On Wed, 28 Dec 2022, Matus UHLAR - fantomas wrote:
On 28.12.22 12:55, John Stimson via users wrote:
The machine has bind9 running locally to provide DNS for its own domain,
and uses it for name resolution.
This is the problem:
Bind9 is configured to use OpenDNS and Google as forwarders.
BIND does NOT need forwarders and by using it, you mostprobably have created
this problem.
remove forwarders statement.
You can also set up per-DNSBL forwarding suppression while still
forwarding for other lookups:
// Don't forward DNSBL/URIBL lookups to ISP
zone "list.dnswl.org" IN {
type forward;
forward first;
forwarders { };
};
zone "multi.uribl.com" IN {
type forward;
forward first;
forwarders { };
};
...etc. for all DNSBL subdomains.
--
John Hardin KA7OHZ http://www.impsec.org/~jhardin/
jhar...@impsec.org pgpk -a jhar...@impsec.org
key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
These Sarah Brady types must be educated to understand that
because we have an armed citizenry, that a dictatorship has not
yet happened in America. These anti-gun fools are more dangerous
to Liberty than street criminals or foreign spies.
-- Theodore Haas, Dachau survivor
-----------------------------------------------------------------------
942 days since the first private commercial manned orbital mission (SpaceX)
