[dns-operations] issues about L and H root-servers missing hints
Mark Andrews
marka at isc.org
Tue Jul 4 00:16:12 UTC 2017
In message <CAHw9_iKHn6=Kuim=511SbX0zT=OtbUNeC7gR2h37wJatxhSiNQ at mail.gmail.com>
, Warren Kumari writes:
> On Mon, Jul 3, 2017 at 12:09 PM, Paul Hoffman <phoffman at proper.com> wrote:
> > A note to the developers of BIND (and any other resolvers who have similar
> > warning messages):
> >
> > On 3 Jul 2017, at 8:19, Eduardo Romero Urra wrote:
> >
> >> Issues received last 15 minutes about hints missing on L and H
> >> root-servers:
> >>
> >> Jul 3 11:10:06 ns1 named[27878]: checkhints: h.root-servers.net/A
> >> (198.97.190.53) missing from hints
> >> Jul 3 11:10:06 ns1 named[27878]: checkhints: h.root-servers.net/A
> >> (128.63.2.53) extra record in hints
> >> Jul 3 11:10:06 ns1 named[27878]: checkhints: h.root-servers.net/AAAA
> >> (2001:500:1::53) missing from hints
> >> Jul 3 11:10:06 ns1 named[27878]: checkhints: h.root-servers.net/AAAA
> >> (2001:500:1::803f:235) extra record in hints
> >> Jul 3 11:10:06 ns1 named[27878]: checkhints: l.root-servers.net/AAAA
> >> (2001:500:9f::42) missing from hints
> >> Jul 3 11:10:06 ns1 named[27878]: checkhints: l.root-servers.net/AAAA
> >> (2001:500:3::42) extra record in hints
> >> Jul 3 11:10:09 ns1 named[27878]: checkhints: h.root-servers.net/A
> >> (198.97.190.53) missing from hints
> >> Jul 3 11:10:09 ns1 named[27878]: checkhints: h.root-servers.net/A
> >> (128.63.2.53) extra record in hints
> >> Jul 3 11:10:09 ns1 named[27878]: checkhints: h.root-servers.net/AAAA
> >> (2001:500:1::53) missing from hints
> >> Jul 3 11:10:09 ns1 named[27878]: checkhints: h.root-servers.net/AAAA
> >> (2001:500:1::803f:235) extra record in hints
> >> Jul 3 11:10:09 ns1 named[27878]: checkhints: l.root-servers.net/AAAA
> >> (2001:500:9f::42) missing from hints
> >> Jul 3 11:10:09 ns1 named[27878]: checkhints: l.root-servers.net/AAAA
> >> (2001:500:3::42) extra record in hints
> >
> >
> > A more useful warning message might be:
> >
> > checkhints: l.root-servers.net/AAAA (2001:500:9f::42) missing from hints;
> > update your hints file (see <some url goes here>)
> > checkhints: l.root-servers.net/AAAA (2001:500:3::42) extra record in hints;
> > update your hints file (see <some url goes here>)
> >
>
> Or, perhaps:
> checkhints: l.root-servers.net/AAAA (2001:500:9f::42) missing from
> hints; delete your hints file, it is now baked into BIND.
> checkhints: l.root-servers.net/AAAA (2001:500:3::42) extra record in
> hints; delete your hints file, it is now baked into BIND.
Actually this would be a bad idea. Even baked in hints go stale.
Also named is used in private networks where the hints file is not
that on the Internet.
Googling for "extra record in hints" gets
https://www.isc.org/blogs/h-root-will-change-its-addresses-on-1-december-2015-what-does-this-mean-for-you/
as the first hit.
I'm also at a loss for why this was raise in the first place? The messages
say "extra record in hints" and "missing from hints". "Missing from hints"
was understood and then there was a "compliant" that there were addresses
listed that where not in https://www.internic.net/domain/named.root despite
them being logged as "extra record in hints".
Mark
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: marka at isc.org
More information about the dns-operations
mailing list