Extended DNS Errors proposal

Nick nickunbound at alfiecam.co.uk
Mon Mar 18 09:36:47 UTC 2019


Recently I have been looking for ways to determine/differentiate (from the DNS client) SERVFAIL & SERVFAIL due to DNSSEC errors.

I came across this submission to the ietf:

https://datatracker.ietf.org/doc/draft-ietf-dnsop-extended-error/ (https://datatracker.ietf.org/doc/draft-ietf-dnsop-extended-error/)

The proposal utilises an EDNS0 option code to request that the DNS server appends an additional record to the response, conveying additional information. This includes the status of DNSSEC.

Would anyone happen to know if this proposal is planned to be supported by Unbound in the near future?


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.nlnetlabs.nl/pipermail/unbound-users/attachments/20190318/6f1b6119/attachment.htm>

More information about the Unbound-users mailing list