Servfail queries for named remote authoritative nameservers?
Darren S.
phatbuckett at gmail.com
Sat Jun 8 06:53:00 UTC 2019
On Fri, Jun 7, 2019 at 8:18 PM Viktor Dukhovni via Unbound-users
<unbound-users at nlnetlabs.nl> wrote:
>
> Is it possible to quickly SERVFAIL queries for data handled by a
> particular set of remote nameservers?
>
> I tried a combination of:
>
> local-data: "some-ns.example. IN A 127.0.0.1"
> do-not-query-address: 127.0.0.0/8
>
> but I still see queries going to the underlying remote IPs, the
> "local-data" setting does not appear to affect the infra-IP resolution
> for the zones served by the server in question.
Sorry for answering with a question, but would DNS RPZ work in this
case for what you're describing?
--
Darren Spruell
phatbuckett at gmail.com
More information about the Unbound-users
mailing list