[dns-operations] Knot and NSD handling names below DNAME incorrectly

[Matthew Pounsett]

> 
>> BIND should probably exclude the occluded A record from an outgoing zone
>> transfer, as well, in order to be conservative in what it sends.
> 
> No. If you do that you break what is returned if the DNAME is removed via
> IXFR.  Slaves need to transmit the entire zone content as learnt.

Wouldn't that cause the A record to no longer be occluded, and therefore show up in the same IXFR where the DNAME is removed?