Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

RPZ zone load failure ran out of space

199 views
Skip to first unread message

Jim Yang

unread,
Jun 28, 2017, 3:44:32 PM6/28/17
to bind-...@lists.isc.org

Hi,

 

In the example below, when the length of bad.domain.com reaches 241 bytes, named-checkconf reports the following error:

 

“zone db.rpz.zone/IN: loading from master file db.rpz.zone failed: ran out of space

_default/db.rpz.zone/IN: ran out of space”

 

As per RFC1035, the DNS name maximum length is 255 bytes and each label length limit is 63 bytes.

 

I wonder what is the maximum length for bad.domain.com in the RPZ zone?

 

$ORIGIN rpz.example.com.

      $TTL 1H

      @               SOA LOCALHOST. named-mgr.example.com (1 1h 15m 30d 2h)

                      NS  LOCALHOST.

 

      ; QNAME policy records.

      ; Note: There are no periods (.) after the (relativised) owner names.

 

bad.domain.com      A       10.0.0.1      ; redirect to walled garden

                          AAAA    2001:2::1

 

Thanks,

Jim

Bob Harold

unread,
Jun 28, 2017, 4:38:11 PM6/28/17
to Jim Yang, bind-...@lists.isc.org
I just hit the same problem (we probably use the same block list source).
The actual DNS name is the combination of the ORIGIN and the entry:
bad.domain.com.rpz.example.com.
which exceeds 255 characters including the trailing dot, most likely.

--
Bob Harold


Jim Yang

unread,
Jun 28, 2017, 6:29:09 PM6/28/17
to Bob Harold, bind-...@lists.isc.org

Hi Bob,


Thank you for the explanation. It makes sense to me now.


Best,

Jim


From: Bob Harold <rhar...@umich.edu>
Sent: Wednesday, June 28, 2017 4:38 PM
To: Jim Yang
Cc: bind-...@lists.isc.org
Subject: Re: RPZ zone load failure ran out of space
 
0 new messages