[dns-operations] Adding CNAME for the root domain issue

Fred Morris m3047 at m3047.net
Sat Apr 30 00:57:59 UTC 2016


On Fri, 29 Apr 2016, Paul Vixie wrote:>
> Fred Morris wrote:
> > So in our last installment, it was seen that a CNAME for a "zone apex" looks
> > ok (returns SOA, NS, MX, etc) ...
>
> no.

Yes. Yes it does Paul, with BIND. If you flush the cache first. If you
look closely, you see that the rname in the SOA record doesn't match the
domain you queried for.

--

Fred

--

m3047 at sophia:~> dig foo.m3047 soa

; <<>> DiG 9.9.4-rpz2.13269.14-P2 <<>> foo.m3047 soa
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 16568
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 1, ADDITIONAL: 2

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;foo.m3047.			IN	SOA

;; ANSWER SECTION:
foo.m3047.		600	IN	CNAME	BAR.m3047.
BAR.m3047.		600	IN	SOA	HERA.m3047.
M3047.M3047.NET. 120417016 600 60 86400 600

;; AUTHORITY SECTION:
BAR.m3047.		600	IN	NS	HERA.m3047.

;; ADDITIONAL SECTION:
HERA.m3047.		600	IN	A	10.0.0.221

;; Query time: 5 msec
;; SERVER: 10.0.0.220#53(10.0.0.220)
;; WHEN: Fri Apr 29 18:54:47 PDT 2016
;; MSG SIZE  rcvd: 142




More information about the dns-operations mailing list