<!DOCTYPE html>
<html>
  <head>
    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
  </head>
  <body>
    <p>Please use home.arpa, as defined by RFC 8375. Or better use
      existing and registered domain of you or your organization.</p>
    <p>What kind of resolver is running on DNS server? Which version?</p>
    <p>I would guess dnsmasq or similar. That is willing and able to
      forward just queries of selected types, while answering others
      itself. I think any proper DNS server does organize its
      authoritative zones and will answer with AA for any answer from
      it.</p>
    <p>Are you sure you are asking correct server? Have you tried dig
      @172.16.0.254 pc1.reseau1.lan ?</p>
    <p>I would guess you have systemd-resolved running on pc1 and it
      answers just A type queries itself, but forwards SOA and NS
      queries.</p>
    <p>Cheers,<br>
      Petr<br>
    </p>
    <div class="moz-cite-prefix">On 14. 01. 24 23:04, Michel Diemer via
      bind-users wrote:<br>
    </div>
    <blockquote type="cite"
cite="mid:673212402.2697694.1705269854860@wlpnf0216.sys.meshcore.net">
      <meta http-equiv="content-type" content="text/html; charset=UTF-8">
      <div style=""><font face="Arial, Helvetica, sans-serif"><span
            style="font-size:12px">‌Ders bind users,</span></font><br>
        <br>
        <font face="Arial, Helvetica, sans-serif"><span
            style="font-size:12px">I have already asked a similar
            question which was more about DNS in general , this one is
            very specific about the AA bit.<br>
            <br>
            Today's question is : <span
              style="font-family:arial,helvetica,sans-serif"><span
                style="display:inline-block"><strong>« <span
                    style="display:inline-block"><span
                      style="display:inline-block"><span
                        style="display:inline-block"><span
                          style="display:inline-block">"dig
                          pc1.reseau1.lan ns"</span></span></span></span></strong></span></span></span></font><span
          style="font-family:arial,helvetica,sans-serif"><span
            style="display:inline-block; font-size:12px"><strong><span
                style="display:inline-block"><span
                  style="display:inline-block"><span
                    style="display:inline-block"><span
                      style="display:inline-block"><strong
style="font-family:arial,helvetica,sans-serif; font-size:12px"><span
                          style="display:inline-block"> show AUTHORITY:
                          1 and "</span></strong><strong
                        style="font-family:arial,helvetica,sans-serif"><span
                          style="display:inline-block">dig
                          pc1.reseau1.lan" shows AUTHORITY: 0. Which
                          setting or knowledge am I missing</span></strong></span></span></span><strong
style="font-family:arial,helvetica,sans-serif; font-size:12px"><span
                    style="display:inline-block"> ? If possible, how to
                    get AA answers for QNAME queries ? »</span></strong></span></strong></span></span><br>
        <br>
        <font face="Arial, Helvetica, sans-serif"><span
            style="font-size:12px">I have set up two virtual machines on
            a virtual local network using Oracle VirtualBox. One machine
            is a DNS authoritative-only server. </span></font><font
          face="Arial, Helvetica, sans-serif"><span
            style="font-size:12px">The zone is named "reseau1.lan"
            and defined only in bind9 zone files. If I really have to, I
            will name it "reseau1.home.arpa" according to RFC 8375. (I
            chose .lan inspired by RFC 6762 appendix G). The IP address
            of the DNS server is 172.16.0.254 and the IP address of pc1
            is 172.16.0.21.</span></font><br>
        <br>
        <br>
        <span
style="display:inline-block; font-family:arial,helvetica,sans-serif; font-size:14px"><span
            style="display:inline-block"><strong><span
                style="font-family:courier new,courier,monospace">dig
                soa reseau1.lan</span></strong></span></span><font
          face="Arial, Helvetica, sans-serif"><span
            style="font-size:12px"> : </span></font><span
style="color:rgb(0, 128, 0); font-family:arial,helvetica,sans-serif; font-size:12px">the
          AA bit is set</span><font face="Arial, Helvetica, sans-serif"><span
            style="font-size:12px">, which is what I am looking for</span></font><br>
        <br>
        <font face="Arial, Helvetica, sans-serif"><span
            style="font-size:12px"><img class="embedded-image"
              data-file-size="7 Ko" id="loadimage5400853000000119"
              src="cid:part1.S0HOdumH.qUM85LGa@redhat.com"><span
              style="text-decoration:none">͏‌ </span><span
              style="text-decoration:none">͏‌ </span></span></font><span
style="font-family:arial,helvetica,sans-serif; font-size:12px; text-decoration:none">͏‌ </span><br>
        <br>
        <strong
          style="font-family:arial,helvetica,sans-serif; font-size:12px"><span
            style="font-family:courier new,courier,monospace"><span
              style="display:inline-block; font-size:14px"> dig
              pc1.reseau1.lan ns</span></span></strong><font
          face="Arial, Helvetica, sans-serif"><span
            style="font-size:12px"> : </span></font><span
style="color:rgb(0, 128, 0); font-family:arial,helvetica,sans-serif; font-size:12px"> the
          AA bit is set</span><br>
        <br>
        <font face="Arial, Helvetica, sans-serif"><span
            style="font-size:12px"><img class="embedded-image"
              data-file-size="7 Ko" id="loadimage6206303000000119"
              src="cid:part2.bcBUDFeV.kz2ubcPg@redhat.com"><span
              style="text-decoration:none">͏‌ </span><span
              style="text-decoration:none">͏‌ </span><span
              style="text-decoration:none">͏‌ </span>͏‌ </span></font><br>
        <br>
        <strong
style="font-family:arial,helvetica,sans-serif; font-size:12px; text-decoration-line:none"><span
            style="display:inline-block; font-size:14px"><span
              style="font-family:courier new,courier,monospace">dig
              pc1.reseau1.lan</span></span></strong><font
          face="Arial, Helvetica, sans-serif"><span
            style="font-size:12px"> : </span></font><span
          style="display:inline-block"><u><strong
style="color:rgb(255, 140, 0); font-family:arial,helvetica,sans-serif; font-size:16px; text-decoration-line:none">the
              AA bit is not set. Why ? Which setting or knowledge am I
              missing ?</strong></u></span><br>
        <br>
        <font face="Arial, Helvetica, sans-serif"><span
            style="font-size:12px"><img class="embedded-image"
              data-file-size="11 Ko" id="loadimage8504625"
              src="cid:part3.On9wHSvK.xMdxDN9L@redhat.com"><br>
            <br>
            Below my "named.conf.options" file<br>
            <br>
            <img class="embedded-image" data-file-size="8 Ko"
              id="loadimage13119901000000238"
              src="cid:part4.P90doZig.7szOU0DW@redhat.com"><span
              style="text-decoration:none">͏‌ </span><br>
            <br>
            <br>
            <span style="text-decoration:none">͏‌ </span><span
              style="text-decoration:none">͏‌ </span><span
              style="text-decoration:none">͏‌ </span></span></font><span
style="font-family:arial,helvetica,sans-serif; font-size:12px; text-decoration:none">͏‌ </span></div>
      <br>
      <fieldset class="moz-mime-attachment-header"></fieldset>
    </blockquote>
    <pre class="moz-signature" cols="72">-- 
Petr Menšík
Software Engineer, RHEL
Red Hat, <a class="moz-txt-link-freetext" href="http://www.redhat.com/">http://www.redhat.com/</a>
PGP: DFCF908DB7C87E8E529925BC4931CA5B6C9FC5CB</pre>
  </body>
</html>