I successfully built 9.16.18 on my RH8.4 ppc64el VM. But after doing so I wanted to set it up so that if it receives a query over IPv4 it will not return any AAAA records in the reply.
I found this: https://kb.isc.org/docs/aa-00576
Which mentions using --enable-filter-aaaa and then applying the right option in named.conf. However when I added this to my configure flags, it says it is not recognized (see below).
What is the current way to enforce this behavior? I tried adding the "filter-aaaa-on-v4 yes;" in named.conf (perhaps that compile option was now enabled by default?) but did not work (queries still return both A and AAAA results).
Configuration summary:
-------------------------------------------------------------------------------
Optional features enabled:
GSS-API (--with-gssapi)
Allow 'fixed' rrset-order (--enable-fixed-rrset)
Print backtrace on crash (--enable-backtrace)
Use symbol table for backtrace, named only (--enable-symtable)
Use GNU libtool (--with-libtool)
CMocka Unit Testing Framework (--with-cmocka)
DNSSEC validation active by default (--enable-auto-validation)
Dynamically loadable zone (DLZ) drivers:
Filesystem (--with-dlz-filesystem)
-------------------------------------------------------------------------------
Features disabled or unavailable on this platform:
Small-system tuning (--with-tuning)
Allow 'dnstap' packet logging (--enable-dnstap)
GeoIP2 access control (--enable-geoip)
DNS Response Policy Service interface (--enable-dnsrps)
Using PKCS#11 for Public-Key Cryptography (--with-native-pkcs11)
Very verbose query trace logging (--enable-querytrace)
IDN support (--with-libidn2)
-------------------------------------------------------------------------------
Configured paths:
prefix: /usr/local
sysconfdir: ${prefix}/etc
localstatedir: ${prefix}/var
-------------------------------------------------------------------------------
Compiler: gcc
gcc (GCC) 8.4.1 20200928 (Red Hat 8.4.1-1)
Copyright (C) 2018 Free Software Foundation, Inc.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
-------------------------------------------------------------------------------
Optional features enabled:
GSS-API (--with-gssapi)
Allow 'fixed' rrset-order (--enable-fixed-rrset)
Print backtrace on crash (--enable-backtrace)
Use symbol table for backtrace, named only (--enable-symtable)
Use GNU libtool (--with-libtool)
CMocka Unit Testing Framework (--with-cmocka)
DNSSEC validation active by default (--enable-auto-validation)
Dynamically loadable zone (DLZ) drivers:
Filesystem (--with-dlz-filesystem)
-------------------------------------------------------------------------------
Features disabled or unavailable on this platform:
Small-system tuning (--with-tuning)
Allow 'dnstap' packet logging (--enable-dnstap)
GeoIP2 access control (--enable-geoip)
DNS Response Policy Service interface (--enable-dnsrps)
Using PKCS#11 for Public-Key Cryptography (--with-native-pkcs11)
Very verbose query trace logging (--enable-querytrace)
IDN support (--with-libidn2)
-------------------------------------------------------------------------------
Configured paths:
prefix: /usr/local
sysconfdir: ${prefix}/etc
localstatedir: ${prefix}/var
-------------------------------------------------------------------------------
Compiler: gcc
gcc (GCC) 8.4.1 20200928 (Red Hat 8.4.1-1)
Copyright (C) 2018 Free Software Foundation, Inc.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
Unrecognized options:
--enable-filter-aaaa
--enable-filter-aaaa
Scott Strattner
_______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list
ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
