regression-tests.recursor/RPZ/expected_result

   1 ==> arthur.example.net RPZ NXDOMAIN
   2 Reply to question for qname='arthur.example.net.', qtype=A
   3 Rcode: 3 (Non-Existent domain), RD: 1, QR: 1, TC: 0, AA: 0, opcode: 0
   4 ==> www.arthur.example.net RPZ NODATA
   5 Reply to question for qname='www.arthur.example.net.', qtype=A
   6 Rcode: 0 (No Error), RD: 1, QR: 1, TC: 0, AA: 0, opcode: 0
   7 ==> srv.arthur.example.net RPZ passthru
   8 Reply to question for qname='srv.arthur.example.net.', qtype=SRV
   9 Rcode: 0 (No Error), RD: 1, QR: 1, TC: 0, AA: 0, opcode: 0
  10 0       srv.arthur.example.net. 15      IN      SRV     0 100 389 server2.example.net.
  11 ==> www.example.net RPZ local data to www2.example.net
  12 Reply to question for qname='www.example.net.', qtype=A
  13 Rcode: 0 (No Error), RD: 1, QR: 1, TC: 0, AA: 0, opcode: 0
  14 0       www.example.net.        7200    IN      CNAME   www2.example.net.
  15 0       www2.example.net.       15      IN      A       192.0.2.2
  16 ==> www4.example.net RPZ IP trigger action, dropped
  17 ==> trillian.example.net NXDOMAIN
  18 Reply to question for qname='trillian.example.net.', qtype=A
  19 Rcode: 3 (Non-Existent domain), RD: 1, QR: 1, TC: 0, AA: 0, opcode: 0
  20 ==> www.trillian.example.net has no RPZ policy attached, so lookup should succeed
  21 Reply to question for qname='www.trillian.example.net.', qtype=A
  22 Rcode: 0 (No Error), RD: 1, QR: 1, TC: 0, AA: 0, opcode: 0
  23 0       www.trillian.example.net.       15      IN      CNAME   www3.arthur.example.net.
  24 0       www3.arthur.example.net.        15      IN      A       192.0.2.6
  25 ==> www.hijackme.example.net is served on ns.hijackme.example.net, which should be NXDOMAIN
  26 Reply to question for qname='www.hijackme.example.net.', qtype=A
  27 Rcode: 3 (Non-Existent domain), RD: 1, QR: 1, TC: 0, AA: 0, opcode: 0
  28 ==> host.lowercase-outgoing.example.net is served on ns.lowercase-outgoing.example.net, blocked by NS IP rule
  29 Reply to question for qname='host.lowercase-outgoing.example.net.', qtype=A
  30 Rcode: 3 (Non-Existent domain), RD: 1, QR: 1, TC: 0, AA: 0, opcode: 0
  31 ==> capped-ttl.example.net TTL exceeds the maximum TTL for the zone
  32 Reply to question for qname='capped-ttl.example.net.', qtype=A
  33 Rcode: 0 (No Error), RD: 1, QR: 1, TC: 0, AA: 0, opcode: 0
  34 0       capped-ttl.example.net. 5       IN      A       192.0.2.35
  35 ==> defpol-with-ttl.example.net should use the default policy's TTL and not the zone one
  36 Reply to question for qname='defpol-with-ttl.example.net.', qtype=A
  37 Rcode: 0 (No Error), RD: 1, QR: 1, TC: 0, AA: 0, opcode: 0
  38 0       defpol-with-ttl.example.net.    10      IN      CNAME   default.example.net.
  39 0       default.example.net.    15      IN      A       192.0.2.42
  40 ==> defpol-with-ttl-capped.example.net should use the default policy's TTL, but capped to maxTTL
  41 Reply to question for qname='defpol-with-ttl-capped.example.net.', qtype=A
  42 Rcode: 0 (No Error), RD: 1, QR: 1, TC: 0, AA: 0, opcode: 0
  43 0       defpol-with-ttl-capped.example.net.     20      IN      CNAME   default.example.net.
  44 0       default.example.net.    15      IN      A       192.0.2.42
  45 ==> defpol-without-ttl.example.net should use the zone's TTL
  46 Reply to question for qname='defpol-without-ttl.example.net.', qtype=A
  47 Rcode: 0 (No Error), RD: 1, QR: 1, TC: 0, AA: 0, opcode: 0
  48 0       defpol-without-ttl.example.net. 7200    IN      CNAME   default.example.net.
  49 0       default.example.net.    15      IN      A       192.0.2.42
  50 ==> defpol-without-ttl-capped.example.net should use the zone's TTL but capped to maxTTL
  51 Reply to question for qname='defpol-without-ttl-capped.example.net.', qtype=A
  52 Rcode: 0 (No Error), RD: 1, QR: 1, TC: 0, AA: 0, opcode: 0
  53 0       defpol-without-ttl-capped.example.net.  50      IN      CNAME   default.example.net.
  54 0       default.example.net.    15      IN      A       192.0.2.42
  55 ==> unsupported.example.net has an unsupported target, should be ignored from the RPZ zone
  56 Reply to question for qname='unsupported.example.net.', qtype=A
  57 Rcode: 3 (Non-Existent domain), RD: 1, QR: 1, TC: 0, AA: 0, opcode: 0
  58 1       example.net.    15      IN      SOA     ns.example.net. hostmaster.example.net. 1 3600 1800 1209600 300
  59 ==> unsupported2.example.net has an unsupported target, should be ignored from the RPZ zone
  60 Reply to question for qname='unsupported2.example.net.', qtype=A
  61 Rcode: 3 (Non-Existent domain), RD: 1, QR: 1, TC: 0, AA: 0, opcode: 0
  62 1       example.net.    15      IN      SOA     ns.example.net. hostmaster.example.net. 1 3600 1800 1209600 300
  63 ==> not-rpz.example.net is _not_ an RPZ target and should be processed
  64 Reply to question for qname='not-rpz.example.net.', qtype=A
  65 Rcode: 3 (Non-Existent domain), RD: 1, QR: 1, TC: 0, AA: 0, opcode: 0
  66 0       not-rpz.example.net.    5       IN      CNAME   rpz-not.com.
  67 1       .       15      IN      SOA     ns.example.net. hostmaster.example.net. 1 3600 1800 1209600 300
  68 ==> echo-me.wildcard-target.example.net is an RPZ wildcard target
  69 Reply to question for qname='echo-me.wildcard-target.example.net.', qtype=A
  70 Rcode: 3 (Non-Existent domain), RD: 1, QR: 1, TC: 0, AA: 0, opcode: 0
  71 0       echo-me.wildcard-target.example.net.    7200    IN      CNAME   echo-me.wildcard-target.example.net.walled-garden.example.net.
  72 1       example.net.    15      IN      SOA     ns.example.net. hostmaster.example.net. 1 3600 1800 1209600 300