]> git.saurik.com Git - apple/network_cmds.git/blob - unbound/testdata/dlv_remove_pos.rpl
projects / apple / network_cmds.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
network_cmds-596.100.2.tar.gz
[apple/network_cmds.git] / unbound / testdata / dlv_remove_pos.rpl
1 ; config options
2 ; The island of trust is at example.com
3 server:
4 dlv-anchor: "dlv.example.net. 3600 IN DS 2854 3 1 46e4ffc6e9a4793b488954bd3f0cc6af0dfb201b"
5 trust-anchor: "example.com. 3600 IN DS 2854 3 1 46e4ffc6e9a4793b488954bd3f0cc6af0dfb201b"
6 val-override-date: "20070916134226"
7 target-fetch-policy: "0 0 0 0 0"
8
9 stub-zone:
10 name: "."
11 stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
12 CONFIG_END
13
14 SCENARIO_BEGIN Test validator with DLV removed for positive anchored response
15 ; So the destination has a valid DNSSEC chain of trust to the root,
16 ; but the configured dlv anchor fails.
17
18 ; K.ROOT-SERVERS.NET.
19 RANGE_BEGIN 0 100
20 ADDRESS 193.0.14.129
21 ENTRY_BEGIN
22 MATCH opcode qtype qname
23 ADJUST copy_id
24 REPLY QR NOERROR
25 SECTION QUESTION
26 . IN NS
27 SECTION ANSWER
28 . IN NS K.ROOT-SERVERS.NET.
29 SECTION ADDITIONAL
30 K.ROOT-SERVERS.NET. IN A 193.0.14.129
31 ENTRY_END
32
33 ENTRY_BEGIN
34 MATCH opcode qtype qname
35 ADJUST copy_id
36 REPLY QR NOERROR
37 SECTION QUESTION
38 www.example.com. IN A
39 SECTION AUTHORITY
40 com. IN NS a.gtld-servers.net.
41 SECTION ADDITIONAL
42 a.gtld-servers.net. IN A 192.5.6.30
43 ENTRY_END
44
45 ; this covers dlv.example.net and thus makes it servfail (unusable).
46 ENTRY_BEGIN
47 MATCH opcode subdomain
48 ADJUST copy_id copy_query
49 REPLY QR SERVFAIL
50 SECTION QUESTION
51 net. IN NS
52 ENTRY_END
53
54 RANGE_END
55
56 ; a.gtld-servers.net.
57 RANGE_BEGIN 0 100
58 ADDRESS 192.5.6.30
59 ENTRY_BEGIN
60 MATCH opcode qtype qname
61 ADJUST copy_id
62 REPLY QR NOERROR
63 SECTION QUESTION
64 com. IN NS
65 SECTION ANSWER
66 com. IN NS a.gtld-servers.net.
67 SECTION ADDITIONAL
68 a.gtld-servers.net. IN A 192.5.6.30
69 ENTRY_END
70
71 ENTRY_BEGIN
72 MATCH opcode qtype qname
73 ADJUST copy_id
74 REPLY QR NOERROR
75 SECTION QUESTION
76 www.example.com. IN A
77 SECTION AUTHORITY
78 example.com. IN NS ns.example.com.
79 SECTION ADDITIONAL
80 ns.example.com. IN A 1.2.3.4
81 ENTRY_END
82 RANGE_END
83
84 ; ns.example.com.
85 RANGE_BEGIN 0 100
86 ADDRESS 1.2.3.4
87 ENTRY_BEGIN
88 MATCH opcode qtype qname
89 ADJUST copy_id
90 REPLY QR NOERROR
91 SECTION QUESTION
92 example.com. IN NS
93 SECTION ANSWER
94 example.com. IN NS ns.example.com.
95 example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
96 SECTION ADDITIONAL
97 ns.example.com. IN A 1.2.3.4
98 ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926135752 20070829135752 2854 example.com. MC0CFQCMSWxVehgOQLoYclB9PIAbNP229AIUeH0vNNGJhjnZiqgIOKvs1EhzqAo= ;{id = 2854}
99 ENTRY_END
100
101 ; response to DNSKEY priming query
102 ENTRY_BEGIN
103 MATCH opcode qtype qname
104 ADJUST copy_id
105 REPLY QR NOERROR
106 SECTION QUESTION
107 example.com. IN DNSKEY
108 SECTION ANSWER
109 example.com. 3600 IN DNSKEY 256 3 3 ALXLUsWqUrY3JYER3T4TBJII s70j+sDS/UT2QRp61SE7S3E EXopNXoFE73JLRmvpi/UrOO/Vz4Se 6wXv/CYCKjGw06U4WRgR YXcpEhJROyNapmdIKSx hOzfLVE1gqA0PweZR8d tY3aNQSRn3sPpwJr6Mi /PqQKAMMrZ9ckJpf1+b QMOOvxgzz2U1GS18b3y ZKcgTMEaJzd/GZYzi/B N2DzQ0MsrSwYXfsNLFO Bbs8PJMW4LYIxeeOe6rUgkWOF 7CC9Dh/dduQ1QrsJhmZAEFfd6ByYV+ ;{id = 2854 (zsk), size = 1688b}
110 example.com. 3600 IN RRSIG DNSKEY 3 2 3600 20070926134802 20070829134802 2854 example.com. MCwCFG1yhRNtTEa3Eno2zhVVuy2EJX3wAhQeLyUp6+UXcpC5qGNu9tkrTEgPUg== ;{id = 2854}
111 SECTION AUTHORITY
112 example.com. IN NS ns.example.com.
113 example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
114 SECTION ADDITIONAL
115 ns.example.com. IN A 1.2.3.4
116 ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926135752 20070829135752 2854 example.com. MC0CFQCMSWxVehgOQLoYclB9PIAbNP229AIUeH0vNNGJhjnZiqgIOKvs1EhzqAo= ;{id = 2854}
117 ENTRY_END
118
119 ; response to query of interest
120 ENTRY_BEGIN
121 MATCH opcode qtype qname
122 ADJUST copy_id
123 REPLY QR NOERROR
124 SECTION QUESTION
125 www.example.com. IN A
126 SECTION ANSWER
127 www.example.com. IN A 10.20.30.40
128 ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCQMyTjn7WWwpwAR1LlVeLpRgZGuQIUCcJDEkwAuzytTDRlYK7nIMwH1CM= ;{id = 2854}
129 SECTION AUTHORITY
130 example.com. IN NS ns.example.com.
131 example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
132 SECTION ADDITIONAL
133 ns.example.com. IN A 1.2.3.4
134 www.example.com. 3600 IN RRSIG A 3 3 3600 20070926134150 20070829134150 2854 example.com. MC0CFC99iE9K5y2WNgI0gFvBWaTi9wm6AhUAoUqOpDtG5Zct+Qr9F3mSdnbc6V4= ;{id = 2854}
135 ENTRY_END
136 RANGE_END
137
138 STEP 1 QUERY
139 ENTRY_BEGIN
140 REPLY RD DO
141 SECTION QUESTION
142 www.example.com. IN A
143 ENTRY_END
144
145 ; recursion happens here.
146 STEP 10 CHECK_ANSWER
147 ENTRY_BEGIN
148 MATCH all
149 REPLY QR RD RA AD DO NOERROR
150 SECTION QUESTION
151 www.example.com. IN A
152 SECTION ANSWER
153 www.example.com. IN A 10.20.30.40
154 www.example.com. 3600 IN RRSIG A 3 3 3600 20070926134150 20070829134150 2854 example.com. MC0CFC99iE9K5y2WNgI0gFvBWaTi9wm6AhUAoUqOpDtG5Zct+Qr9F3mSdnbc6V4= ;{id = 2854}
155 SECTION AUTHORITY
156 example.com. IN NS ns.example.com.
157 example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
158 SECTION ADDITIONAL
159 ns.example.com. IN A 1.2.3.4
160 ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCQMyTjn7WWwpwAR1LlVeLpRgZGuQIUCcJDEkwAuzytTDRlYK7nIMwH1CM= ;{id = 2854}
161 ENTRY_END
162
163 SCENARIO_END
mirror of network_cmds