On Thu, 24 Jan 2019 11:22:44 +1100, Mark Andrews <ma...@isc.org> may have written: > If you run a firewall in front of your DNS server you may be broken.
If you run a firewall in front of your DNS server and the firewall breaks EDNS, then your firewall is broken. And has been a long, long time. I put a firewall in place back in 2004, and EDNS compliance was one of the tests back then. -- Mike Meredith, University of Portsmouth Chief Systems Engineer, Hostmaster, Security, and Timelord!
pgpApQS1bYzQY.pgp
Description: OpenPGP digital signature