-
Notifications
You must be signed in to change notification settings - Fork 136
Invalid target after forwarding dns with bind (DNSSEC related) #167
Comments
@tdna can you provide some more information about your setup and about the specific request. Send us:
|
Thanks for your reply! I used mesos dns docker image. Our mesos dns ip: 192.168.1.115 Bind config:
Query to mesos dns
Mesos dns log:
Query to our dns server
Mesos dns log:
Bind server log:
Other mesos dns log parts:
Mesos dns config:
|
@tdna
It looks like you are using DNSSEC and to make this work we need to support DS, DNSKEY, and RRSIG records (see a tutorial here). I will add it to the todo list as this is not a trivial hack. |
Yes I am using dnssec. |
+1 ran into the same issue. It is a bit of a blocker for us as we cannot disable DNSSEC. |
@jdef: How can we prioritise this? |
Hi @tdna and @sepiroth887, if possible can you talk a bit about your organization and why DNSSEC is important (or non-negotiable!) for you? Thanks. |
I wrote to hastily. Turns out for us its actually fine to disable dnssec. |
I've disabled dnssec finally. |
I went through the tutorial on mesos dns docs, setup bind and the following error came back from mesos dns:
ERROR: 2015/06/04 09:09:39 resolver.go:379: invalid target
Direct query to mesos dns works good.
The text was updated successfully, but these errors were encountered: