thanks jlgaddis brycec mercutio
does ARP provide Authoritative DNS?
or does DNS Manager refer strictly to Reverse DNS ?
As far as I know, it only manages reverse DNS
I use dns.he.net personally, and I've used freedns.afraid.org in the past for auth/secondary DNS
(Keyword being *free* :D)
I just run my own named
So do I, but you need slaves. I also use dns.he.net.
I suppose I don't run named anymore. nsd!
I'm using puck.nether.net and esgob.com as secondaries
haven't played with nsd yet. knot looks kindof interesting too
i've had good luck with buddyns as a secondary
fast ntfy updates too
Gandi.net provides a slave server if your domain is registered there
(You don't technically need slaves ;P)
i just tinydns and scp files with a script.
i still use bind on all my dns servers but will likely switch to nsd and unbound as they're upgraded
 looks interesting >> https://www.buddyns.com/services/cpanel-whm/
i use unbound for recursive, it's nice.
yeah i've been using it at home for almost a year and haven't had a single issue
do you enable prefetch?
nfi, lemme check
nope
it can only help a little with small number of users.
i do reckon it's kind of a cool thing to boost performance in generla though
I just installed unbound on an ubuntu box, but keep getting SERVFAIL for DNS queries
my etc/resolv.conf has: nameserver 127.0.0.1
but I cannot ping google.com
ping 8.8.8.8 works however
acl?
ubuntu recently started having empty unbound config files
with all the comments and default options not visible
but default config should just work for localhost
http://pastebin.com/UsmHrGzm
thats my config
oh maybe yours is old enough to have more config
I put that config in there
i don't see anything allowing 127.0.0/8
127.0.0.0/8
by default it was blank
yeah but it normally has an access-control already in there
and i imagine defining access-controls overrides the default
dig mnathani.com gives SERVFAIL
oh
   access-control: 0.0.0.0/0 refuse
but dig google.com gives IP addresses
stick that first too
then         access-control: 127.0.0.0/8 allow
then what you have
        access-control: ::0/0 refuse
        access-control: ::1 allow
        access-control: ::ffff:127.0.0.1 allow
wouldnt I get REFUSED if it was ACL issue?"
nope
akamai.com.             60      IN      A       23.36.93.239
but mnathani.com gets SERVFAIL
http://pastebin.com/xwFJ9RqL
I can't make any sense of that log error
why its returning a SERVFAIL
Capsforid fallback: getting different replies, failed
weird
fwiw mnathani.com resolves from here
using unbound?
not directly
dnsmasq then unbound
hangon i have direct unbound i can try
yeah works fine
the config I put in there had it enabled
 use-caps-for-id: yes
disabled it now and it works
oh i didn't spot that
time to get my windows box using the unbound instance