Firstly upgrade. You are out of date. Secondly fix your firewall. You need to allow through 4K DNS UDP messages. You need to turn off whatever is blocking the bigger packets and you also need to allow through fragmented UDP packets.
Mark In message <calm7fafxmb1hag-vryuh5drji43gk+swkoseptzt_exzea7...@mail.gmail.com>, Wolfgang Rosenauer writes: > On Thu, Jul 10, 2014 at 4:16 PM, Tony Finch <d...@dotat.at> wrote: > > > > Suspicious. What do you get if you run > > dig +short rs.dns-oarc.net txt > > s15418965:~ # dig +short rs.dns-oarc.net txt > rst.x479.rs.dns-oarc.net. > rst.x488.x479.rs.dns-oarc.net. > rst.x493.x488.x479.rs.dns-oarc.net. > "2001:8d8:870:1200::53 DNS reply size limit is at least 493 bytes" > "2001:8d8:870:1200::53 lacks EDNS, defaults to 512" > > > Wolfgang > _______________________________________________ > Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe > from this list > > bind-users mailing list > bind-users@lists.isc.org > https://lists.isc.org/mailman/listinfo/bind-users -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org _______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
