<br><div class="gmail_quote">On Wed, Aug 26, 2009 at 2:47 PM, Stephane Bortzmeyer <span dir="ltr"><<a href="mailto:bortzmeyer@nic.fr">bortzmeyer@nic.fr</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
On Mon, Aug 17, 2009 at 02:43:46PM +0000,<br>
Florian Weimer <<a href="mailto:fweimer@bfk.de">fweimer@bfk.de</a>> wrote<br>
a message of 18 lines which said:<br>
<br>
> Please post full trace output, e.g. the result of "dig <a href="http://www.atac.fr" target="_blank">www.atac.fr</a><br>
> +trace +all +norecurse" if you still can reproduce the issue.<br>
<br>
Interesting, this set of options do not work with an Unbound resolver:<br>
<br>
% dig <a href="http://www.atac.fr" target="_blank">www.atac.fr</a> +trace +all +norecurse<br>
<br>
; <<>> DiG 9.5.1-P3 <<>> <a href="http://www.atac.fr" target="_blank">www.atac.fr</a> +trace +all +norecurse<br>
;; global options: printcmd<br>
;; Got answer:<br>
;; ->>HEADER<<- opcode: QUERY, status: REFUSED, id: 1483<br>
;; flags: qr; QUERY: 0, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0<br>
<br>
;; Query time: 0 msec<br>
;; SERVER: ::1#53(::1)<br>
;; WHEN: Wed Aug 26 14:45:27 2009<br>
;; MSG SIZE rcvd: 12</blockquote><div><br>Hi Stephane, <br><br>You need to add 'allow_snoop' to your access-control statement in unbound.conf<br><br>Example <br><br>access-control: <a href="http://0.0.0.0/0">0.0.0.0/0</a> allow_snoop<br>
<br>Cheers, <br><br>Gareth<br></div></div>