Does EDNS0 work with bind-9.10.3-P2?

classic Classic list List threaded Threaded
4 messages Options
Reply | Threaded
Open this post in threaded view
|

Does EDNS0 work with bind-9.10.3-P2?

Sury Bu
Hi all,

I installed the latest version of bind-9.10.3-P2 but when I using dig EDNS feature with +subnet, I found my local DNS can not carry client subnet, does this  version support EDNS0 now? 

[root@test ~]# dig @8.8.8.8 www.google.com +subnet=8.8.8.8

; <<>> DiG 9.10.3-P2 <<>> @8.8.8.8 www.google.com +subnet=8.8.8.8
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 50372
;; flags: qr rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
; CLIENT-SUBNET: 8.8.8.8/32/32
;; QUESTION SECTION:

;; ANSWER SECTION:
www.google.com. 299 IN A 74.125.226.17
www.google.com. 299 IN A 74.125.226.16
www.google.com. 299 IN A 74.125.226.18
www.google.com. 299 IN A 74.125.226.19
www.google.com. 299 IN A 74.125.226.20

;; Query time: 61 msec
;; SERVER: 8.8.8.8#53(8.8.8.8)
;; WHEN: Tue Jan 05 22:40:23 CST 2016
;; MSG SIZE  rcvd: 135

[root@test ~]# dig @127.0.0.1 www.google.com +subnet=8.8.8.8

; <<>> DiG 9.10.3-P2 <<>> @127.0.0.1 www.google.com +subnet=8.8.8.8
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 42800
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 4, ADDITIONAL: 5

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:

;; ANSWER SECTION:
www.google.com. 99 IN A 216.58.221.68

;; AUTHORITY SECTION:
google.com. 172599 IN NS ns4.google.com.
google.com. 172599 IN NS ns3.google.com.
google.com. 172599 IN NS ns1.google.com.
google.com. 172599 IN NS ns2.google.com.

;; ADDITIONAL SECTION:
ns1.google.com. 172599 IN A 216.239.32.10
ns2.google.com. 172599 IN A 216.239.34.10
ns3.google.com. 172599 IN A 216.239.36.10
ns4.google.com. 172599 IN A 216.239.38.10

;; Query time: 0 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Tue Jan 05 22:40:32 CST 2016
;; MSG SIZE  rcvd: 195

_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list

bind-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/bind-users
Reply | Threaded
Open this post in threaded view
|

Re: Does EDNS0 work with bind-9.10.3-P2?

Mukund Sivaraman
Hi Sury

On Tue, Jan 05, 2016 at 10:50:39PM +0800, Sury Bu wrote:
> I installed the latest version of bind-9.10.3-P2 but when I using dig
> EDNS feature with +subnet, I found my local DNS can not carry client
> subnet, does this version support EDNS0 now?

9.10 branch as no support for ECS except dig allowing +subnet to be
specified. There is no support in named.

master branch has prelimnary support for authoritative side of ECS, but
the draft is still not finalized and there are some differences from the
current draft.

There is no support currently for ECS in the resolver, either in the
cache or even to handle that option.

                Mukund

_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list

bind-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/bind-users

signature.asc (817 bytes) Download Attachment
Reply | Threaded
Open this post in threaded view
|

Re: Does EDNS0 work with bind-9.10.3-P2?

Sury Bu
Hi Mukund,

Thanks for your reply, and do you know what bind version will support ECS option?

On Tue, Jan 5, 2016 at 11:08 PM, Mukund Sivaraman <[hidden email]> wrote:
Hi Sury

On Tue, Jan 05, 2016 at 10:50:39PM +0800, Sury Bu wrote:
> I installed the latest version of bind-9.10.3-P2 but when I using dig
> EDNS feature with +subnet, I found my local DNS can not carry client
> subnet, does this version support EDNS0 now?

9.10 branch as no support for ECS except dig allowing +subnet to be
specified. There is no support in named.

master branch has prelimnary support for authoritative side of ECS, but
the draft is still not finalized and there are some differences from the
current draft.

There is no support currently for ECS in the resolver, either in the
cache or even to handle that option.

                Mukund


_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list

bind-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/bind-users
Reply | Threaded
Open this post in threaded view
|

Re: Does EDNS0 work with bind-9.10.3-P2?

Mukund Sivaraman
Hi Sury

On Wed, Jan 06, 2016 at 02:35:37PM +0800, Sury Bu wrote:
> Hi Mukund,
>
> Thanks for your reply, and do you know what bind version will support
> ECS option?

BIND 9.11 will introduce authoritative support for ECS.

                Mukund

_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list

bind-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/bind-users

signature.asc (817 bytes) Download Attachment