[dns-operations] Firewall defaults and EDNS
Mark Andrews
marka at isc.org
Thu Nov 20 04:16:05 UTC 2014
If you are running a firewall in front of your nameserver
and it is blocking EDNS Verion 1 queries or EDNS queries
with flag bits set or EDNS queries with unknown options by
default could you send the vendor and release image so I
can generate a list of broken by default for EDNS firewalls.
dig +edns=1 $zone @$server
dig +ednsopt=100 $zone @$server [1]
dig +ednsflags=0x40 $zone @$server [1]
Mark
[1] Requires dig from BIND 9.11 available in the master branch
at source.isc.org
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: marka at isc.org
More information about the dns-operations
mailing list