Hello. Anyone got any ideas/pointers to explain this?
I have been running a forwarding-only nameserver (BIND 9.16.21) with my Fedora 34 installation, pointing to 126.96.36.199 / 188.8.131.52. All has been working well for some time, until I tried to resolve yahoo.co.jp (or mail.yahoo.co.jp or www.yahoo.co.jp) and get something like:
named: broken trust chain resolving ‘www.yahoo.co.jp/A/IN’: 184.108.40.206#53
I can get around this by either:
using “forward first” configuration, or
using another DNS provider