]> git.saurik.com Git - apple/network_cmds.git/blame - unbound/testdata/dlv_remove_pos.rpl
projects / apple / network_cmds.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
network_cmds-596.100.2.tar.gz
[apple/network_cmds.git] / unbound / testdata / dlv_remove_pos.rpl
CommitLineData
89c4ed63
A		 1; config options
2; The island of trust is at example.com
3server:
4 dlv-anchor: "dlv.example.net. 3600 IN DS 2854 3 1 46e4ffc6e9a4793b488954bd3f0cc6af0dfb201b"
5 trust-anchor: "example.com. 3600 IN DS 2854 3 1 46e4ffc6e9a4793b488954bd3f0cc6af0dfb201b"
6 val-override-date: "20070916134226"
7 target-fetch-policy: "0 0 0 0 0"
8
9stub-zone:
10 name: "."
11 stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
12CONFIG_END
13
14SCENARIO_BEGIN Test validator with DLV removed for positive anchored response
15; So the destination has a valid DNSSEC chain of trust to the root,
16; but the configured dlv anchor fails.
17
18; K.ROOT-SERVERS.NET.
19RANGE_BEGIN 0 100
20 ADDRESS 193.0.14.129
21ENTRY_BEGIN
22MATCH opcode qtype qname
23ADJUST copy_id
24REPLY QR NOERROR
25SECTION QUESTION
26. IN NS
27SECTION ANSWER
28. IN NS K.ROOT-SERVERS.NET.
29SECTION ADDITIONAL
30K.ROOT-SERVERS.NET. IN A 193.0.14.129
31ENTRY_END
32
33ENTRY_BEGIN
34MATCH opcode qtype qname
35ADJUST copy_id
36REPLY QR NOERROR
37SECTION QUESTION
38www.example.com. IN A
39SECTION AUTHORITY
40com. IN NS a.gtld-servers.net.
41SECTION ADDITIONAL
42a.gtld-servers.net. IN A 192.5.6.30
43ENTRY_END
44
45; this covers dlv.example.net and thus makes it servfail (unusable).
46ENTRY_BEGIN
47MATCH opcode subdomain
48ADJUST copy_id copy_query
49REPLY QR SERVFAIL
50SECTION QUESTION
51net. IN NS
52ENTRY_END
53
54RANGE_END
55
56; a.gtld-servers.net.
57RANGE_BEGIN 0 100
58 ADDRESS 192.5.6.30
59ENTRY_BEGIN
60MATCH opcode qtype qname
61ADJUST copy_id
62REPLY QR NOERROR
63SECTION QUESTION
64com. IN NS
65SECTION ANSWER
66com. IN NS a.gtld-servers.net.
67SECTION ADDITIONAL
68a.gtld-servers.net. IN A 192.5.6.30
69ENTRY_END
70
71ENTRY_BEGIN
72MATCH opcode qtype qname
73ADJUST copy_id
74REPLY QR NOERROR
75SECTION QUESTION
76www.example.com. IN A
77SECTION AUTHORITY
78example.com. IN NS ns.example.com.
79SECTION ADDITIONAL
80ns.example.com. IN A 1.2.3.4
81ENTRY_END
82RANGE_END
83
84; ns.example.com.
85RANGE_BEGIN 0 100
86 ADDRESS 1.2.3.4
87ENTRY_BEGIN
88MATCH opcode qtype qname
89ADJUST copy_id
90REPLY QR NOERROR
91SECTION QUESTION
92example.com. IN NS
93SECTION ANSWER
94example.com. IN NS ns.example.com.
95example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
96SECTION ADDITIONAL
97ns.example.com. IN A 1.2.3.4
98ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926135752 20070829135752 2854 example.com. MC0CFQCMSWxVehgOQLoYclB9PIAbNP229AIUeH0vNNGJhjnZiqgIOKvs1EhzqAo= ;{id = 2854}
99ENTRY_END
100
101; response to DNSKEY priming query
102ENTRY_BEGIN
103MATCH opcode qtype qname
104ADJUST copy_id
105REPLY QR NOERROR
106SECTION QUESTION
107example.com. IN DNSKEY
108SECTION ANSWER
109example.com. 3600 IN DNSKEY 256 3 3 ALXLUsWqUrY3JYER3T4TBJII s70j+sDS/UT2QRp61SE7S3E EXopNXoFE73JLRmvpi/UrOO/Vz4Se 6wXv/CYCKjGw06U4WRgR YXcpEhJROyNapmdIKSx hOzfLVE1gqA0PweZR8d tY3aNQSRn3sPpwJr6Mi /PqQKAMMrZ9ckJpf1+b QMOOvxgzz2U1GS18b3y ZKcgTMEaJzd/GZYzi/B N2DzQ0MsrSwYXfsNLFO Bbs8PJMW4LYIxeeOe6rUgkWOF 7CC9Dh/dduQ1QrsJhmZAEFfd6ByYV+ ;{id = 2854 (zsk), size = 1688b}
110example.com. 3600 IN RRSIG DNSKEY 3 2 3600 20070926134802 20070829134802 2854 example.com. MCwCFG1yhRNtTEa3Eno2zhVVuy2EJX3wAhQeLyUp6+UXcpC5qGNu9tkrTEgPUg== ;{id = 2854}
111SECTION AUTHORITY
112example.com. IN NS ns.example.com.
113example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
114SECTION ADDITIONAL
115ns.example.com. IN A 1.2.3.4
116ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926135752 20070829135752 2854 example.com. MC0CFQCMSWxVehgOQLoYclB9PIAbNP229AIUeH0vNNGJhjnZiqgIOKvs1EhzqAo= ;{id = 2854}
117ENTRY_END
118
119; response to query of interest
120ENTRY_BEGIN
121MATCH opcode qtype qname
122ADJUST copy_id
123REPLY QR NOERROR
124SECTION QUESTION
125www.example.com. IN A
126SECTION ANSWER
127www.example.com. IN A 10.20.30.40
128ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCQMyTjn7WWwpwAR1LlVeLpRgZGuQIUCcJDEkwAuzytTDRlYK7nIMwH1CM= ;{id = 2854}
129SECTION AUTHORITY
130example.com. IN NS ns.example.com.
131example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
132SECTION ADDITIONAL
133ns.example.com. IN A 1.2.3.4
134www.example.com. 3600 IN RRSIG A 3 3 3600 20070926134150 20070829134150 2854 example.com. MC0CFC99iE9K5y2WNgI0gFvBWaTi9wm6AhUAoUqOpDtG5Zct+Qr9F3mSdnbc6V4= ;{id = 2854}
135ENTRY_END
136RANGE_END
137
138STEP 1 QUERY
139ENTRY_BEGIN
140REPLY RD DO
141SECTION QUESTION
142www.example.com. IN A
143ENTRY_END
144
145; recursion happens here.
146STEP 10 CHECK_ANSWER
147ENTRY_BEGIN
148MATCH all
149REPLY QR RD RA AD DO NOERROR
150SECTION QUESTION
151www.example.com. IN A
152SECTION ANSWER
153www.example.com. IN A 10.20.30.40
154www.example.com. 3600 IN RRSIG A 3 3 3600 20070926134150 20070829134150 2854 example.com. MC0CFC99iE9K5y2WNgI0gFvBWaTi9wm6AhUAoUqOpDtG5Zct+Qr9F3mSdnbc6V4= ;{id = 2854}
155SECTION AUTHORITY
156example.com. IN NS ns.example.com.
157example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
158SECTION ADDITIONAL
159ns.example.com. IN A 1.2.3.4
160ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCQMyTjn7WWwpwAR1LlVeLpRgZGuQIUCcJDEkwAuzytTDRlYK7nIMwH1CM= ;{id = 2854}
161ENTRY_END
162
163SCENARIO_END
mirror of network_cmds