Updated Configuration (markdown)

dn42 wiki commited 2019-06-02 10:13:31 +0000 commit 74b4af0f162f809c3aac6475e5d7647e9a12b697

services/dns/Configuration.md

@@ -5,7 +5,7 @@ Configuration of common resolver softwares, to forward DNS queries for `.dn42` (

 ## BIND

 If you already run a local DNS server, you can tell it to query the dn42 anycast servers for the relevant domains

-by adding the following to /etc/bind/named.conf.local 

+by adding the following to /etc/bind/named.conf.local

 ```

 zone "dn42" {

@@ -26,6 +26,8 @@ zone "23.172.in-addr.arpa" {

 };

 ```

+**Note**: With DNSSEC enabled, bind might refuse to accept query results from the dn42 zone: `validating dn42/SOA: got insecure response; parent indicates it should be secure`.

+

 ## dnsmasq

 If you are running dnsmasq under openwrt, you just have to add

...	...	@@ -5,7 +5,7 @@ Configuration of common resolver softwares, to forward DNS queries for `.dn42` (
5	5	## BIND
6	6
7	7	If you already run a local DNS server, you can tell it to query the dn42 anycast servers for the relevant domains
8		-by adding the following to /etc/bind/named.conf.local
	8	+by adding the following to /etc/bind/named.conf.local
9	9
10	10	```
11	11	zone "dn42" {
...	...	@@ -26,6 +26,8 @@ zone "23.172.in-addr.arpa" {
26	26	};
27	27	```
28	28
	29	+Note: With DNSSEC enabled, bind might refuse to accept query results from the dn42 zone: `validating dn42/SOA: got insecure response; parent indicates it should be secure`.
	30	+
29	31	## dnsmasq
30	32
31	33	If you are running dnsmasq under openwrt, you just have to add