[dns-operations] OARC's DNS Reply Size Test Server is not EDNS compliant
Mark Andrews
marka at isc.org
Wed Dec 24 00:07:59 UTC 2014
In message <0E2A12FC-3B99-4486-BC89-AC12097EB93E at linkedin.com>, Franck Martin writes:
> On Dec 15, 2014, at 1:34 PM, Keith Mitchell <keith at dns-oarc.net> wrote:
>
> > On 12/14/2014 11:45 AM, Keith Mitchell wrote:
> >> On 12/13/2014 04:30 PM, Mark Andrews wrote:
> >>>
> >>> OARC's DNS Reply Size Test Server is not EDNS compliant. It does
> >>> not return a OPT record to EDNS requests. This causes named from
> >>> BIND 9.10.0 and later to classify the servers as not EDNS
> >>> compliant and to only send plain DNS queries. This in turn results
> >>> in bug reports saying we fail the test when it is the test that is
> >>> broken.
> >>
> >> We'll look into it.
> >
> > Thanks Mark for bringing this to our attention. We believe we have now
> > addressed this shortcoming, if others could test and verify that would
> > be helpful.
> >
> > The best way to report issues with OARC services is by e-mail to
> > <admin at dns-oarc.net>
> >
> I see weird results with 9.10.0 sometimes it says max EDNS is 512
> sometimes it says 4096.. Looking at the bind logs, I don't see any
> explicit downgrade or disable of EDNS for any query...
Named 9.10.0 and later uses different EDNS query sizes at different
times. Run the test several times with minute waits in between and
it will stablize with the new version.
Mark
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: marka at isc.org
More information about the dns-operations
mailing list