1 ; Test subnet option in combination with dnssec
2 ; Client asks for subnet data
5 trust-anchor: "example.com. 3600 IN DS 2854 3 1 46e4ffc6e9a4793b488954bd3f0cc6af0dfb201b"
6 val-override-date: "20070916134226"
7 trust-anchor-signaling: no
8 target-fetch-policy: "0 0 0 0 0"
9 send-client-subnet: 1.2.3.4
10 max-client-subnet-ipv4: 17
11 module-config: "subnetcache validator iterator"
16 stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
19 SCENARIO_BEGIN Test validator with positive response
25 MATCH opcode qtype qname ednsdata
31 . IN NS K.ROOT-SERVERS.NET.
34 ;; we expect to receive empty
36 K.ROOT-SERVERS.NET. IN A 193.0.14.129
40 MATCH opcode qtype qname
46 com. IN NS a.gtld-servers.net.
48 a.gtld-servers.net. IN A 192.5.6.30
56 MATCH opcode qtype qname ednsdata
62 com. IN NS a.gtld-servers.net.
65 ;; we expect to receive empty
67 a.gtld-servers.net. IN A 192.5.6.30
71 MATCH opcode qtype qname
77 example.com. IN NS ns.example.com.
79 ns.example.com. IN A 1.2.3.4
87 MATCH opcode qtype qname ednsdata
93 example.com. IN NS ns.example.com.
94 example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
97 ;; we expect to receive empty
99 ns.example.com. IN A 1.2.3.4
100 ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926135752 20070829135752 2854 example.com. MC0CFQCMSWxVehgOQLoYclB9PIAbNP229AIUeH0vNNGJhjnZiqgIOKvs1EhzqAo= ;{id = 2854}
103 ; response to DNSKEY priming query
105 MATCH opcode qtype qname ednsdata
109 example.com. IN DNSKEY
111 example.com. 3600 IN DNSKEY 256 3 3 ALXLUsWqUrY3JYER3T4TBJII s70j+sDS/UT2QRp61SE7S3E EXopNXoFE73JLRmvpi/UrOO/Vz4Se 6wXv/CYCKjGw06U4WRgR YXcpEhJROyNapmdIKSx hOzfLVE1gqA0PweZR8d tY3aNQSRn3sPpwJr6Mi /PqQKAMMrZ9ckJpf1+b QMOOvxgzz2U1GS18b3y ZKcgTMEaJzd/GZYzi/B N2DzQ0MsrSwYXfsNLFO Bbs8PJMW4LYIxeeOe6rUgkWOF 7CC9Dh/dduQ1QrsJhmZAEFfd6ByYV+ ;{id = 2854 (zsk), size = 1688b}
112 example.com. 3600 IN RRSIG DNSKEY 3 2 3600 20070926134802 20070829134802 2854 example.com. MCwCFG1yhRNtTEa3Eno2zhVVuy2EJX3wAhQeLyUp6+UXcpC5qGNu9tkrTEgPUg== ;{id = 2854}
114 example.com. IN NS ns.example.com.
115 example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
118 ;; we expect to receive empty
120 ns.example.com. IN A 1.2.3.4
121 ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926135752 20070829135752 2854 example.com. MC0CFQCMSWxVehgOQLoYclB9PIAbNP229AIUeH0vNNGJhjnZiqgIOKvs1EhzqAo= ;{id = 2854}
124 ; response to query of interest
126 MATCH opcode qtype qname ednsdata
130 www.example.com. IN A
132 www.example.com. IN A 10.20.30.40
133 ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCQMyTjn7WWwpwAR1LlVeLpRgZGuQIUCcJDEkwAuzytTDRlYK7nIMwH1CM= ;{id = 2854}
135 example.com. IN NS ns.example.com.
136 example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
139 ; client is 127.0.0.1
141 00 07 ; option length
143 11 00 ; source mask, scopemask
146 ns.example.com. IN A 1.2.3.4
147 www.example.com. 3600 IN RRSIG A 3 3 3600 20070926134150 20070829134150 2854 example.com. MC0CFC99iE9K5y2WNgI0gFvBWaTi9wm6AhUAoUqOpDtG5Zct+Qr9F3mSdnbc6V4= ;{id = 2854}
154 00 00 01 00 00 01 00 00 ;ID 0
155 00 00 00 01 03 77 77 77 ; www.example.com A? (DO)
156 07 65 78 61 6d 70 6c 65
157 03 63 6f 6d 00 00 01 00
158 01 00 00 29 10 00 00 00
161 00 08 00 07 ; OPC, optlen
162 00 01 11 00 ; ip4, scope 17, source 0
163 7f 00 00 ;127.0.0.0/17
169 ; recursion happens here.
173 REPLY QR RD RA AD NOERROR
175 www.example.com. IN A
177 www.example.com. IN A 10.20.30.40
178 www.example.com. 3600 IN RRSIG A 3 3 3600 20070926134150 20070829134150 2854 example.com. MC0CFC99iE9K5y2WNgI0gFvBWaTi9wm6AhUAoUqOpDtG5Zct+Qr9F3mSdnbc6V4= ;{id = 2854}
180 example.com. IN NS ns.example.com.
181 example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
184 ; client is 127.0.0.1
186 00 07 ; option length
188 11 00 ; source mask, scopemask
191 ns.example.com. IN A 1.2.3.4
192 ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCQMyTjn7WWwpwAR1LlVeLpRgZGuQIUCcJDEkwAuzytTDRlYK7nIMwH1CM= ;{id = 2854}