Skip to content

Instantly share code, notes, and snippets.

@jpmens

jpmens/knot-SOA-expire.md Secret

Created January 13, 2022 17:07
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save jpmens/ac3e03cac2041170539b1a892125802a to your computer and use it in GitHub Desktop.
Save jpmens/ac3e03cac2041170539b1a892125802a to your computer and use it in GitHub Desktop.
Download ZIP
Raw
knot-SOA-expire.md

knot.conf

server:
    rundir: "/run/knot"
    user: knot:knot
    nsid: "knot100b"
    listen: [ 127.0.0.1@53, ::1@53,  142.93.164.149@53  ]

log:
  - target: /var/log/knot
    any: debug

database:
    storage: "/var/lib/knot"

remote:
  - id: primary
    address: 137.184.55.191@53

acl:
template:
  - id: default
    storage: "/var/lib/knot"
    file: "%s.zone"

zone:
  - domain: a1.dnslab.org
    master: primary

query

; <<>> DiG 9.16.22 <<>> @142.93.164.149 a1.dnslab.org +multi +norec +nsid
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 10331
;; flags: qr aa; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; NSID: 6b 6e 6f 74 31 30 30 62 ("knot100b")
;; QUESTION SECTION:
;a1.dnslab.org.		IN A

;; AUTHORITY SECTION:
a1.dnslab.org.		30 IN SOA mname.a1.dnslab.org. jp.a1.dnslab.org. (
				5          ; serial
				180        ; refresh (3 minutes)
				60         ; retry (1 minute)
				497        ; expire (8 minutes 17 seconds)
				30         ; minimum (30 seconds)
				)

;; Query time: 17 msec
;; SERVER: 142.93.164.149#53(142.93.164.149)
;; WHEN: Thu Jan 13 16:43:14 UTC 2022
;; MSG SIZE  rcvd: 99

logfile

2022-01-13T16:41:12+0000 info: Knot DNS 3.1.4 starting
2022-01-13T16:41:12+0000 info: loaded configuration file '/etc/knot/knot.conf', mapsize 500 MiB
2022-01-13T16:41:12+0000 info: using UDP reuseport, incoming TCP Fast Open
2022-01-13T16:41:12+0000 info: binding to interface 127.0.0.1@53
2022-01-13T16:41:12+0000 info: binding to interface ::1@53
2022-01-13T16:41:12+0000 info: binding to interface 142.93.164.149@53
2022-01-13T16:41:12+0000 info: changing GID to 986
2022-01-13T16:41:12+0000 info: changing UID to 989
2022-01-13T16:41:12+0000 info: process not allowed to set capabilities, skipping
2022-01-13T16:41:12+0000 info: loading 1 zones
2022-01-13T16:41:12+0000 info: [a1.dnslab.org.] zone will be loaded
2022-01-13T16:41:12+0000 info: starting server
2022-01-13T16:41:12+0000 info: [a1.dnslab.org.] failed to parse zone file (not exists)
2022-01-13T16:41:12+0000 info: [a1.dnslab.org.] zone will be bootstrapped
2022-01-13T16:41:12+0000 info: server started in the foreground, PID 45756
2022-01-13T16:41:12+0000 info: control, binding to '/run/knot/knot.sock'
2022-01-13T16:41:13+0000 info: [a1.dnslab.org.] AXFR, incoming, remote 137.184.55.191@53, started
2022-01-13T16:41:13+0000 info: [a1.dnslab.org.] AXFR, incoming, remote 137.184.55.191@53, finished, 0.00 seconds, 1 messages, 189 bytes
2022-01-13T16:41:13+0000 info: [a1.dnslab.org.] refresh, remote 137.184.55.191@53, zone updated, 0.20 seconds, serial none -> 5
2022-01-13T16:41:13+0000 info: [a1.dnslab.org.] zone file updated, serial 5
2022-01-13T16:44:13+0000 warning: [a1.dnslab.org.] refresh, remote 137.184.55.191@53, server responded with error 'REFUSED'
2022-01-13T16:44:13+0000 debug: [a1.dnslab.org.] refresh, remote primary, address 137.184.55.191@53, failed (not allowed)
2022-01-13T16:44:13+0000 warning: [a1.dnslab.org.] refresh, remote primary not usable
2022-01-13T16:44:13+0000 error: [a1.dnslab.org.] refresh, failed (no usable master)
2022-01-13T16:44:13+0000 error: [a1.dnslab.org.] zone event 'refresh' failed (no usable master)
2022-01-13T16:45:13+0000 warning: [a1.dnslab.org.] refresh, remote 137.184.55.191@53, server responded with error 'REFUSED'
2022-01-13T16:45:13+0000 debug: [a1.dnslab.org.] refresh, remote primary, address 137.184.55.191@53, failed (not allowed)
2022-01-13T16:45:13+0000 warning: [a1.dnslab.org.] refresh, remote primary not usable
2022-01-13T16:45:13+0000 error: [a1.dnslab.org.] refresh, failed (no usable master)
2022-01-13T16:45:13+0000 error: [a1.dnslab.org.] zone event 'refresh' failed (no usable master)
2022-01-13T16:46:13+0000 warning: [a1.dnslab.org.] refresh, remote 137.184.55.191@53, server responded with error 'REFUSED'
2022-01-13T16:46:13+0000 debug: [a1.dnslab.org.] refresh, remote primary, address 137.184.55.191@53, failed (not allowed)
2022-01-13T16:46:13+0000 warning: [a1.dnslab.org.] refresh, remote primary not usable
2022-01-13T16:46:13+0000 error: [a1.dnslab.org.] refresh, failed (no usable master)
2022-01-13T16:46:13+0000 error: [a1.dnslab.org.] zone event 'refresh' failed (no usable master)
2022-01-13T16:47:13+0000 warning: [a1.dnslab.org.] refresh, remote 137.184.55.191@53, server responded with error 'REFUSED'
2022-01-13T16:47:13+0000 debug: [a1.dnslab.org.] refresh, remote primary, address 137.184.55.191@53, failed (not allowed)
2022-01-13T16:47:13+0000 warning: [a1.dnslab.org.] refresh, remote primary not usable
2022-01-13T16:47:13+0000 error: [a1.dnslab.org.] refresh, failed (no usable master)
2022-01-13T16:47:13+0000 error: [a1.dnslab.org.] zone event 'refresh' failed (no usable master)
2022-01-13T16:48:14+0000 warning: [a1.dnslab.org.] refresh, remote 137.184.55.191@53, server responded with error 'REFUSED'
2022-01-13T16:48:14+0000 debug: [a1.dnslab.org.] refresh, remote primary, address 137.184.55.191@53, failed (not allowed)
2022-01-13T16:48:14+0000 warning: [a1.dnslab.org.] refresh, remote primary not usable
2022-01-13T16:48:14+0000 error: [a1.dnslab.org.] refresh, failed (no usable master)
2022-01-13T16:48:14+0000 error: [a1.dnslab.org.] zone event 'refresh' failed (no usable master)
2022-01-13T16:49:14+0000 warning: [a1.dnslab.org.] refresh, remote 137.184.55.191@53, server responded with error 'REFUSED'
2022-01-13T16:49:14+0000 debug: [a1.dnslab.org.] refresh, remote primary, address 137.184.55.191@53, failed (not allowed)
2022-01-13T16:49:14+0000 warning: [a1.dnslab.org.] refresh, remote primary not usable
2022-01-13T16:49:14+0000 error: [a1.dnslab.org.] refresh, failed (no usable master)
2022-01-13T16:49:14+0000 error: [a1.dnslab.org.] zone event 'refresh' failed (no usable master)
2022-01-13T16:49:30+0000 info: [a1.dnslab.org.] zone expired
2022-01-13T16:49:30+0000 warning: [a1.dnslab.org.] AXFR, incoming, remote 137.184.55.191@53, server responded with error 'NOTAUTH'
2022-01-13T16:49:30+0000 debug: [a1.dnslab.org.] refresh, remote primary, address 137.184.55.191@53, failed (not allowed)
2022-01-13T16:49:30+0000 warning: [a1.dnslab.org.] refresh, remote primary not usable
2022-01-13T16:49:30+0000 error: [a1.dnslab.org.] refresh, failed (no usable master)
2022-01-13T16:49:30+0000 error: [a1.dnslab.org.] zone event 'refresh' failed (no usable master)
2022-01-13T16:49:48+0000 warning: [a1.dnslab.org.] AXFR, incoming, remote 137.184.55.191@53, server responded with error 'NOTAUTH'
2022-01-13T16:49:48+0000 debug: [a1.dnslab.org.] refresh, remote primary, address 137.184.55.191@53, failed (not allowed)
2022-01-13T16:49:48+0000 warning: [a1.dnslab.org.] refresh, remote primary not usable
2022-01-13T16:49:48+0000 error: [a1.dnslab.org.] refresh, failed (no usable master)
2022-01-13T16:49:48+0000 error: [a1.dnslab.org.] zone event 'refresh' failed (no usable master)
2022-01-13T16:50:31+0000 warning: [a1.dnslab.org.] AXFR, incoming, remote 137.184.55.191@53, server responded with error 'NOTAUTH'
2022-01-13T16:50:31+0000 debug: [a1.dnslab.org.] refresh, remote primary, address 137.184.55.191@53, failed (not allowed)
2022-01-13T16:50:31+0000 warning: [a1.dnslab.org.] refresh, remote primary not usable
2022-01-13T16:50:31+0000 error: [a1.dnslab.org.] refresh, failed (no usable master)
2022-01-13T16:50:31+0000 error: [a1.dnslab.org.] zone event 'refresh' failed (no usable master)
2022-01-13T16:52:45+0000 warning: [a1.dnslab.org.] AXFR, incoming, remote 137.184.55.191@53, server responded with error 'NOTAUTH'
2022-01-13T16:52:45+0000 debug: [a1.dnslab.org.] refresh, remote primary, address 137.184.55.191@53, failed (not allowed)
2022-01-13T16:52:45+0000 warning: [a1.dnslab.org.] refresh, remote primary not usable
2022-01-13T16:52:45+0000 error: [a1.dnslab.org.] refresh, failed (no usable master)
2022-01-13T16:52:45+0000 error: [a1.dnslab.org.] zone event 'refresh' failed (no usable master)
2022-01-13T16:59:17+0000 warning: [a1.dnslab.org.] AXFR, incoming, remote 137.184.55.191@53, server responded with error 'NOTAUTH'
2022-01-13T16:59:17+0000 debug: [a1.dnslab.org.] refresh, remote primary, address 137.184.55.191@53, failed (not allowed)
2022-01-13T16:59:17+0000 warning: [a1.dnslab.org.] refresh, remote primary not usable
2022-01-13T16:59:17+0000 error: [a1.dnslab.org.] refresh, failed (no usable master)
2022-01-13T16:59:17+0000 error: [a1.dnslab.org.] zone event 'refresh' failed (no usable master)
2022-01-13T17:05:39+0000 info: control, received command 'stop'
2022-01-13T17:05:39+0000 info: stopping server
2022-01-13T17:05:39+0000 info: updating persistent timer DB
2022-01-13T17:05:39+0000 info: shutting down

query after zone expires

; <<>> DiG 9.16.22 <<>> @142.93.164.149 a1.dnslab.org +multi +norec +nsid
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 25875
;; flags: qr; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; NSID: 6b 6e 6f 74 31 30 30 62 ("knot100b")
; EDE: 24 (Invalid Data)
;; QUESTION SECTION:
;a1.dnslab.org.		IN A

;; Query time: 15 msec
;; SERVER: 142.93.164.149#53(142.93.164.149)
;; WHEN: Thu Jan 13 17:05:10 UTC 2022
;; MSG SIZE  rcvd: 60
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment