<span style="color:rgb(34,34,34);font-family:arial,sans-serif;font-size:13px;background-color:rgb(255,255,255)">I also use loopback regularly if running a localhost resolver; in fact I use a script that goes as far as changing resolv.conf if it detects an interface address instead of loopback. [Our rules require listening on loopback minimally here]</span><div style="color:rgb(34,34,34);font-family:arial,sans-serif;font-size:13px;background-color:rgb(255,255,255)">
<br></div><div style="color:rgb(34,34,34);font-family:arial,sans-serif;font-size:13px;background-color:rgb(255,255,255)">If you do use it, I recommend you make sure you don't have "options rotate" set as that'll cause confusion as it's most likely not your intent if you're running a nameserver locally.</div>
<br><div class="gmail_quote">On Mon, Jul 23, 2012 at 5:13 PM, John Miller <span dir="ltr"><<a href="mailto:johnmill@brandeis.edu" target="_blank">johnmill@brandeis.edu</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Hey there folks,<br>
<br>
I was just going back through the good ol' cricket book, and ran into the following:<br>
<br>
"If you use multiple nameserver directives, don't use the loopback address! There's a bug in some Berkeley-derived TCP/IP implementations that can cause problems with BIND if the local nameserver is down. The resolver's connected datagram socket won't rebind to a new local address if the local nameserver isn't running, and consequently the resolver sends query packets to the fallback remote nameservers with a source address of 127.0.0.1. When the remote nameservers try to reply, they end up sending the reply packets to themselves."<br>
<br>
Given that this same text is in the fourth edition of Cricket & Paul's book as well, I'm assuming this was an old bug (pre-BIND 9) and has long since been fixed. Could someone point me to a bug report and/or changelog for this? A quick Google search for 'bind resolver source address bug' didn't yield much.<br>
<br>
John<br>
-- <br>
John Miller<br>
Systems Engineer<br>
Brandeis University<br>
<a href="tel:781-736-4619" value="+17817364619" target="_blank">781-736-4619</a><br>
<a href="mailto:johnmill@brandeis.edu" target="_blank">johnmill@brandeis.edu</a><br>
<br>
______________________________<u></u>_________________<br>
Please visit <a href="https://lists.isc.org/mailman/listinfo/bind-users" target="_blank">https://lists.isc.org/mailman/<u></u>listinfo/bind-users</a> to unsubscribe from this list<br>
<br>
bind-users mailing list<br>
<a href="mailto:bind-users@lists.isc.org" target="_blank">bind-users@lists.isc.org</a><br>
<a href="https://lists.isc.org/mailman/listinfo/bind-users" target="_blank">https://lists.isc.org/mailman/<u></u>listinfo/bind-users</a><br>
</blockquote></div><br>