unbound Query for TXT record returns CNAME of the domain

Query for TXT record returns CNAME of the domain

Open leonid-shevtsov opened this issue 2 years ago • 0 comments

expected result, from Cloudflare:

>dig TXT @1.1.1.1 leonid.shevtsov.me

;; ANSWER SECTION:
leonid.shevtsov.me.     900     IN      TXT     "spf snip"
leonid.shevtsov.me.     900     IN      TXT     "google snip"

actual result from unbound:

>dig TXT @127.0.0.1 leonid.shevtsov.me

;; ANSWER SECTION:
leonid.shevtsov.me.     10      IN      CNAME   cname.vercel-dns.com.

The zone uses Hover for DNS, so both TXT records and the CNAME are defined there. There is a CNAME for this subdomain because it is hosted on Vercel. This is a typical setup.

I've never seen it affect TXT record resolution before. Looks like a bug, or at least behavior that doesn't match the norm. For example, Google site verification works, and mxtoolbox finds the SPF record. But unbound cannot find either TXT record.

Unbound version

Unbound 1.16.1 on macOS

no options related to resolution have been changed from their defaults.

Jul 25 '22 15:07 leonid-shevtsov

unbound unbound copied to clipboard

Query for TXT record returns CNAME of the domain

unbound
unbound copied to clipboard