Maintained by: NLnet Labs

[Unbound-users] On returning SERVFAIL for too-short EDNS

Florian Weimer
Tue May 4 14:10:10 CEST 2010


* Alexander E. Patrakov:

> This seems strange, for the following reason. The condition for this
> SERVFAIL is entirely user-triggerable. Some DNS forwarders (e.g.,
> dnsmasq) count the number of the received SERVFAILs for each configured
> upstream server and thus judge about its health.

This approach is quite wrong because recursors return SERVFAIL in many
other cases, dependent on the query and upstream answers received and
mostly unrelated to general server health.