You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Unbound does not return the A and AAAA records for the name of the Designated Resolver in the Additional Answers section when responding to queries for resolver.arpa.
$ORIGIN resolver.arpa.$TTL 86400; Authoritative name servers for this zone_dns IN SVCB1 example.com. alpn=h2 dohpath=/dns-query{?dns}_dns IN SVCB2 example.com. alpn=dot
Query the respective SVCB records for the special resolver.arpa zone.
Observe the records being returned as expected, however, without the Additional Answers section.
When responding to these special queries for "resolver.arpa", the recursive resolver SHOULD include the A and AAAA records for the name of the Designated Resolver in the Additional Answers section.
Additionally:
If the recursive resolver that receives this query has no Designated Resolvers, it SHOULD return NODATA for queries to the "resolver.arpa" zone, to provide a consistent and accurate signal to clients that it does not have a Designated Resolver.
Instead, I get NXDOMAIN as a reply for queries that should not exist.
System:
Unbound version: 1.19.1
OS: CentOS 9 Stream
unbound -V output:
Version 1.19.1
Configure line: --sbindir=/opt/unbound/unbound-1.19.1/bin --disable-sha1 --enable-tfo-client --enable-tfo-server --with-libevent --with-libnghttp2
Linked libs: libevent 2.1.12-stable (it uses epoll), OpenSSL 3.0.7 1 Nov 2022
Linked modules: dns64 respip validator iterator
TCP Fastopen feature available
BSD licensed, see LICENSE in source package for details.
Report bugs to [email protected] or https://github.com/NLnetLabs/unbound/issues
Additional information
If this is not a bug, then let it be a feature. I tried the mailing list, but got no answer.
The text was updated successfully, but these errors were encountered:
Unbound does not return the A and AAAA records for the name of the Designated Resolver in the Additional Answers section when responding to queries for
resolver.arpa
.To reproduce
Steps to reproduce the behavior:
unbound.conf
resolver.arpa
SVCB
records for the specialresolver.arpa
zone.Expected behavior
As per the RFC 9462:
Additionally:
Instead, I get
NXDOMAIN
as a reply for queries that should not exist.System:
unbound -V
output:Additional information
If this is not a bug, then let it be a feature. I tried the mailing list, but got no answer.
The text was updated successfully, but these errors were encountered: