R
Reggle
Guest
Hi all,
My first post on this forum. I'm Reggle from Belgium, and a beginner on Linux.
The issue I'm having is with BIND (the DNS server on *nix).
So I've got BIND9 running on a machine here and it's providing DNS for the subnet at home. Note that I don't have a registered domain so it's a .local. For the remaining of the internet I have forwarders defined. While everything works, I do see an occasional query for the root servers. Below output of tcpdump.
This happens up to multiple times a minute. I do not see any A or AAAA queries for those root servers.
I have a root.db file which was present in the BIND9 package which contains all root server NS, A and AAAA records and is up to date (verified). The named.conf contains the following zone, which is also verified to be working:
I'm assuming correct syntax because BIND starts. I've made plenty of typo's in the last two weeks to see BIND fail on restart when the syntax isn't correct.
My question: is this normal behaviour? I seem to be spamming upstream DNS servers with redundant queries. How can I change this?
My first post on this forum. I'm Reggle from Belgium, and a beginner on Linux.
The issue I'm having is with BIND (the DNS server on *nix).
So I've got BIND9 running on a machine here and it's providing DNS for the subnet at home. Note that I don't have a registered domain so it's a .local. For the remaining of the internet I have forwarders defined. While everything works, I do see an occasional query for the root servers. Below output of tcpdump.
Code:
21:01:15.650751 IP 192.168.168.5.35724 > 8.8.8.8.53: 24004+ [1au] NS? . (28)
21:01:15.670749 IP 8.8.8.8.53 > 192.168.168.5.35724: 24004$ 14/0/1 NS g.root-servers.net., NS c.root-servers.net., NS j.root-servers.net., NS i.root-servers.net., NS m.root-servers.net., NS b.root-servers.net., NS h.root-servers.net., NS e.root-servers.net., NS d.root-servers.net., NS a.root-servers.net., NS k.root-servers.net., NS l.root-servers.net., NS f.root-servers.net., RRSIG (397)
I have a root.db file which was present in the BIND9 package which contains all root server NS, A and AAAA records and is up to date (verified). The named.conf contains the following zone, which is also verified to be working:
Code:
zone "." {
type hint;
file "/etc/bind/root.db";
};
I'm assuming correct syntax because BIND starts. I've made plenty of typo's in the last two weeks to see BIND fail on restart when the syntax isn't correct.
My question: is this normal behaviour? I seem to be spamming upstream DNS servers with redundant queries. How can I change this?