-
-
Notifications
You must be signed in to change notification settings - Fork 223
Fix Bogus DNSSEC Validation Domain in unbound.md #1252
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Conversation
Update DNSSEC validation domains in the guide to resolve the misconfiguration affecting fail01.dnssec.works (status: NOERROR) Fixes #1251 (Unbound negative test validation fails) Signed-off-by: HeliusMagnum <82977614+HeliusMagnum@users.noreply.github.com>
fix formatting issue Signed-off-by: HeliusMagnum <82977614+HeliusMagnum@users.noreply.github.com>
expand on the ad flag in the DNSSEC validation Signed-off-by: HeliusMagnum <82977614+HeliusMagnum@users.noreply.github.com>
✅ Deploy Preview for pihole-docs ready!
To edit notification comments on pull requests, go to your Netlify project configuration. |
This pull request has been mentioned on Pi-hole Userspace. There might be relevant details there: https://discourse.pi-hole.net/t/dns-not-resolving-lots-of-ftl-errors/80808/8 |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I'm not saying this PR is unnecessary, but the domain |
I think we don't need to change the domain then but I'd like to keep the additional information about the |
Thank you for your contribution to the Pi-hole Community!
Please read the comments below to help us consider your Pull Request.
We are all volunteers and completing the process outlined will help us review your commits quicker.
Please make sure you
What does this PR aim to accomplish?:
Fix the issue with
fail01.dnssec.works
returningNOERROR
How does this PR accomplish the above?:
Changes the test domain for a bogus DNSSEC validation to bogus.nlnetlabs.nl which returns
SERVERFAIL
Changes the test domain for a successful DNSSEC validation to
cloudflare.com
to avoid any future misconfiguration with thednssec.works
domains, specifying the+ad
flag.resolves #1251
By submitting this pull request, I confirm the following:
git rebase
)