1 ; config options 2 server: 3 target-fetch-policy: "0 0 0 0 0" 4 minimal-responses: no 5 iter-scrub-promiscuous: no 6 rrset-roundrobin: no 7 8 stub-zone: 9 name: "." 10 stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET. 11 CONFIG_END 12 13 SCENARIO_BEGIN Test detection of RA but no AA lameness 14 ; in this scenario mistakenly, a recursive server is deployed, instead 15 ; of an authoritative server. It gives answers from cache. 16 ; However, unbound is doing recursion on behalf of its client, and does 17 ; not trust the server to do so. 18 19 ; K.ROOT-SERVERS.NET. 20 RANGE_BEGIN 0 100 21 ADDRESS 193.0.14.129 22 ENTRY_BEGIN 23 MATCH opcode qtype qname 24 ADJUST copy_id 25 REPLY QR NOERROR 26 SECTION QUESTION 27 . IN NS 28 SECTION ANSWER 29 . IN NS K.ROOT-SERVERS.NET. 30 SECTION ADDITIONAL 31 K.ROOT-SERVERS.NET. IN A 193.0.14.129 32 ENTRY_END 33 34 ENTRY_BEGIN 35 MATCH opcode subdomain 36 ADJUST copy_id copy_query 37 REPLY QR NOERROR 38 SECTION QUESTION 39 com. IN A 40 SECTION AUTHORITY 41 com. IN NS a.gtld-servers.net. 42 SECTION ADDITIONAL 43 a.gtld-servers.net. IN A 192.5.6.30 44 ENTRY_END 45 46 ENTRY_BEGIN 47 MATCH opcode subdomain 48 ADJUST copy_id copy_query 49 REPLY QR NOERROR 50 SECTION QUESTION 51 net. IN A 52 SECTION AUTHORITY 53 net. IN NS e.gtld-servers.net. 54 SECTION ADDITIONAL 55 e.gtld-servers.net. IN A 192.12.94.30 56 ENTRY_END 57 RANGE_END 58 59 ; a.gtld-servers.net. 60 RANGE_BEGIN 0 100 61 ADDRESS 192.5.6.30 62 ENTRY_BEGIN 63 MATCH opcode qtype qname 64 ADJUST copy_id 65 REPLY QR NOERROR 66 SECTION QUESTION 67 com. IN NS 68 SECTION ANSWER 69 com. IN NS a.gtld-servers.net. 70 SECTION ADDITIONAL 71 a.gtld-servers.net. IN A 192.5.6.30 72 ENTRY_END 73 74 ENTRY_BEGIN 75 MATCH opcode subdomain 76 ADJUST copy_id copy_query 77 REPLY QR NOERROR 78 SECTION QUESTION 79 example.com. IN A 80 SECTION AUTHORITY 81 example.com. IN NS ns.example.com. 82 example.com. IN NS ns.example.net. 83 SECTION ADDITIONAL 84 ; this entry; glue will make unbound take this reference first. 85 ; it is however, the lame server. 86 ns.example.com. IN A 1.2.3.55 87 ENTRY_END 88 RANGE_END 89 90 ; e.gtld-servers.net. 91 RANGE_BEGIN 0 100 92 ADDRESS 192.12.94.30 93 ENTRY_BEGIN 94 MATCH opcode qtype qname 95 ADJUST copy_id 96 REPLY QR NOERROR 97 SECTION QUESTION 98 net. IN NS 99 SECTION ANSWER 100 net. IN NS e.gtld-servers.net. 101 SECTION ADDITIONAL 102 e.gtld-servers.net. IN A 192.12.94.30 103 ENTRY_END 104 105 ENTRY_BEGIN 106 MATCH opcode subdomain 107 ADJUST copy_id copy_query 108 REPLY QR NOERROR 109 SECTION QUESTION 110 example.net. IN A 111 SECTION AUTHORITY 112 example.net. IN NS ns.example.net. 113 SECTION ADDITIONAL 114 ns.example.net. IN A 1.2.3.44 115 ENTRY_END 116 RANGE_END 117 118 ; ns.example.net. 119 RANGE_BEGIN 0 100 120 ADDRESS 1.2.3.44 121 ENTRY_BEGIN 122 MATCH opcode qtype qname 123 ADJUST copy_id 124 REPLY QR NOERROR 125 SECTION QUESTION 126 example.net. IN NS 127 SECTION ANSWER 128 example.net. IN NS ns.example.net. 129 SECTION ADDITIONAL 130 ns.example.net. IN A 1.2.3.44 131 ENTRY_END 132 133 ENTRY_BEGIN 134 MATCH opcode qtype qname 135 ADJUST copy_id 136 REPLY QR AA NOERROR 137 SECTION QUESTION 138 example.com. IN NS 139 SECTION ANSWER 140 example.com. IN NS ns.example.com. 141 example.com. IN NS ns.example.net. 142 SECTION ADDITIONAL 143 ns.example.net IN A 1.2.3.44 144 ENTRY_END 145 146 ENTRY_BEGIN 147 MATCH opcode qtype qname 148 ADJUST copy_id 149 REPLY QR NOERROR 150 SECTION QUESTION 151 ns.example.net. IN A 152 SECTION ANSWER 153 ns.example.net. IN A 1.2.3.44 154 SECTION AUTHORITY 155 example.net. IN NS ns.example.net. 156 ENTRY_END 157 158 ENTRY_BEGIN 159 MATCH opcode qtype qname 160 ADJUST copy_id 161 REPLY QR NOERROR 162 SECTION QUESTION 163 ns.example.com. IN A 164 SECTION ANSWER 165 ns.example.com. IN A 1.2.3.55 166 ENTRY_END 167 168 ENTRY_BEGIN 169 MATCH opcode qtype qname 170 ADJUST copy_id 171 REPLY QR NOERROR 172 SECTION QUESTION 173 ns.example.net. IN AAAA 174 SECTION AUTHORITY 175 example.net. IN NS ns.example.net. 176 SECTION ADDITIONAL 177 www.example.net. IN A 1.2.3.44 178 ENTRY_END 179 180 ENTRY_BEGIN 181 MATCH opcode qtype qname 182 ADJUST copy_id 183 REPLY QR AA NOERROR 184 SECTION QUESTION 185 www.example.com. IN A 186 SECTION ANSWER 187 www.example.com. IN A 10.20.30.40 188 SECTION AUTHORITY 189 example.com. IN NS ns.example.com. 190 example.com. IN NS ns.example.net. 191 SECTION ADDITIONAL 192 ns.example.net IN A 1.2.3.44 193 ENTRY_END 194 195 ENTRY_BEGIN 196 MATCH opcode qtype qname 197 ADJUST copy_id 198 REPLY QR NOERROR 199 SECTION QUESTION 200 ns.example.com. IN AAAA 201 SECTION ANSWER 202 SECTION AUTHORITY 203 example.com. IN SOA ns.example.com. root.example.com. 4 14400 3600 604800 3600 204 ENTRY_END 205 206 RANGE_END 207 208 ; ns.example.com. 209 RANGE_BEGIN 0 100 210 ADDRESS 1.2.3.55 211 ENTRY_BEGIN 212 MATCH opcode qtype qname 213 ADJUST copy_id 214 REPLY QR AA NOERROR 215 SECTION QUESTION 216 example.com. IN NS 217 SECTION ANSWER 218 example.com. IN NS ns.example.com. 219 example.com. IN NS ns.example.net. 220 SECTION ADDITIONAL 221 ns.example.com. IN A 1.2.3.55 222 ENTRY_END 223 224 ENTRY_BEGIN 225 MATCH opcode qtype qname 226 ADJUST copy_id 227 REPLY QR NOERROR 228 SECTION QUESTION 229 ns.example.com. IN A 230 SECTION ANSWER 231 ns.example.com. IN A 1.2.3.55 232 ENTRY_END 233 234 ENTRY_BEGIN 235 MATCH opcode qtype qname 236 ADJUST copy_id 237 REPLY QR NOERROR 238 SECTION QUESTION 239 ns.example.com. IN AAAA 240 SECTION ANSWER 241 SECTION AUTHORITY 242 example.com. IN SOA ns.example.com. root.example.com. 4 14400 3600 604800 3600 243 ENTRY_END 244 245 ENTRY_BEGIN 246 MATCH opcode qtype qname 247 ADJUST copy_id 248 REPLY QR NOERROR 249 SECTION QUESTION 250 ns.example.net. IN AAAA 251 SECTION AUTHORITY 252 example.net. IN SOA ns.example.com. root.example.com. 4 14400 3600 604800 3600 253 ENTRY_END 254 255 ; the lame response. 256 ENTRY_BEGIN 257 MATCH opcode qtype qname 258 ADJUST copy_id 259 REPLY QR RA NOERROR 260 SECTION QUESTION 261 www.example.com. IN A 262 SECTION ANSWER 263 ; the wrong answer. 264 www.example.com. IN A 10.20.30.50 265 SECTION AUTHORITY 266 example.com. IN NS ns.example.com. 267 example.com. IN NS ns.example.net. 268 SECTION ADDITIONAL 269 ns.example.com. IN A 1.2.3.55 270 ENTRY_END 271 RANGE_END 272 273 STEP 1 QUERY 274 ENTRY_BEGIN 275 REPLY RD 276 SECTION QUESTION 277 www.example.com. IN A 278 ENTRY_END 279 280 ; recursion happens here. 281 STEP 20 CHECK_ANSWER 282 ENTRY_BEGIN 283 MATCH all 284 REPLY QR RD RA NOERROR 285 SECTION QUESTION 286 www.example.com. IN A 287 SECTION ANSWER 288 www.example.com. IN A 10.20.30.40 289 SECTION AUTHORITY 290 example.com. IN NS ns.example.com. 291 example.com. IN NS ns.example.net. 292 ; scrubbed off 293 ;SECTION ADDITIONAL 294 ;ns.example.net IN A 1.2.3.44 295 ENTRY_END 296 297 ; query still pending 298 STEP 30 QUERY 299 ENTRY_BEGIN 300 REPLY RD 301 SECTION QUESTION 302 ns.example.net. IN AAAA 303 ENTRY_END 304 305 ; query still pending 306 STEP 40 CHECK_ANSWER 307 ENTRY_BEGIN 308 REPLY RD RA 309 SECTION QUESTION 310 ENTRY_END 311 312 SCENARIO_END 313
Indexes created Mon Jun 01 00:24:59 UTC 2026