DNS & network news

Monthly Archive: March 2018

DNS Weirdness — GoDaddy > Route53 > Back to Godaddy

Howdy folks,

We made some changes to move to route53, but ran into issues and changed back to GD DNS.

I’m seeing this weirdness – The NS Records don’t match the root domain:

m.silentauctionpro.com

dig ns m.silentauctionpro.com ; <<>> DiG 9.9.4-RedHat-9.9.4-51.el7_4.2 <<>> ns m.silentauctionpro.com ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 30354 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 512 ;; QUESTION SECTION: ;m.silentauctionpro.com. IN NS ;; ANSWER SECTION: m.silentauctionpro.com. 1318 IN CNAME saprolb-247078737.us-west-2.elb.amazonaws.com. ;; AUTHORITY SECTION: us-west-2.elb.amazonaws.com. 56 IN SOA ns-332.awsdns-41.com. awsdns-hostmaster.amazon.com. 1 7200 900 1209600 60 ;; Query time: 71 msec ;; SERVER: 192.168.1.1#53(192.168.1.1) ;; WHEN: Mon Mar 26 07:29:04 MST 2018 ;; MSG SIZE rcvd: 185 

silentauctionpro.com

dig ns silentauctionpro.com ; <<>> DiG 9.9.4-RedHat-9.9.4-51.el7_4.2 <<>> ns silentauctionpro.com ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 30285 ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 512 ;; QUESTION SECTION: ;silentauctionpro.com. IN NS ;; ANSWER SECTION: silentauctionpro.com. 3599 IN NS ns60.domaincontrol.com. silentauctionpro.com. 3599 IN NS ns59.domaincontrol.com. ;; Query time: 54 msec ;; SERVER: 192.168.1.1#53(192.168.1.1) ;; WHEN: Mon Mar 26 07:32:16 MST 2018 ;; MSG SIZE rcvd: 101 

This seems to be causing m.silentauctionpro.com to not load for a huge swath of mobile users. We are running up on 12 hours since the bounce from AWS Route53 back to GoDaddy's DNS. I'm stumped.

Why do the NS records not match?

submitted by /u/awpti
[link] [comments]

Powered by WPeMatico

Why does my cache-only server does not work?

I want to build a DNS server at my home and I’m using a Raspberry Pi for that. In order to practice a little, I just wanted to start setting a Cache-only DNS server

I’ve installed bind9 and written the following /etc/bind/named.conf.options configuration file:

options { directory "/var/cache/bind"; recursion yes; # enable recursive queries listen-on port 53 { localhost; any; }; # listen on private network only allow-query { localhost; any; }; # IP address that may query the server allow-query-cache { localhost; any; }; # Add query request to the bind dnssec-validation auto; auth-nxdomain no; # conform to RFC1035 listen-on-v6 { any; }; }; 

It is very permissive, but is just for starting.

Then, I check the file with named-checkconf and restart the server. I verify that it is running, and that port 53 is open with a port scanner in other system.

So, lets say that my server has private IP address “IP1”. When I go to other machine an set IP1 as the desired DNS server in /etc/resolv.conf, I cannot browse any website from firefox. If I ping “reddit.com” it fails resolving the name, so something is not working. What am I missing?

submitted by /u/EuGENE87
[link] [comments]

Powered by WPeMatico

Noob question about DNS records.

Hi. Thanks in advance for the help.

I’m new in an office with no IT. I set up a new email and ran it through a spam test and it looks like I need to authenticate it. So I’m in our DNS records and the domain that I send from is actually an http type under a longer domain. Where do I add my “v=spf1 include:_spf.google.com ~all” line so that it applies to the shorter domain? Does that question make sense? Thanks.

submitted by /u/JDWright85
[link] [comments]

Powered by WPeMatico