DNS/CnameZone/kresdについて、ここに記述してください。
もとの設定が間違いだから、こういう返事で妥協するというのはあり得る。
- unboundよりはましだ。
-- ToshinoriMaeno 2015-12-05 08:56:54
実装が対応できるなら(十分可能)、zone apexにCNAMEもかまわないと思える。 -- ToshinoriMaeno 2015-12-06 00:04:54
$ kdig oss.jp @127.0.0.3
;; ->>HEADER<<- opcode: QUERY; status: NOERROR; id: 57946 ;; Flags: qr rd ra; QUERY: 1; ANSWER: 3; AUTHORITY: 0; ADDITIONAL: 0 ;; QUESTION SECTION: ;; oss.jp. IN A ;; ANSWER SECTION: oss.jp. 86400 IN CNAME oss.jp.s3-website-ap-northeast-1.amazonaws.com. oss.jp.s3-website-ap-northeast-1.amazonaws.com. 60 IN CNAME s3-website-ap-northeast-1.amazonaws.com. s3-website-ap-northeast-1.amazonaws.com. 5 IN A 54.231.228.12 ;; Received 199 B ;; Time 2015-12-05 17:54:48 JST ;; From 127.0.0.3@53(UDP) in 1107.1 ms
$ kdig -t ns oss.jp @127.0.0.3
;; ->>HEADER<<- opcode: QUERY; status: NOERROR; id: 3914 ;; Flags: qr rd ra; QUERY: 1; ANSWER: 2; AUTHORITY: 0; ADDITIONAL: 0 ;; QUESTION SECTION: ;; oss.jp. IN NS ;; ANSWER SECTION: oss.jp. 86390 IN NS ns1.todo.ne.jp. oss.jp. 86390 IN NS ns2.todo.ne.jp. ;; Received 68 B ;; Time 2015-12-05 17:54:57 JST ;; From 127.0.0.3@53(UDP) in 0.3 ms
1. cname query
$ kdig -t cname oss.jp @127.0.0.3
;; ->>HEADER<<- opcode: QUERY; status: NOERROR; id: 4410 ;; Flags: qr rd ra; QUERY: 1; ANSWER: 1; AUTHORITY: 0; ADDITIONAL: 0 ;; QUESTION SECTION: ;; oss.jp. IN CNAME ;; ANSWER SECTION: oss.jp. 85452 IN CNAME oss.jp.s3-website-ap-northeast-1.amazonaws.com. ;; Received 84 B ;; Time 2015-12-05 18:10:35 JST ;; From 127.0.0.3@53(UDP) in 0.2 ms
2. log
[plan] plan 'oss.jp.' type 'NS' [ rc ] => satisfied from cache [iter] <= rcode: NOERROR [resl] finished: 4, queries: 1, mempool: 32800 B [plan] plan 'oss.jp.' type 'CNAME' [ rc ] => satisfied from cache [iter] <= rcode: NOERROR [resl] finished: 4, queries: 1, mempool: 32800 B