steamcache-dns running in a network which has firewalled port 53
Expected results
Setting UPSTREAM_DNS to a whitelisted dns server will result in correct dns forwarding and name resolution
Observed results
Due to dnssec-validation auto after receiving a forwarded result bind9 attempts to validate the dns record with the root servers. This requires access to the root zones which are not available due to the port 53 block. Setting dnssec-validation no fixes this behaviour
Suggested Fix
Either disable dnssec-validation permanently or provide an environment variable which allows it to be disabled on a case by case basis.
Issue Description:
Scenario
steamcache-dns running in a network which has firewalled port 53
Expected results
Setting UPSTREAM_DNS to a whitelisted dns server will result in correct dns forwarding and name resolution
Observed results
Due to
dnssec-validation auto
after receiving a forwarded result bind9 attempts to validate the dns record with the root servers. This requires access to the root zones which are not available due to the port 53 block. Settingdnssec-validation no
fixes this behaviourSuggested Fix
Either disable dnssec-validation permanently or provide an environment variable which allows it to be disabled on a case by case basis.
Docker Run Command: