В моей настройке локальный сервер Bind9 пересылает DNS-запросы в Cloudflare (1.1.1.1) с активированным DNSSEC. Мой syslog показывает много записей тайм-аута для известных доменных имен (например, adobe.com):
Apr 28 19:39:01 myserver named[756]: timed out resolving 'adobeid-na1.services.adobe.com/HTTPS/IN': 1.1.1.1#53
Apr 28 19:39:03 myserver named[756]: timed out resolving 'adobelogin.com/HTTPS/IN': 1.1.1.1#53
Apr 28 19:39:04 myserver named[756]: timed out resolving 'www.adobe.com/HTTPS/IN': 1.1.1.1#53
Apr 28 19:39:04 myserver named[756]: timed out resolving 'ims-na1.adobelogin.com/HTTPS/IN': 1.1.1.1#53
Apr 28 19:39:04 myserver named[756]: timed out resolving 'sstats.adobe.com/HTTPS/IN': 1.1.1.1#53
Apr 28 19:39:04 myserver named[756]: timed out resolving 'auth.services.adobe.com/HTTPS/IN': 1.1.1.1#53
Apr 28 19:39:04 myserver named[756]: timed out resolving 'geo2.adobe.com/HTTPS/IN': 1.1.1.1#53
Apr 28 19:39:05 myserver named[756]: timed out resolving 'images-tv.adobe.com/HTTPS/IN': 1.1.1.1#53
Apr 28 19:42:46 myserver named[756]: timed out resolving 'adobeid-na1.services.adobe.com/HTTPS/IN': 1.1.1.1#53
Apr 28 19:42:46 myserver named[756]: timed out resolving 'ims-na1.adobelogin.com/HTTPS/IN': 1.1.1.1#53
Apr 28 19:42:46 myserver named[756]: timed out resolving 'auth.services.adobe.com/HTTPS/IN': 1.1.1.1#53
но доменные имена корректно разрешаются с nslookup. Что здесь происходит?
Спасибо, Ян.