tkrizekEd (Gitter): how did you set up the OBS repo in your system? Installing our
knot-resolver-releasepackage from https://www.knot-resolver.cz/download/ should work just fine, unless your system is in some weird state (possibly caused by prior attempts to add the repo/key)
I'm getting these warnings on resolver restarts:
[cache] detected size change (by another instance?) of file '/var/lib/kres/cache/data.mdb': file size 10485760 -> file size 1017118720
Cache size is set (done only by one of the processes) in the configuration file like this:
cache.size = os.getenv('970') * MB
Is this something to worry about?
I'm having trouble resolving spam.molax.co.kr but it works with 220.127.116.11. Any ideas as to what might be an issue?
kdig spam.molax.co.kr @18.104.22.168
;; ->>HEADER<<- opcode: QUERY; status: NOERROR; id: 23320
;; Flags: qr rd ra; QUERY: 1; ANSWER: 1; AUTHORITY: 0; ADDITIONAL: 0
;; QUESTION SECTION:
;; spam.molax.co.kr. IN A
;; ANSWER SECTION:
spam.molax.co.kr. 1024 IN A 22.214.171.124
;; Received 50 B
;; Time 2020-11-16 13:23:19 EST
;; From 126.96.36.199@53(UDP) in 2.2 ms
[65536.17][resl] => id: '26902' querying: '188.8.131.52#00053' score: 10 zone cut: 'molax.co.kr.' qname: 'SPAM.mOLaX.CO.kR.' qtype: 'A' proto: 'udp' [65536.17][iter] <= answer received: ;; ->>HEADER<<- opcode: QUERY; status: FORMERR; id: 26902 ;; Flags: qr cd QUERY: 1; ANSWER: 0; AUTHORITY: 0; ADDITIONAL: 1 ;; EDNS PSEUDOSECTION: ;; Version: 0; flags: do; UDP size: 1232 B; ext-rcode: Unused ;; QUESTION SECTION spam.molax.co.kr. A ;; ADDITIONAL SECTION [65536.17][iter] <= rcode: FORMERR
policy.add()returns reference to the added rule, so you can track it that way.
kr_request, so it contains e.g.
.qsource.addrwhich is the requestor's address (as C structure;
== nilfor internal ones)
-- start of config snippet function LOG_IP(state, req) req = kres.request_t(req) if req.qsource == nil or req.qsource.addr == nil then -- internal request, no source return state end print('query from IP ' .. tostring(req.qsource.addr)) return -- continue with other policy rules end policy.add(policy.all(LOG_IP)) -- end of config snipper