr.arpa | NULL   |   NULL | MASTER |  
> 2019022501 | NULL|
> ++++++-+-+
>  
> How come the values are different? What am I doing wrong?
>  
>  
> Regards,
>  
> Michael
> ___
> Pdns-users mailing list
> Pdns-users@mailman.powerdns.com 
> https://mailman.powerdns.com/mailman/listinfo/pdns-users 
> 
___
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/pdns-users

[Pdns-users] Question about PDNS SOA presentation.

[Michael Van Der Beek]

Forgot to mention I am running.

rpm -qa | grep pdns
pdns-4.0.6-1pdns.el7.x86_64
dnsdist-1.1.0-1pdns.el7.x86_64
pdns-recursor-4.0.9-1pdns.el7.x86_64
pdns-backend-mysql-4.0.6-1pdns.el7.x86_64

And
MariaDB-server-10.1.38-1.el7.centos.x86_64

___
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/pdns-users

[Pdns-users] Question about PDNS SOA presentation.

[Michael Van Der Beek]

Opps wrong thread.

___
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/pdns-users

[Pdns-users] Question about PDNS SOA presentation.

[Michael Van Der Beek]

Hi All,

I'm a bit confused about my SOA record.
When I query it.
dig @server1.cyber-mage.com SOA cyber-mage.com

; <<>> DiG 9.9.4-RedHat-9.9.4-61.el7_5.1 <<>> @server1.cyber-mage.com SOA 
cyber-mage.com
; (2 servers found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 5232
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; WARNING: recursion requested but not available

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1680
;; QUESTION SECTION:
;cyber-mage.com.IN  SOA

;; ANSWER SECTION:
cyber-mage.com. 86400   IN  SOA ns1.linode.com. 
hostmaster.cyber-mage.com. 2019033066 28800 7200 1209600 86400

;; Query time: 219 msec
;; SERVER: 72.14.187.43#53(72.14.187.43)
;; WHEN: Wed Mar 06 14:49:45 +08 2019
;; MSG SIZE  rcvd: 101

But my mysql records are:
MariaDB [powerdns]> select * from records where type="SOA";
++---++--+--+---+--+-+--+--+--+
| id | domain_id | name   | type | content  
| ttl   | prio | change_date | 
disabled | ordername| auth |
++---++--+--+---+--+-+--+--+--+
|  1 | 1 | cyber-mage.com | SOA  | ns1.linode.com 
hostmaster.cyber-mage.com 2019030501 28800 7200 1209600 86400 | 86400 |0 |  
  NULL |0 | rvms80ecrvpfkr7n6a3ksp4tc5f2g9bk |1 |
| 23 | 2 | 187.14.72.in-addr.arpa | SOA  | ns1.linode.com 
hostmaster.cyber-mage.com 2019022501 28800 7200 1209600 86400 | 86400 |0 |  
  NULL |0 |  |1 |
++---++--+--+---+--+-+--+--+--+

And
MariaDB [powerdns]> select * from domains;
++++++-+-+
| id | name   | master | last_check | type   | notified_serial 
| account |
++++++-+-+
|  1 | cyber-mage.com | NULL   |   NULL | MASTER |  2019030501 
| NULL|
|  2 | 187.14.72.in-addr.arpa | NULL   |   NULL | MASTER |  2019022501 
| NULL|
++++++-+-+

How come the values are different? What am I doing wrong?


Regards,

Michael
___
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/pdns-users