Authoritative DNS and the forwarder role

Started by aab, October 20, 2025, 04:19:19 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
October 20, 2025, 04:19:19 PM
Hi,
 I have a Authoritative DNS for the domain say xyz.com, it is configured on unbound on my opnsense 21.7 (i know, its an old version). The problem is I want this DNS to not do the forward request to 8.8.8.8 for *.berlin.xyz.com. But I always see following in the tcpdump.

Code Select
14:51:11.318755 IP 192.178.94.19.58861 > MyLive-IP.53: 55648% [1au] AAAA? test.xyz.io.berlin.XYZ.IO. (65)
14:51:11.318848 IP MyLive-IP.53 > 192.178.94.19.58861: 55648 Refused- [0q] 0/0/0 (12)
Code Select
14:51:11.306479 IP MyLive-IP.11602 > 8.8.8.8.53: 35654+ [1au] AAAA? test.xyz.io.berlin.XYZ.IO. (65)
14:51:11.331116 IP 8.8.8.8.53 > MyLive-IP.11602: 35654 ServFail 0/0/1 (226)
14:51:11.331376 IP MyLive-IP.11602 > 8.8.8.8.53: 35654+ [1au] AAAA? test.xyz.io.berlin.XyZ.IO. (65)
Code Select
14:51:11.343913 IP 192.178.94.25.59549 > MyLive-IP.53: 5947% [1au] AAAA? test.xyz.io.berlin.XyZ.IO. (65)
14:51:11.344010 IP MyLive-IP.53 > 192.178.94.25.59549: 5947 Refused- [0q] 0/0/0 (12)
What i don't understand is why my server goes to the 8.8.8.8 to query test.xyz.io.berlin.XyZ.IO. and test.xyz.io.berlin.XYZ.IO.  ?

thanks in advance :)
Print
Go Up Pages1
User actions