-
-
Save andir/f0db4f25e3ca278e2986163795ffb28c to your computer and use it in GitHub Desktop.
kresd .cz issue
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Dec 20 13:33:10 foo kresd[19123]: [plan] plan 'deb.knot-dns.cz.' type 'A' | |
Dec 20 13:33:10 foo kresd[19123]: [resl] => querying: '2001:678:f::1' score: 11 zone cut: 'cz.' m12n: 'kNOT-DnS.CZ.' type: 'NS' proto: 'udp' | |
Dec 20 13:33:10 foo kresd[19123]: [iter] <= rcode: NXDOMAIN | |
Dec 20 13:33:10 foo kresd[19123]: [iter] <= found cut, retrying with non-minimized name | |
Dec 20 13:33:10 foo kresd[19123]: [ pc ] => answer cached for TTL=60 | |
Dec 20 13:35:03 foo kresd[19530]: [plan] plan 'deb.knot-dns.cz.' type 'A' | |
Dec 20 13:35:03 foo kresd[19530]: [ rc ] => satisfied from cache | |
Dec 20 13:35:03 foo kresd[19530]: [iter] <= rcode: NOERROR | |
Dec 20 13:35:03 foo kresd[19530]: [iter] <= cname chain, following | |
Dec 20 13:35:03 foo kresd[19530]: [plan] plan 'howl.labs.nic.cz.' type 'A' | |
Dec 20 13:35:03 foo kresd[19530]: [vldr] <= answer valid, OK | |
Dec 20 13:35:03 foo kresd[19530]: [ rc ] => satisfied from cache | |
Dec 20 13:35:03 foo kresd[19530]: [iter] <= rcode: NOERROR | |
Dec 20 13:35:03 foo kresd[19530]: [vldr] <= answer valid, OK | |
Dec 20 13:48:33 foo kresd[21244]: [plan] plan 'deb.knot-dns.cz.' type 'AAAA' | |
Dec 20 13:48:33 foo kresd[21244]: [ rc ] => satisfied from cache | |
Dec 20 13:48:33 foo kresd[21244]: [iter] <= rcode: NOERROR | |
Dec 20 13:48:33 foo kresd[21244]: [iter] <= cname chain, following | |
Dec 20 13:48:33 foo kresd[21244]: [plan] plan 'howl.labs.nic.cz.' type 'AAAA' | |
Dec 20 13:48:33 foo kresd[21244]: [resl] => querying: '2001:678:1::1' score: 10 zone cut: 'nic.cz.' m12n: 'HOwl.lAbs.NiC.cZ.' type: 'AAAA' proto: 'udp' | |
Dec 20 13:48:33 foo kresd[21244]: [iter] <= rcode: NOERROR | |
Dec 20 13:48:33 foo kresd[21244]: [vldr] <= answer valid, OK | |
Dec 20 13:48:33 foo kresd[21244]: [ pc ] => answer cached for TTL=600 | |
Dec 20 13:48:33 foo kresd[21244]: [resl] <= server: '2001:67c:1010:32::53' rtt: 1 ms | |
Dec 20 13:48:33 foo kresd[21244]: [resl] finished: 4, queries: 1, mempool: 16400 B | |
Dec 20 13:48:33 foo kresd[21244]: [iter] <= rcode: NOERROR | |
Dec 20 13:48:33 foo kresd[21244]: [vldr] <= answer valid, OK | |
Dec 20 13:48:33 foo kresd[21244]: [resl] <= server: '2001:67c:10b8::100' rtt: 1 ms | |
Dec 20 13:48:33 foo kresd[21244]: [resl] finished: 4, queries: 1, mempool: 32800 B | |
Dec 20 13:48:33 foo kresd[21244]: [iter] <= rcode: NOERROR | |
Dec 20 13:48:33 foo kresd[21244]: [vldr] <= answer valid, OK | |
Dec 20 13:48:33 foo kresd[21244]: [resl] <= server: '2001:67c:10b8::100' rtt: 1 ms | |
Dec 20 13:48:33 foo kresd[21244]: [resl] finished: 4, queries: 1, mempool: 32800 B | |
Dec 20 13:58:59 foo kresd[21244]: [plan] plan 'deb.knot-dns.cz.' type 'A' | |
Dec 20 13:58:59 foo kresd[21244]: [ rc ] => satisfied from cache | |
Dec 20 13:58:59 foo kresd[21244]: [iter] <= rcode: NOERROR | |
Dec 20 13:58:59 foo kresd[21244]: [iter] <= cname chain, following | |
Dec 20 13:58:59 foo kresd[21244]: [plan] plan 'howl.labs.nic.cz.' type 'A' | |
Dec 20 13:58:59 foo kresd[21244]: [ rc ] => satisfied from cache | |
Dec 20 13:58:59 foo kresd[21244]: [iter] <= rcode: NOERROR | |
Dec 20 13:58:59 foo kresd[21244]: [plan] plan 'deb.knot-dns.cz.' type 'AAAA' | |
Dec 20 13:58:59 foo kresd[21244]: [ rc ] => satisfied from cache | |
Dec 20 13:58:59 foo kresd[21244]: [iter] <= rcode: NOERROR | |
Dec 20 13:58:59 foo kresd[21244]: [iter] <= cname chain, following | |
Dec 20 13:58:59 foo kresd[21244]: [plan] plan 'howl.labs.nic.cz.' type 'AAAA' | |
Dec 20 13:58:59 foo kresd[21244]: [ rc ] => satisfied from cache | |
Dec 20 13:58:59 foo kresd[21244]: [iter] <= rcode: NOERROR | |
Dec 20 14:13:54 foo kresd[21244]: [plan] plan 'deb.knot-dns.cz.' type 'A' | |
Dec 20 14:13:54 foo kresd[21244]: [resl] => NS is provably without DS, going insecure | |
Dec 20 14:13:54 foo kresd[21244]: [resl] => querying: '54.72.8.183' score: 22 zone cut: 'cz.' m12n: 'kNOt-dNS.cz.' type: 'NS' proto: 'udp' |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# cat /etc/knot-resolver/kresd.conf | |
-- Default empty Knot DNS Resolver configuration in -*- lua -*- | |
-- Bind ports as privileged user (root) -- | |
-- We are using systemd socket activation (its the default from nic.cz) | |
-- So we do not need/we can not bind here | |
-- net = { '::' } | |
-- Switch to unprivileged user -- | |
user('knot-resolver','knot-resolver') | |
-- Unprivileged | |
cache.size = 1000*MB | |
-- Load HTTP module | |
modules = { | |
http = { | |
host = 'localhost', | |
port = 8053, | |
-- geoip = 'GeoLite2-City.mmdb' -- Optional | |
}, | |
-- load prefeching module | |
predict = { | |
window = 15, -- 15 minutes sampling window | |
period = 12*(60/15) -- track last 6 hours | |
} | |
} |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment