On Mon, 2005-08-22 at 12:58 -0700, Skunk Worx wrote: > Paul Howarth wrote: > > On Sun, 2005-08-21 at 16:54 -0700, Skunk Worx wrote: > > > >>My FC3 local caching DNS is placing the AUTHORITY section in the > >>responses. I think this exceeds a certain size threshold and I get this : > >> > >># dig @10.0.0.2 www.wikipedia.org > >>;; Truncated, retrying in TCP mode. > >> > >>When I go directly to my ISP's dns, it is fine, I assume because there > >>is no lengthy AUTHORITY section in their reply. > > > > > > What lengthy AUTHORITY section? I'm getting just this: > > > > ;; flags: qr rd ra; QUERY: 1, ANSWER: 8, AUTHORITY: 3, ADDITIONAL: 3 > > > > So far I always get back AUTHORITY: 13 from my local caching DNS with > lines in the form of : > > . 28240 IN NS A.ROOT-SERVERS.NET. > > If I make an empty root.hints file I get SERVFAIL. If I try trimming > down the root.hints file, or removing it, I get all 13 entries back. > > Dig'ing directly to my ISPs DNS returns AUTHORITY: 0 (no list), so the > size of the response is not big enough to trigger the glibc bug. > > I've been fooling with the root.hints, zone and conf files and reviewing > the caching DNS howto's (via google) but so far it's all or nothing (13 > AUTHORITY: entries or SERVFAIL). What's strange about this is that the AUTHORITY section should be returning the 3 wikipedia.org nameservers, not the root servers. What do you get for: $ dig www.wikipedia.org +trace $ rpm -q bind Paul. -- Paul Howarth <paul@xxxxxxxxxxxx>
