Path: csiph.com!weretis.net!feeder8.news.weretis.net!paganini.bofh.team!news.killfile.org!usenet.stanford.edu!not-for-mail From: Matus UHLAR - fantomas Newsgroups: comp.protocols.dns.bind Subject: Re: Error "Query section mismatch : got" Date: Wed, 19 Aug 2020 16:41:10 +0200 Lines: 41 Approved: bind-users@lists.isc.org Message-ID: References: <20200819114133.GA6272@fantomas.sk> <20200819144110.GA15085@fantomas.sk> NNTP-Posting-Host: lists.isc.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed X-Trace: usenet.stanford.edu 1597848082 9258 149.20.1.60 (19 Aug 2020 14:41:22 GMT) X-Complaints-To: action@cs.stanford.edu To: bind-users@lists.isc.org Return-Path: X-Original-To: bind-users@lists.isc.org Delivered-To: bind-users@lists.isc.org X-Authentication-Warning: fantomas.fantomas.sk: uhlar set sender to uhlar@fantomas.sk using -f Mail-Followup-To: bind-users@lists.isc.org Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.10.1 (2018-07-13) X-Spam-Status: No, score=-0.0 required=5.0 tests=SPF_HELO_PASS,SPF_PASS autolearn=disabled version=3.4.2 X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on mx.pao1.isc.org X-BeenThere: bind-users@lists.isc.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: BIND Users Mailing List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-Mailman-Original-Message-ID: <20200819144110.GA15085@fantomas.sk> X-Mailman-Original-References: <20200819114133.GA6272@fantomas.sk> Xref: csiph.com comp.protocols.dns.bind:16054 >On Wed, Aug 19, 2020 at 7:42 AM Matus UHLAR - fantomas > wrote: >> again, why you query for 250.0-24.199.212.125.in-addr.arpa >> under normal circumstances there's no point of querying that name. On 19.08.20 10:05, tale via bind-users wrote: >Well yes and no. While an individual user would typically not, >resolvers sure will. While trying to resolve >250.199.212.125.in-addr.arpa, it will eventually get to >250.199.212.125.in-addr.arpa CNAME 250.0-24.199.212.125.in-addr.arpa. my question is why would anyone do this, as this apparently does not make sense. someone (vietel) illogically delegated whole /24 subnet to broken servers: 199.212.125.in-addr.arpa. 86400 IN NS dns2.vietel.com.vn. 199.212.125.in-addr.arpa. 86400 IN NS dns1.vietel.com.vn. 0.199.212.125.in-addr.arpa has address 125.235.4.59 1.199.212.125.in-addr.arpa is an alias for 1.0-24.199.212.125.in-addr.arpa. ... 255.199.212.125.in-addr.arpa is an alias for 255.0-24.199.212.125.in-addr.arpa. > Then it will need to resolve the canonical name, and a response like >the original one that was shown will be clearly buggy. > >I say "possibly" because from my vantage, all three of >ns{,1,2}.viettelidc.com.vn, the authorities for >0-24.199.212.125.in-addr.arpa, are giving fine answers right now (on >udp; blocked on tcp). This includes the originally reported problem >IP, 115.84.177.8 -- Matus UHLAR - fantomas, uhlar@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Fucking windows! Bring Bill Gates! (Southpark the movie)