<!DOCTYPE html><html><head><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /></head><body><div data-crea="font-wrapper" style="font-family: Tahoma; font-size: 16px; direction: ltr">Hi,<br><div><div><div data-crea="font-wrapper" style="font-family: Tahoma;font-size: 16px;direction: ltr"><div><div><div data-crea="font-wrapper" style="font-family: Tahoma;font-size: 16px;direction: ltr"><br>I have 4 identical configured Unbound, and for 2 local configured stub for 10.in-addr.arpa subzone work as I expected, 2 not.<br>System is CentOS Linux release 7.4.1708 (Core) and Unbound 1.4.20 from base repo. Some details:<br><br><font face="Courier New, monospace">$ rpm -qa | grep unbound<br>unbound-1.4.20-34.el7.x86_64<br>unbound-libs-1.4.20-34.el7.x86_64</font><br><br><font face="Courier New, monospace">$ unbound-control status<br>version: 1.4.20<br>verbosity: 1<br>threads: 2<br>modules: 2 [ validator iterator ]<br>uptime: 961903 seconds<br>unbound (pid 7495) is running...</font><br><br><font face="Courier New, monospace"># /etc/unbound/unbound.conf<br>private-address: 10.0.0.0/8<br>local-zone: "2.10.in-addr.arpa." transparent<br>stub-zone:<br> name: 2.10.in-addr.arpa<br> stub-addr: 192.168.96.96</font><br><br><br>On first two Unbound query results is expected:<br><br><font face="Courier New, monospace">$ dig -x 10.2.40.50 @192.168.6.6<br><br>; <<>> DiG 9.10.5 <<>> -x 10.2.40.50 @192.168.6.6<br>;; global options: +cmd<br>;; Got answer:<br>;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 39411<br>;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1<br><br>;; OPT PSEUDOSECTION:<br>; EDNS: version: 0, flags:; udp: 4096<br>;; QUESTION SECTION:<br>;50.40.2.10.in-addr.arpa. IN PTR<br><br>;; ANSWER SECTION:<br>50.40.2.10.in-addr.arpa. 300 IN PTR server1.internal.company.com.<br><br>;; Query time: 0 msec<br>;; SERVER: 192.168.6.6#53(192.168.6.6)<br>;; WHEN: Fri Dec 15 18:32:09 Central Europe Standard Time 2017<br>;; MSG SIZE rcvd: 88</font><br><br><br><font face="Courier New, monospace">$ dig -x 10.10.10.10 @192.168.6.6<br><br>; <<>> DiG 9.10.5 <<>> -x 10.10.10.10 @192.168.6.6<br>;; global options: +cmd<br>;; Got answer:<br>;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31411<br>;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1<br><br>;; OPT PSEUDOSECTION:<br>; EDNS: version: 0, flags:; udp: 4096<br>;; QUESTION SECTION:<br>;10.10.10.10.in-addr.arpa. IN PTR<br><br>;; AUTHORITY SECTION:<br>10.in-addr.arpa. 10800 IN SOA localhost. nobody.invalid. 1 3600 1200 604800 10800<br><br>;; Query time: 0 msec<br>;; SERVER: 192.168.6.6#53(192.168.6.6)<br>;; WHEN: Fri Dec 15 18:36:48 Central Europe Standard Time 2017<br>;; MSG SIZE rcvd: 112</font><br><br><br>But on second two query results is wrong:<br></div><div data-crea="font-wrapper" style="font-family: Tahoma;font-size: 16px;direction: ltr"><br></div><div data-crea="font-wrapper" style="font-family: Tahoma;font-size: 16px;direction: ltr"><font face="Courier New, monospace">$ dig -x 10.2.40.50 @192.168.9.9<br><br>; <<>> DiG 9.10.5 <<>> -x 10.2.40.50 @192.168.9.9<br>;; global options: +cmd<br>;; Got answer:<br>;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22389<br>;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1<br><br>;; OPT PSEUDOSECTION:<br>; EDNS: version: 0, flags:; udp: 4096<br>;; QUESTION SECTION:<br>;50.40.2.10.in-addr.arpa. IN PTR<br><br>;; AUTHORITY SECTION:<br>10.in-addr.arpa. 10800 IN SOA localhost. nobody.invalid. 1 3600 1200 604800 10800<br><br>;; Query time: 0 msec<br>;; SERVER: 192.168.9.9#53(192.168.9.9)<br>;; WHEN: Fri Dec 15 18:42:02 Central Europe Standard Time 2017<br>;; MSG SIZE rcvd: 111</font><br><br><br><font face="Courier New, monospace">$ dig -x 10.10.10.10 @192.168.9.9<br><br>; <<>> DiG 9.10.5 <<>> -x 10.10.10.10 @192.168.9.9<br>;; global options: +cmd<br>;; Got answer:<br>;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15000<br>;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1<br><br>;; OPT PSEUDOSECTION:<br>; EDNS: version: 0, flags:; udp: 4096<br>;; QUESTION SECTION:<br>;10.10.10.10.in-addr.arpa. IN PTR<br><br>;; AUTHORITY SECTION:<br>10.in-addr.arpa. 10800 IN SOA localhost. nobody.invalid. 1 3600 1200 604800 10800<br><br>;; Query time: 0 msec<br>;; SERVER: 192.168.9.9#53(192.168.9.9)<br>;; WHEN: Fri Dec 15 18:42:14 Central Europe Standard Time 2017<br>;; MSG SIZE rcvd: 112</font><br></div><div data-crea="font-wrapper" style="font-family: Tahoma;font-size: 16px;direction: ltr"><br></div><div data-crea="font-wrapper" style="font-family: Tahoma;font-size: 16px;direction: ltr"><br></div><div data-crea="font-wrapper" style="font-family: Tahoma;font-size: 16px;direction: ltr">For last 2 queries log is empty on verbosity 3.<br></div><div data-crea="font-wrapper" style="font-family: Tahoma;font-size: 16px;direction: ltr">Any idea, suggestions?<br><br><br>Regards,<br><br><div><div data-crea="font-wrapper" style="font-family: Tahoma;font-size: 16px;direction: ltr"><pre>--<br>Mehmed Kahric<br></pre></div></div></div>
</div></div></div>
</div></div></div></body></html>