[dns-operations] Reporting glue as authoritive data -- Bug!
paul at vix.com
Fri Jan 25 15:02:02 UTC 2008
> I assume the DNS implementation on ultradns is buggy.
> It respond the glue record in the answer section instead of the additional.
this is what BIND8 did. atlas also does it this way. apparently there are
a lot of monitoring stations that complain when an RFC-complaint response
(which is a referral), and ultradns and verisign don't want the complaints.
i've also heard that a number of older recursive servers (among them some
older bind8 and bind4) will just mindlessly repeat the question if they get
a referral, which mindlessly increases overall query volume to the TLD.
BIND9 does what the RFC says, and TLDs who run BIND9 don't seem bothered.
> ; <<>> DiG 9.4.2 <<>> dns1.fqdn.org @tld1.ultradns.net
> ;; flags: qr rd; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 1
> ;; QUESTION SECTION:
> ;dns1.fqdn.org. IN A
> ;; ANSWER SECTION:
> dns1.fqdn.org. 86400 IN A 126.96.36.199
> ;; AUTHORITY SECTION:
> fqdn.org. 86400 IN NS dns2.fqdn.org.
> fqdn.org. 86400 IN NS dns1.fqdn.org.
> ;; ADDITIONAL SECTION:
> dns2.fqdn.org. 86400 IN A 188.8.131.52
More information about the dns-operations