Modify

Opened 9 years ago

Closed 6 years ago

Last modified 6 years ago

#569 closed enhancement (worksforme)

DNSsec support

Reported by: carsten.schuette@… Owned by:
Priority: lowest Milestone:
Component: fon-network Version: N/A
Severity: unknown
Cc: Hardware: both

Description

Is the Fonera 2.0g/2.0n with current firmware able to handle DNSsec correctly? --> http://www.heise.de/security/meldung/BSI-Studie-Viele-Heimrouter-beherrschen-kein-DNSsec-914777.html

Attachments (0)

Change History (3)

comment:1 Changed 9 years ago by iurgi

  • Milestone changed from Firmware 2.3.5 to Firmware 2.3.7.0
  • Priority changed from major to trivial

comment:2 Changed 9 years ago by matthijs

  • Component changed from fon-base-firmware to fon-network
  • Hardware set to both
  • Milestone Firmware 2.3.7.0 deleted
  • Status changed from new to confirmed
  • Summary changed from DNSsec support? to DNSsec support
  • Type changed from task to enhancement
  • Version set to N/A

comment:3 Changed 6 years ago by matthijs

  • Resolution set to worksforme
  • Severity set to unknown
  • Status changed from confirmed to closed

As part of the upcoming 2.3.7.0 firmware release, we're reviewing old open tickets to see if they are still relevant, which is why you get this response now.

It seems that dnsmasq, the DNS server on the Fonera, will forward DNSSEC records correctly. So if you configure your Fonera to use a DNS server that handles DNSSEC, it should work as expected (I tested using https://www.dns-oarc.net/oarc/services/odvr for example).

Note that, since the Fonera is only a forwarder, not a recursive resolver, it cannot implement DNSSEC by itself.

Add Comment

Modify Ticket

Action
as closed The ticket will remain with no owner.
Author


E-mail address and user name can be saved in the Preferences.

 
Note: See TracTickets for help on using tickets.