Hi,
I am confused again.
I have DoT set up in unbound but when I go to https://1.1.1.1/help it tells me that I am not using DoT.
If I turn of the validator:
module-config: “iterator”
and run the same test it works as expected.
With the validator enabled I see these errors:
24/09/2019 16:40:07 C:\Program Files\Unbound\unbound.exe[10232:0] info: validation failure 3f3b509c-1a2b-4786-8197-393297541abb.is-cf.cloudflareresolve.com. A IN
24/09/2019 16:40:07 C:\Program Files\Unbound\unbound.exe[10232:0] info: validation failure 3f3b509c-1a2b-4786-8197-393297541abb.is-cf.cloudflareresolve.com. AAAA IN
24/09/2019 16:40:09 C:\Program Files\Unbound\unbound.exe[10232:0] info: validation failure 3f3b509c-1a2b-4786-8197-393297541abb.is-dot.cloudflareresolve.com. A IN
24/09/2019 16:40:09 C:\Program Files\Unbound\unbound.exe[10232:0] info: validation failure 3f3b509c-1a2b-4786-8197-393297541abb.is-dot.cloudflareresolve.com. AAAA IN
If I go here:
https://dnssec-debugger.verisignlabs.com/
and type in any of the above domain names all seems to be in order.
What am I missing?
Thanks