B. Cook
2018-04-24 13:20:49 UTC
I was able to adjust my unbound configuration and get everything working.
forward-zone:
name: "20.10.in-addr.arpa."
forward-addr: 172.16.254.241
forward-zone:
name: "pcsd."
forward-addr: 172.16.254.241
where 172.16.254.241 is the authoritative dnsmasq 2.79 install (alpine)
(alpine binary)
Compile time options: IPv6 GNU-getopt no-DBus no-i18n no-IDN DHCP DHCPv6
no-Lua TFTP no-conntrack ipset auth no-DNSSEC loop-detect inotify
(debian binary)
Compile time options: IPv6 GNU-getopt DBus i18n IDN DHCP DHCPv6 no-Lua TFTP
conntrack ipset auth DNSSEC loop-detect inotify
(unbound alpine binary)
Version 1.7.0
linked libs: libevent 2.1.8-stable (it uses epoll), LibreSSL 2.7.2
linked modules: dns64 respip validator iterator
(unbound debian binary)
Version 1.6.0
linked libs: libevent 2.0.21-stable (it uses epoll), OpenSSL 1.1.0f 25 May
2017
linked modules: dns64 python validator iterator
tl:dr;
I got everything working, needed to adjust the other software
package.. dnsmasq was just fine.
Network Analyst
Poughkeepsie City School District
SMS & Mobile: (202) 810-5827
twitter.com/bcookatpcsd
If you can't explain it simply, you don't understand it well enough.
forward-zone:
name: "20.10.in-addr.arpa."
forward-addr: 172.16.254.241
forward-zone:
name: "pcsd."
forward-addr: 172.16.254.241
where 172.16.254.241 is the authoritative dnsmasq 2.79 install (alpine)
(alpine binary)
Compile time options: IPv6 GNU-getopt no-DBus no-i18n no-IDN DHCP DHCPv6
no-Lua TFTP no-conntrack ipset auth no-DNSSEC loop-detect inotify
(debian binary)
Compile time options: IPv6 GNU-getopt DBus i18n IDN DHCP DHCPv6 no-Lua TFTP
conntrack ipset auth DNSSEC loop-detect inotify
(unbound alpine binary)
Version 1.7.0
linked libs: libevent 2.1.8-stable (it uses epoll), LibreSSL 2.7.2
linked modules: dns64 respip validator iterator
(unbound debian binary)
Version 1.6.0
linked libs: libevent 2.0.21-stable (it uses epoll), OpenSSL 1.1.0f 25 May
2017
linked modules: dns64 python validator iterator
tl:dr;
I got everything working, needed to adjust the other software
package.. dnsmasq was just fine.
Hey,
I encountered a similar issue with Alpine virtual 32bit VM.
I verified that on Debian and Ubuntu when I compile 2.79 (both 64bit) it
works fine.
Let me know if you find something.
Eliezer
----
Eliezer Croitoru
Linux System Administrator
Mobile: +972-5-28704261
-----Original Message-----
On Behalf Of Simon Kelley
Sent: Tuesday, April 24, 2018 00:26
Subject: Re: [Dnsmasq-discuss] 2.79 Always return a SERVFAIL
Can you query dnsmasq version 2.78 (works) and 2.79 (doesn't work) using
dig, and post the results here. There must be a difference between the two
replies which is provoking the problem.
Cheers,
Simon.
Dnsmasq-discuss mailing list
http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss
_______________________________________________
Dnsmasq-discuss mailing list
http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss
--I encountered a similar issue with Alpine virtual 32bit VM.
I verified that on Debian and Ubuntu when I compile 2.79 (both 64bit) it
works fine.
Let me know if you find something.
Eliezer
----
Eliezer Croitoru
Linux System Administrator
Mobile: +972-5-28704261
-----Original Message-----
On Behalf Of Simon Kelley
Sent: Tuesday, April 24, 2018 00:26
Subject: Re: [Dnsmasq-discuss] 2.79 Always return a SERVFAIL
Can you query dnsmasq version 2.78 (works) and 2.79 (doesn't work) using
dig, and post the results here. There must be a difference between the two
replies which is provoking the problem.
Cheers,
Simon.
Was running a 2.76 machine (debian) made a new machine with 2.79
(alpine).
this dnsmasq machine is providing dhcp and dns for those dhcp entries
and other statically configured entries.
the staff is talking to this machine via unbound - I can get graphs
with unbound.
local-zone: "pcsd." transparent
name: "pcsd"
stub-addr: 172.16.254.241
254.241 is the dnsmasq machine. with 2.79 dnsmasq serves SERVFAIL with
2.76 it does not.
conf-file=/etc/dnsmasq.d/dnsmasq.dhcp
conf-file=/etc/dnsmasq.d/dnsmasq.hosts
addn-hosts=/etc/dnsmasq.d/hosts
bind-interfaces
listen-address=127.0.0.1
listen-address=172.16.254.241
port=53
log-facility=/var/log/dnsmasq.log
log-queries
local-ttl=300
dns-forward-max=8192
cache-size=0
user=dnsmasq
group=nogroup
no-hosts
no-negcache
no-poll
no-resolv
server=10.20.0.55
domain=default.pcsd
# vi:syntax=dnsmasq
local=/pcsd/
local=/20.10.in-addr.arpa/
addn-hosts=/etc/dnsmasq.d/hosts
10.20.8.29 server.intdom.pcsd
Again with 2.76 dnsmasq will serve 'server.intdom.pcsd' with 2.79 it
returns SERVFAIL from unbound but works with directly queried..
Am I trying to do a recursive query with unbound?
Or is dnsmasq not set as authoritative?
Or am I missing something else?
I have since put 2.78 on alpine and things are working as expected.
Thanks in advance.
This message may contain confidential information and is intended only
for the individual(s) named. If you are not an intended recipient you
are not authorized to disseminate, distribute or copy this e-mail.
Please notify the sender immediately if you have received this e-mail
by mistake and delete this e-mail from your system.
_______________________________________________
Dnsmasq-discuss mailing list
http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss
_______________________________________________(alpine).
this dnsmasq machine is providing dhcp and dns for those dhcp entries
and other statically configured entries.
the staff is talking to this machine via unbound - I can get graphs
with unbound.
local-zone: "pcsd." transparent
name: "pcsd"
stub-addr: 172.16.254.241
254.241 is the dnsmasq machine. with 2.79 dnsmasq serves SERVFAIL with
2.76 it does not.
conf-file=/etc/dnsmasq.d/dnsmasq.dhcp
conf-file=/etc/dnsmasq.d/dnsmasq.hosts
addn-hosts=/etc/dnsmasq.d/hosts
bind-interfaces
listen-address=127.0.0.1
listen-address=172.16.254.241
port=53
log-facility=/var/log/dnsmasq.log
log-queries
local-ttl=300
dns-forward-max=8192
cache-size=0
user=dnsmasq
group=nogroup
no-hosts
no-negcache
no-poll
no-resolv
server=10.20.0.55
domain=default.pcsd
# vi:syntax=dnsmasq
local=/pcsd/
local=/20.10.in-addr.arpa/
addn-hosts=/etc/dnsmasq.d/hosts
10.20.8.29 server.intdom.pcsd
Again with 2.76 dnsmasq will serve 'server.intdom.pcsd' with 2.79 it
returns SERVFAIL from unbound but works with directly queried..
Am I trying to do a recursive query with unbound?
Or is dnsmasq not set as authoritative?
Or am I missing something else?
I have since put 2.78 on alpine and things are working as expected.
Thanks in advance.
This message may contain confidential information and is intended only
for the individual(s) named. If you are not an intended recipient you
are not authorized to disseminate, distribute or copy this e-mail.
Please notify the sender immediately if you have received this e-mail
by mistake and delete this e-mail from your system.
_______________________________________________
Dnsmasq-discuss mailing list
http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss
Dnsmasq-discuss mailing list
http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss
_______________________________________________
Dnsmasq-discuss mailing list
http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss
Network Analyst
Poughkeepsie City School District
SMS & Mobile: (202) 810-5827
twitter.com/bcookatpcsd
If you can't explain it simply, you don't understand it well enough.
--
This message may contain confidential information and is intended only for
the individual(s) named. If you are not an intended recipient you are not
authorized to disseminate, distribute or copy this e-mail. Please notify
the sender immediately if you have received this e-mail by mistake and
delete this e-mail from your system.
This message may contain confidential information and is intended only for
the individual(s) named. If you are not an intended recipient you are not
authorized to disseminate, distribute or copy this e-mail. Please notify
the sender immediately if you have received this e-mail by mistake and
delete this e-mail from your system.