The default EDNS0 buffer size has changed to 1232, how big is the response when
you use dig?
Perhaps increasing the edns buffer sizes would be a way out?
Ondrej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside
On Fri, Nov 18, 2022 at 01:14:27AM +, Andy Smith wrote:
> What happens is that a NOTIFY is sent out, PowerDNS sees it and queries
> for SOA and logs this:
>
> Nov 18 00:25:26 daiquiri pdns_server[32452]: While checking domain freshness:
> Query to '2001:ba8:1f1:f085::53' for SOA of
> 'f.4.1.
On Fri, Nov 18, 2022 at 01:14:27AM +, Andy Smith wrote:
> Attached is empty-soa.txt, the text dump of the pcap of 4 packets. It
> shows:
Really attached now…
No. Time SourceDestination Protocol
Length Info
1 0.00 85.119.80.222 17
Hi,
I recently upgraded a Debian 9 / bind9 system to Debian 11, so that
would be package version 1:9.10.3.dfsg.P4-12.3+deb9u12 to
1:9.16.27-1~deb11u1. Ever since doing so, one particular zone is unable
to be transferred to any of the several PowerDNS secondary servers.
What happens is that a NOTI
Hi,
On 16-11-2022 18:53, vom513 wrote:
Hello,
I’m wanting to go ahead and look at migrating to dnssec-policy for my
zones. I currently use “auto-dnssec maintain” and “inline-signing
yes”. I also have a “stack” of ZSKs I made that all nicely overlap
with their various date settings. I think I
Done, thanks for reading and reporting.
Best regards,
Matthijs
On 17-11-2022 02:43, vom513 wrote:
ISC folks: can someone take a look at:
https://kb.isc.org/docs/dnssec-key-and-signing-policy
Seems one of the examples has a “-when” argument to rndc and the time is “1w”
rndc seems to want YY
6 matches
Mail list logo
