On Fri, 16 Dec 2005 12:33:49 +0100, Daniel Lorch daniel@lorch.cc said:
But this is completely independent of the checks performed by the domain name registry.
Is AXFR a requirement or not? Your FAQ doesn't say anything, your helpdesk doesn't respond, please, I need to know :)
As has been pointed out to you in this thread already, TCP port 53 is not only used for zone transfers. We do *not* check whether zone transfers are allowed on your servers. What we do check is whether your servers accept regular (non-AXFR/IXFR) queries on top of TCP.
DNS is specified to work over UDP and TCP. A resolver is not strictly required to use UDP for a query. One situation where TCP is used has been described already (after receiving a truncated response).
Note that we don't require anything. The name server check is intended to help the user to determine whether his configuration is likely going to work or not. It does not prevent you from activating your domain (contrary to the old registry system). This particular check informs you that your server will not interoperate with all possible DNS implementations and may prevent certain responses from being received by a resolver without truncation. (I do agree that the tool should supply better explanations, though. I believe this is being worked on).
-- Alex