[Dnssec-deployment] No wildcard RR in the response
Mohan Parthasarathy
suruti94 at gmail.com
Fri Nov 18 17:10:00 EST 2011
On Fri, Nov 18, 2011 at 12:34 PM, Paul Wouters <paul at xelerance.com> wrote:
> On Fri, 18 Nov 2011, Mohan Parthasarathy wrote:
>
>> dig ptr www.cw.test.itec-usa.com +dnssec @75.75.75.75 +cd=1
>>
>> ; <<>> DiG 9.7.3-P3 <<>> ptr www.cw.test.itec-usa.com +dnssec @75.75.75.75
>> +cd=1
>
>> dig ptr www.cw.test.itec-usa.com +dnssec @75.75.75.75
>>
>> ; <<>> DiG 9.7.3-P3 <<>> ptr www.cw.test.itec-usa.com +dnssec
>> @149.20.64.20
>
> Can you make sure you are checking the same server? Seems you pasted some
> output
> wrong because you claim to use @75.75.75.75 but it really used @149.20.64.20
>
> I cannot query @75.75.75.75, but @149.20.64.20 responds with the wildcard
> both with and without the CD bit set.
>
You are right. I did not try 149.20.64.20 before. So, Comcast has a
broken implementation ? Or is this something to do with CNAME
wildcards ?
thanks
-mohan
> Paul
>
More information about the Dnssec-deployment
mailing list