Re: BIND DNS problem after upgrading from Wheezy to Squeeze

To: debian-user@lists.debian.org
Subject: Re: BIND DNS problem after upgrading from Wheezy to Squeeze
From: Andrew W <andrewjameswood@ymail.com>
Date: Fri, 29 Dec 2017 17:27:32 +0000
Message-id: <[🔎] af1cd36c-16eb-6749-85cf-cdf317d5961c@ymail.com>
In-reply-to: <[🔎] p206jt$n3v$1@blaine.gmane.org>
References: <[🔎] 4b305615-7c2f-7980-a84d-72fa72464824@comms.org.uk> <[🔎] p206jt$n3v$1@blaine.gmane.org>



On 27/12/2017 13:18, Bernhard Schmidt wrote:

Current BIND9 defaults to doing DNSSEC verification. DNSSEC needs large
packets. You might have an issue with UDP fragments being dropped at
your firewall/NAT Gateway?

Thanks for this tip. Looking into it I discovered TCP seems to berecommened for DNSSEC so Ive enabled TCP port 53 and so far not had aproblem!

Reply to:

Follow-Ups:
- Re: BIND DNS problem after upgrading from Wheezy to Squeeze
  - From: Pascal Hambourg <pascal@plouf.fr.eu.org>

References:
- BIND DNS problem after upgrading from Wheezy to Squeeze
  - From: Andrew Wood <awood@comms.org.uk>
- Re: BIND DNS problem after upgrading from Wheezy to Squeeze
  - From: Bernhard Schmidt <berni@birkenwald.de>

Prev by Date: Re: unison compatibility in stretch
Next by Date: Re: BIND DNS problem after upgrading from Wheezy to Squeeze
Previous by thread: Re: BIND DNS problem after upgrading from Wheezy to Squeeze
Next by thread: Re: BIND DNS problem after upgrading from Wheezy to Squeeze
Index(es):
- Date
- Thread