Subdomain resolution with

We recently switched our setup to use as our main DNS. We have a somewhat atypical DNS setup and we noticed that requests to through get routed to us as (discarding anything before sub1). At the same time, and most other DNS services do forward the entire request.

e.g: dig @    results in request on our internal DNS
e.g: dig @    results in request on our internal DNS

Would you be able to point me to some resource as to why this is happening with and how that can be mitigated?

Yes! We’re using DNS Query Name Minimisation and it is described in more detail here:

By only using DNS Query Name Minimisation defined in RFC7816, DNS resolver,, reduces the information leaked to intermediary DNS servers, like the root and TLDs. That means that DNS resolver,, only sends just enough of the name for the authority to tell the resolver where to ask the next question.

And we are using the knot resolver mentioned in RFC 7816: DNS Query Name Minimisation to Improve Privacy

1 Like

Perfect. This is exactly what I’ve been looking for. Thanks!

This topic was automatically closed after 14 days. New replies are no longer allowed.