BIND 8.4.3 not honoring forward-only?
Mark_Andrews at isc.org
Mark_Andrews at isc.org
Mon Dec 1 20:02:14 UTC 2003
> Hello,
>
> after upgrading to 8.4.3 on a nameserver configured with "forward only" and
> a one element forwarders list, I see DNS queries originating from this
> named process being directed to "the outside", i.e. elsewhere but that
> forwarder. Queries are of QTYPE AAAA and seem to be sysqueries.
> The forwarder has to respond SERVFAIL because the zone in question is
> delegated to two nameservers, one of which doesn't exist. The other one
> doesn't respond. {details withheld to protect the queried for party}
>
> So, is bypassing the forwarder an intended 'last resort' kind of thing?
>
> -Peter
>
Oversite in this change.
1562. [bug] handle non-responsive servers better.
Index: src/bin/named/ns_forw.c
===================================================================
RCS file: /proj/cvs/isc/bind8/src/bin/named/ns_forw.c,v
retrieving revision 8.104
diff -u -r8.104 ns_forw.c
--- src/bin/named/ns_forw.c 29 Nov 2003 03:46:48 -0000 8.104
+++ src/bin/named/ns_forw.c 1 Dec 2003 20:01:28 -0000
@@ -1154,6 +1154,9 @@
if ((qp->q_flags & Q_PRIMING) != 0)
goto fail;
+ if (NS_ZOPTION_P(qp->q_fzone, OPTION_FORWARD_ONLY))
+ goto fail;
+
ns_freeqns(qp); /* XXXMPA */
qp->q_naddr = 0;
--
Mark Andrews, Internet Software Consortium
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark.Andrews at isc.org
More information about the bind-workers
mailing list