These are chat archives for CZ-NIC/knot-resolver

11th
Nov 2018
MrSorcus
@MrSorcus
Nov 11 2018 11:13

Hi, can someone tell me, why knot-resolver doesn't work with ipv6 only network?

[root@mx0 ~]# kdig opennet.ru @2606:4700:4700::1111
;; ->>HEADER<<- opcode: QUERY; status: NOERROR; id: 65211
;; Flags: qr rd ra; QUERY: 1; ANSWER: 1; AUTHORITY: 0; ADDITIONAL: 0

;; QUESTION SECTION:
;; opennet.ru.                  IN      A

;; ANSWER SECTION:
opennet.ru.             144     IN      A       94.142.141.14

;; Received 44 B
;; Time 2018-11-11 11:11:32 UTC
;; From 2606:4700:4700::1111@53(UDP) in 1.1 ms

[root@mx0 ~]# kdig opennet.ru @::1
;; ->>HEADER<<- opcode: QUERY; status: SERVFAIL; id: 48266
;; Flags: qr rd ra; QUERY: 1; ANSWER: 0; AUTHORITY: 0; ADDITIONAL: 0

;; QUESTION SECTION:
;; opennet.ru.                  IN      A

;; Received 28 B
;; Time 2018-11-11 11:11:37 UTC
;; From ::1@53(UDP) in 477.1 ms

With Cloudflare DNS i can get A entry, but no with ::1 or 127.0.0.1.

Can't get any entry for updates.rspamd.com too.
But works for google.com, github.com, ddg.gg, etc.
MrSorcus
@MrSorcus
Nov 11 2018 11:20
Vladimír Čunát
@vcunat
Nov 11 2018 13:10
@MrSorcus: zones without an IPv6-capable nameserver aren't too rare. CDN example: fastly.com. In your case it's rspamd.com.
You need to get IPv4 working somehow or use forwarding to some resolver that has it.
(Or convince everyone they should get IPv6 working, at least for nameservers.)
MrSorcus
@MrSorcus
Nov 11 2018 13:21
Oh, ok. Thanks you @vcunat .