These are chat archives for CZ-NIC/knot-resolver

Nov 2018
Robert Šefr
Nov 22 2018 13:04

Still didn't crack my understanding of policy/view rules evaluation process:

modules = {'policy', 'view'}
view:addr('', policy.suffix(policy.FORWARD(''), {todname('')}))
view:addr('', policy.all(policy.PASS))
view:addr('', policy.all(policy.REFUSE))

This sequence will accept and answer any query from any address., though I would expect it to REFUSE all queries from any address except and queries to domain What is wrong with my approach?