[prev in list] [next in list] [prev in thread] [next in thread] 

List:       bind-workers
Subject:    Possible issue with BIND 9.9.0/9.9.1
From:       "Luther, Dan" <Dan.Luther () Level3 ! com>
Date:       2012-05-31 17:46:05
Message-ID: 37812A94EF532146AE52D13A98302ABD0F1BA444 () VIDCEMBX0002 ! corp ! global ! level3 ! com
[Download RAW message or body]

Hello,

When running the BIND 9.9.1 with auto-dnssec set to maintain and inline signing, I've \
run into several instances where non-standard record types become corrupted. This is \
on a Sun T2000 server, running Solaris 10. I've tested with both BIND 9.9.1 and 9.9.0 \
with the same results.

Using this zone file:

[root@dns1] /usr/local/dns/dnssec1/zones> cat m.202.216.in-addr.arpa
; m.202.216.in-addr.arpa
$TTL  86400
@                       IN      SOA     dnssec1.Level3.net. dns.level3.net. (
                                        2012052201  ; serial
                                        3600        ; refresh
                                        900         ; retry
                                        2592000     ; expire
                                        86400  )    ; min ttl


; Authoritative Name Servers

@                       IN      NS      dnssec1.Level3.net.
@                       IN      NS      dnssec2.Level3.net.
; Deny all route announcements except those authorized. (RLOCK)
@                       IN      TYPE65400 \# 0


; 216.202.0.0/16                SRO 3356    (SRO = "Secure Route Origin")
@                       IN      TYPE65401 \# 4 00000d1c

; 216.202.124.0/23              SRO 21889   (SRO = "Secure Route Origin")

I'm specifically looking at the "TYPE65400" record above.

The configuration file looks as follows:

options {
    # General BIND control options
        notify yes;
        recursion no;
        auth-nxdomain no;
        zone-statistics yes;
        transfer-format many-answers;

    # BIND accessibility options
        allow-transfer { 209.244.127.174; localhost; };
        allow-query { any; };
        allow-query-on { any; };
        allow-query-cache { any; };
        allow-query-cache-on { any; };

    # Server identification options
        version "hostmaster@Level3.net";
        server-id "dns2.newyork1.Level3.net";
        hostname "dns2.newyork1.Level3.net";

    # Network and interface configuration options
        use-v4-udp-ports { range 8192 65535; };
        listen-on { 209.244.7.57; };
        notify-source 209.244.7.57;
        transfer-source 209.244.7.57;
        query-source address 209.244.7.57 port *;
        interface-interval 5;
        use-alt-transfer-source no;

    # File system options
        directory "/usr/local/dns/dnssec1";
        dump-file "dump";
        pid-file "pid";
        statistics-file "logs/stats";

    # DNSSEC options
        dnssec-enable yes;
        key-directory "keys";
        inline-signing yes;
        dnssec-loadkeys-interval 60;

    # Performance options
        minimal-responses yes;
        transfers-in 512;
        transfers-out 512;
        transfers-per-ns 48;
        tcp-clients 500;
        max-transfer-time-in 10;
        max-transfer-time-out 10;
        max-refresh-time 43200;
        max-retry-time 900;
        serial-query-rate 200;
        cleaning-interval 2;
        min-retry-time 15;
        max-cache-ttl 43200;
        max-cache-size 256000000;
        min-refresh-time 120;
        max-ncache-ttl 900;

};

include "/usr/local/dns/etc/bad-clients.conf";
acl query-clients {
 192.168.53.0/24;
 !bad-clients;
 any;

include "/usr/local/dns/dnssec1/conf/named.rndc";
include "/usr/local/dns/etc/named.logging.9.x";

zone "." in {
        type hint;
        file "/usr/local/dns/etc/root.cache";
};

/* ID zone */

zone "nameserver" in {
        type master;
        file "/usr/local/dns/etc/nameserver";
};

. . .

zone "m.202.216.in-addr.arpa" in {
        type master;
        file "zones/m.202.216.in-addr.arpa";
        allow-update { localhost; };
        auto-dnssec maintain;
        inline-signing yes;
        key-directory "keys";
        check-names ignore;
};

Queries for this record show an obvious corruption:

[root@dns1] /usr/local/dns/dnssec1/zones> dig @dnssec1 m.202.216.in-addr.arpa \
TYPE65400 +dnssec +multi ;; Truncated, retrying in TCP mode.

; <<>> DiG 9.9.1 <<>> @dnssec1 m.202.216.in-addr.arpa TYPE65400 +dnssec +multi
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 18188
;; flags: qr aa rd; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
;; WARNING: recursion requested but not available

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags: do; udp: 4096
;; QUESTION SECTION:
;m.202.216.in-addr.arpa.        IN TYPE65400

;; ANSWER SECTION:
m.202.216.in-addr.arpa. 86400 IN TYPE65400 \# 48830 ( \
                00000001000151800000FF7800000009000000000000
                                0000002A4D90000000000000003E0000000000000000
                                002A51A000000000FFFFFFFFFFFFFFFF000000000000
                                00000001000000000001000151800000FF7800000009
                                0000000000000000002A4C00000000000000005A0000
                                000000000000002A4F7000000000FFFFFFFFFFFFFFFF
                                000000000000000000010000002A51A0000000000000
                                00000000000000000000FFFFFFFFFFFFFFFFC00E070E
                                03124AEE002A4B100060000001300131013101310131
                                013101300700020406080A0CBEBEBEBEBEBE00000001
                                000151800000FF780000000900000000000000000036
                                2FB00000000000000091000000000000000000362E20

. . .
                                000000000000000000010029DB6000000001BEBEBEBE
                                0004000000004D580000000000000000000000000000
                                00000000000000000000000000000000000000000000
                                00000000000000000000000000000000000000000000
                                000000BE000000000000000000000000000000000000
                                00000000000000000000000000000000000000000000
                                00000000000000000000000000000000000000000000
                                00000000000000000000000000000000000000000000
                                000000000000000000000000 )
m.202.216.in-addr.arpa. 86400 IN RRSIG TYPE65400 5 5 86400 (
                                20120630132728 20120531122728 60792 \
                m.202.216.in-addr.arpa.
                                kwvclR3r1j24reESiD1oYcQ9026xjflfHrfO0/gt4beG
                                PTWssGfpT7vDnqYX3xjUgLrYaE3hxzr6wonBHwmrifyQ
                                nkgnoywE7CE+XVajB9834LCwRzbNT8UAIhL1xsDqsJlr
                                /7j4f5IiNuAnxj3kFJTFQ0dKsIBKwk64dc6DZIg= )

;; Query time: 275 msec
;; SERVER: 209.244.7.57#53(209.244.7.57)
;; WHEN: Thu May 31 17:35:20 2012
;; MSG SIZE  rcvd: 49075


The "MSG SIZE rcvd" status says it all. Additionally, I'm getting sporadic messages \
where my inline-signed zones have "No signing records found", including this one, and \
experiencing crashes when trying to transfer these zones to my secondary.

I've experienced this on several other zones, forcing me to revert to the "old \
school" method of signing zones. Has anyone experienced such an issue, and can I \
supply more information to help identify what is causing this error, and more \
importantly, how to fix it?



Dan Luther
Operations Engineer
Systems Operation Engineering
Level 3 Communications
One Technology Center, Tulsa OK 74103
p: 918-547-4370
e: dan.luther@level3.com<mailto:name.name@level3.com>


[Attachment #3 (text/html)]

<html xmlns:v="urn:schemas-microsoft-com:vml" \
xmlns:o="urn:schemas-microsoft-com:office:office" \
xmlns:w="urn:schemas-microsoft-com:office:word" \
xmlns:x="urn:schemas-microsoft-com:office:excel" \
xmlns:dt="uuid:C2F41010-65B3-11d1-A29F-00AA00C14882" \
xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" \
xmlns="http://www.w3.org/TR/REC-html40"> <head>
<meta http-equiv="Content-Type" content="text/html; charset=us-ascii">
<meta name="Generator" content="Microsoft Word 12 (filtered medium)">
<style>
<!--
 /* Font Definitions */
 @font-face
	{font-family:"Cambria Math";
	panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
	{font-family:Calibri;
	panose-1:2 15 5 2 2 2 4 3 2 4;}
 /* Style Definitions */
 p.MsoNormal, li.MsoNormal, div.MsoNormal
	{margin:0in;
	margin-bottom:.0001pt;
	font-size:11.0pt;
	font-family:"Calibri","sans-serif";}
a:link, span.MsoHyperlink
	{mso-style-priority:99;
	color:blue;
	text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
	{mso-style-priority:99;
	color:purple;
	text-decoration:underline;}
span.EmailStyle17
	{mso-style-type:personal;
	font-family:"Calibri","sans-serif";
	color:windowtext;}
span.EmailStyle18
	{mso-style-type:personal-reply;
	font-family:"Calibri","sans-serif";
	color:#1F497D;}
.MsoChpDefault
	{mso-style-type:export-only;
	font-size:10.0pt;}
@page Section1
	{size:8.5in 11.0in;
	margin:1.0in 1.0in 1.0in 1.0in;}
div.Section1
	{page:Section1;}
-->
</style><!--[if gte mso 9]><xml>
 <o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
 <o:shapelayout v:ext="edit">
  <o:idmap v:ext="edit" data="1" />
 </o:shapelayout></xml><![endif]-->
</head>
<body lang="EN-US" link="blue" vlink="purple">
<div class="Section1">
<p class="MsoNormal"><o:p>&nbsp;</o:p></p>
<p class="MsoNormal">Hello, <o:p></o:p></p>
<p class="MsoNormal"><o:p>&nbsp;</o:p></p>
<p class="MsoNormal">When running the BIND 9.9.1 with auto-dnssec set to maintain and \
inline signing, I&#8217;ve run into several instances where non-standard record types \
become corrupted. This is on a Sun T2000 server, running Solaris 10<span \
style="color:black">.  I&#8217;ve tested with both BIND 9.9.1 and 9.9.0 with the same \
results.</span><span style="color:#1F497D"> </span><o:p></o:p></p>
<p class="MsoNormal"><o:p>&nbsp;</o:p></p>
<p class="MsoNormal">Using this zone file:<o:p></o:p></p>
<p class="MsoNormal"><o:p>&nbsp;</o:p></p>
<p class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt;
font-family:&quot;Courier New&quot;">[root@dns1] /usr/local/dns/dnssec1/zones&gt; cat \
m.202.216.in-addr.arpa&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs \
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
 <o:p></o:p></span></p>
<p class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt;
font-family:&quot;Courier New&quot;">; m.202.216.in-addr.arpa<o:p></o:p></span></p>
<p class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt;
font-family:&quot;Courier New&quot;">$TTL&nbsp; 86400<o:p></o:p></span></p>
<p class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt;
font-family:&quot;Courier \
New&quot;">@&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
IN&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; SOA&nbsp;&nbsp;&nbsp;&nbsp; dnssec1.Level3.net. \
dns.level3.net. (<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
2012052201&nbsp; ; serial<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
3600&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; ; refresh<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
900&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; ; retry<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
2592000&nbsp;&nbsp;&nbsp;&nbsp; ; expire<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
86400&nbsp; )&nbsp;&nbsp;&nbsp; ; min ttl<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;"><o:p>&nbsp;</o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;"><o:p>&nbsp;</o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">; Authoritative Name Servers<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;"><o:p>&nbsp;</o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">@&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
IN&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; NS&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
dnssec1.Level3.net.<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">@&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
IN&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; NS&nbsp; \
&nbsp;&nbsp;&nbsp;&nbsp;dnssec2.Level3.net.<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;">; Deny all route announcements except those \
authorized. (RLOCK)<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">@&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
IN&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; TYPE65400 \# 0<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;"><o:p>&nbsp;</o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;"><o:p>&nbsp;</o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;">; \
216.202.0.0/16&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
SRO 3356&nbsp;&nbsp;&nbsp; (SRO = &quot;Secure Route \
Origin&quot;)<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">@&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
IN&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; TYPE65401 \# 4 00000d1c<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;"><o:p>&nbsp;</o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;">; \
216.202.124.0/23&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
SRO 21889&nbsp;&nbsp; (SRO = &quot;Secure Route Origin&quot;)<o:p></o:p></span></p> \
<p class="MsoNormal"><o:p>&nbsp;</o:p></p> <p class="MsoNormal">I&#8217;m \
specifically looking at the &#8220;TYPE65400&#8221; record above. <o:p> </o:p></p>
<p class="MsoNormal"><o:p>&nbsp;</o:p></p>
<p class="MsoNormal">The configuration file looks as follows:<o:p></o:p></p>
<p class="MsoNormal"><o:p>&nbsp;</o:p></p>
<p class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt;
font-family:&quot;Courier New&quot;">options {<o:p></o:p></span></p>
<p class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt;
font-family:&quot;Courier New&quot;">&nbsp;&nbsp;&nbsp; # General BIND control \
options<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; notify \
yes;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; recursion \
no;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; auth-nxdomain \
no;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; zone-statistics \
yes;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; transfer-format \
many-answers;<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;"><o:p>&nbsp;</o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp; # BIND accessibility options<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
allow-transfer { 209.244.127.174; localhost; };<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
allow-query { any; };<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; allow-query-on { any; \
};<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; allow-query-cache { any; \
};<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; allow-query-cache-on { any; \
};<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;"><o:p>&nbsp;</o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp; # Server identification options<o:p></o:p></span></p> \
<p class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
version &quot;hostmaster@Level3.net&quot;;<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; server-id \
&quot;dns2.newyork1.Level3.net&quot;;<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; hostname \
&quot;dns2.newyork1.Level3.net&quot;;<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;"><o:p>&nbsp;</o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp; # Network and interface configuration \
options<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; use-v4-udp-ports { range 8192 \
65535; };<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; listen-on { 209.244.7.57; \
};<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; notify-source \
209.244.7.57;<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; transfer-source \
209.244.7.57;<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; query-source address \
209.244.7.57 port *;<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; interface-interval \
5;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; use-alt-transfer-source \
no;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;"><o:p>&nbsp;</o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp; # File system options<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
directory &quot;/usr/local/dns/dnssec1&quot;;<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
dump-file &quot;dump&quot;;<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; pid-file \
&quot;pid&quot;;<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; statistics-file \
&quot;logs/stats&quot;;<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;"><o:p>&nbsp;</o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp; # DNSSEC options<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
dnssec-enable yes;<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; key-directory \
&quot;keys&quot;;<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; inline-signing \
yes;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; dnssec-loadkeys-interval \
60;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;"><o:p>&nbsp;</o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp; # Performance options<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
minimal-responses yes;<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; transfers-in \
512;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; transfers-out \
512;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; transfers-per-ns \
48;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; tcp-clients \
500;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; max-transfer-time-in \
10;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; max-transfer-time-out \
10;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; max-refresh-time \
43200;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; max-retry-time \
900;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; serial-query-rate \
200;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; cleaning-interval \
2;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; min-retry-time \
15;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; max-cache-ttl \
43200;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; max-cache-size \
256000000;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; min-refresh-time \
120;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier New&quot;">&nbsp;&nbsp; \
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;max-ncache-ttl 900;<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;"><o:p>&nbsp;</o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;">};<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;"><o:p>&nbsp;</o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">include &quot;/usr/local/dns/etc/bad-clients.conf&quot;;<o:p></o:p></span></p>
 <p class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt;
font-family:&quot;Courier New&quot;">acl query-clients {<o:p></o:p></span></p>
<p class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt;
font-family:&quot;Courier New&quot;">&nbsp;192.168.53.0/24;<o:p></o:p></span></p>
<p class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt;
font-family:&quot;Courier New&quot;">&nbsp;!bad-clients;<o:p></o:p></span></p>
<p class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt;
font-family:&quot;Courier New&quot;">&nbsp;any;<o:p></o:p></span></p>
<p class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt;
font-family:&quot;Courier New&quot;"><o:p>&nbsp;</o:p></span></p>
<p class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt;
font-family:&quot;Courier New&quot;">include \
&quot;/usr/local/dns/dnssec1/conf/named.rndc&quot;;<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;">include \
&quot;/usr/local/dns/etc/named.logging.9.x&quot;;<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;"><o:p>&nbsp;</o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;">zone &quot;.&quot; in {<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; type \
hint;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; file \
&quot;/usr/local/dns/etc/root.cache&quot;;<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">};<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;"><o:p>&nbsp;</o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">/* ID zone */<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;"><o:p>&nbsp;</o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">zone &quot;nameserver&quot; in {<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; type \
master;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; file \
&quot;/usr/local/dns/etc/nameserver&quot;;<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">};<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;"><o:p>&nbsp;</o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">. . . <o:p></o:p></span></p>
<p class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt;
font-family:&quot;Courier New&quot;"><o:p>&nbsp;</o:p></span></p>
<p class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt;
font-family:&quot;Courier New&quot;">zone &quot;m.202.216.in-addr.arpa&quot; in \
{<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; type \
master;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; file \
&quot;zones/m.202.216.in-addr.arpa&quot;;<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; allow-update { localhost; \
};<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; auto-dnssec \
maintain;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; inline-signing \
yes;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; key-directory \
&quot;keys&quot;;<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; check-names \
ignore;<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier New&quot;">};<o:p></o:p></span></p>
<p class="MsoNormal"><o:p>&nbsp;</o:p></p>
<p class="MsoNormal">Queries for this record show an obvious \
corruption:<o:p></o:p></p> <p class="MsoNormal"><o:p>&nbsp;</o:p></p>
<p class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt;
font-family:&quot;Courier New&quot;">[root@dns1] /usr/local/dns/dnssec1/zones&gt; dig \
@dnssec1 m.202.216.in-addr.arpa TYPE65400 &#43;dnssec &#43;multi \
<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier New&quot;">;; Truncated, retrying \
in TCP mode.<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;"><o:p>&nbsp;</o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">; &lt;&lt;&gt;&gt; DiG 9.9.1 &lt;&lt;&gt;&gt; @dnssec1 \
m.202.216.in-addr.arpa TYPE65400 &#43;dnssec &#43;multi<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;">; (1 server found)<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;">;; global options: \
&#43;cmd<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier New&quot;">;; Got \
answer:<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier New&quot;">;; \
-&gt;&gt;HEADER&lt;&lt;- opcode: QUERY, status: NOERROR, id: \
18188<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier New&quot;">;; flags: qr aa rd; \
QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;">;; WARNING: recursion requested but not \
available<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;"><o:p>&nbsp;</o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">;; OPT PSEUDOSECTION:<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">; EDNS: version: 0, flags: do; udp: 4096<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;">;; QUESTION SECTION:<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">;m.202.216.in-addr.arpa.&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; IN \
TYPE65400<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;"><o:p>&nbsp;</o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">;; ANSWER SECTION:<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">m.202.216.in-addr.arpa. 86400 IN TYPE65400 \# 48830 ( \
00000001000151800000FF7800000009000000000000<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
0000002A4D90000000000000003E0000000000000000<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
002A51A000000000FFFFFFFFFFFFFFFF000000000000<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
00000001000000000001000151800000FF7800000009<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
0000000000000000002A4C00000000000000005A0000<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
000000000000002A4F7000000000FFFFFFFFFFFFFFFF<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
000000000000000000010000002A51A0000000000000<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
00000000000000000000FFFFFFFFFFFFFFFFC00E070E<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
03124AEE002A4B100060000001300131013101310131<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
013101300700020406080A0CBEBEBEBEBEBE00000001<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;000151800000FF780000000900000000000000000036<o:p></o:p></span></p>
 <p class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt;
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
2FB00000000000000091000000000000000000362E20<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;"><o:p>&nbsp;</o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;">. . . <o:p></o:p></span></p>
<p class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt;
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
000000000000000000010029DB6000000001BEBEBEBE<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
0004000000004D580000000000000000000000000000<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
00000000000000000000000000000000000000000000<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;00000000000000000000000000000000000000000000<o:p></o:p></span></p>
 <p class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt;
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
000000BE000000000000000000000000000000000000<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
00000000000000000000000000000000000000000000<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
00000000000000000000000000000000000000000000<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
00000000000000000000000000000000000000000000<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
000000000000000000000000 )<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">m.202.216.in-addr.arpa. 86400 IN RRSIG TYPE65400 5 5 86400 \
(<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
&nbsp;&nbsp;20120630132728 20120531122728 60792 \
m.202.216.in-addr.arpa.<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
kwvclR3r1j24reESiD1oYcQ9026xjflfHrfO0/gt4beG<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
PTWssGfpT7vDnqYX3xjUgLrYaE3hxzr6wonBHwmrifyQ<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
nkgnoywE7CE&#43;XVajB9834LCwRzbNT8UAIhL1xsDqsJlr<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier \
New&quot;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
/7j4f5IiNuAnxj3kFJTFQ0dKsIBKwk64dc6DZIg= )<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;"><o:p>&nbsp;</o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">;; Query time: 275 msec<o:p></o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;">;; SERVER: 209.244.7.57#53(209.244.7.57)<o:p></o:p></span></p> <p \
class="MsoNormal" style="margin-left:.5in"><span style="font-size:8.0pt; \
font-family:&quot;Courier New&quot;">;; WHEN: Thu May 31 17:35:20 \
2012<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier New&quot;">;; MSG SIZE&nbsp; rcvd: \
49075<o:p></o:p></span></p> <p class="MsoNormal" style="margin-left:.5in"><span \
style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;"><o:p>&nbsp;</o:p></span></p> <p class="MsoNormal" \
style="margin-left:.5in"><span style="font-size:8.0pt; font-family:&quot;Courier \
New&quot;;color:black"><o:p>&nbsp;</o:p></span></p> <p class="MsoNormal"><span \
style="color:black">The &#8220;MSG SIZE rcvd&#8221; status says it all. Additionally, \
I&#8217;m getting sporadic messages where my inline-signed zones have &#8220;No \
signing records found&#8221;, including this one, and experiencing crashes when \
trying to transfer  these zones to my secondary.<o:p></o:p></span></p>
<p class="MsoNormal"><o:p>&nbsp;</o:p></p>
<p class="MsoNormal">I&#8217;ve experienced this on several other zones, forcing me \
to revert to the &#8220;old school&#8221; method of signing zones. Has anyone \
experienced such an issue, and can I supply more information to help identify what is \
causing this error, and more  importantly, how to fix it?<o:p></o:p></p>
<p class="MsoNormal"><o:p>&nbsp;</o:p></p>
<p class="MsoNormal"><o:p>&nbsp;</o:p></p>
<p class="MsoNormal"><o:p>&nbsp;</o:p></p>
<p class="MsoNormal"><b><span \
style="font-size:9.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;; \
color:#CC3333">Dan Luther</span></b><span style="color:#1F497D"><br> </span><b><span \
style="font-size:8.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;; \
color:#333333">Operations Engineer<o:p></o:p></span></b></p> <p \
class="MsoNormal"><b><span \
style="font-size:8.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;; \
color:#333333">Systems Operation Engineering <br>
</span></b><b><span style="font-size:8.0pt;font-family:&quot;Arial&quot;,&quot;sans-serif&quot;;
 color:#7A7A7A">Level 3 Communications<br>
One Technology Center, Tulsa OK 74103<br>
p: 918-547-4370<br>
e: <a href="mailto:name.name@level3.com">dan.luther@level3.com</a></span></b><span \
style="color:#1F497D"><o:p></o:p></span></p> <p \
class="MsoNormal"><o:p>&nbsp;</o:p></p> </div>
</body>
</html>



_______________________________________________
bind-workers mailing list
bind-workers@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-workers
--===============2909692801975828354==--

[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic