Date: Wed, 16 Mar 2016 00:27:57 +0700 From: Eugene Grosbein <eugen@grosbein.net> To: Andrea Brancatelli <abrancatelli@schema31.it>, =?UTF-8?Q?Trond_Endrest=c3=b8l?= <Trond.Endrestol@fagskolen.gjovik.no> Cc: freebsd-stable@freebsd.org Subject: Re: Problems with unbound Message-ID: <56E8461D.5020706@grosbein.net> In-Reply-To: <e7b93ecb3ba1e1213033cabe507b4847@schema31.it> References: <f7856f2cc504efd0449091308a97f339@schema31.it> <alpine.BSF.2.20.1603151338550.1010@mail.fig.ol.no> <e7b93ecb3ba1e1213033cabe507b4847@schema31.it>
next in thread | previous in thread | raw e-mail | index | archive | help
15.03.2016 21:55, Andrea Brancatelli пишет: > Hi, the machine is connected "directly enough" (it's in a datacenter) to > safely excude point 1. Contrary, datacenters are known to have dumb filters dropping fragmented UDP packets that are essential for DNSSEC, so the "point 1" is most probable reason. Please take a look at this article: https://kb.isc.org/article/AA-01219/0/Refinements-to-EDNS-fallback-behavior-can-cause-different-outcomes-in-Recursive-Servers.html 4th paragraph is probably your case.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?56E8461D.5020706>