DNS & network news

Monthly Archive: January 2019

Help Configure Google DNS A Record for Domain

I’ve been trying all day to figure out how how to get my new domain I purchased from Google to resolve to my static public IP. I don’t think I have a proper A record in DNS but I’m very green at this so really appreciate any help!

[removed screenshot]

Did I set up the dns wrong in the photo above? I tried changing the hostname of pizza1 to www and neither work. The actual server name is ‘pizza1’ but I can’t find a DNS record: https://dns.google.com/query?name=pizza1.mennens.org&type=A&dnssec=true

When I turn on Nginx and type in the static IP, I can see the Nginx splash page.

Appreciate any help – I’ve been at this all day and feel like I’ve waisted so much time.

submitted by /u/cachedrive
[link] [comments]

Powered by WPeMatico

Is there a way for a domain to resolve only via encrypted DNS (DNS over TLS or otherwise)

I think this might not be possible, but I’m looking for a way for a web site to report to the user whether they got to a site using DNS over TLS, regular DNS, etc. I know that a site normally would not have access to this information, but maybe a way to have a domain only resolvable via encrypted DNS.

submitted by /u/mc_security
[link] [comments]

Powered by WPeMatico

PowerDNS pdns_recursor

Hello all,

I have been tasked to deploy a new powerDNS server for the company I work to as the the current ones we have are not working properly and they are quite old. So the new one that I installed on a centos 7 machine is the powerDNS 4.1 version.

I am not really familiar with configuring DNS servers so I did come across with an issue with pdns_recursor. Before I start explaining about the issue I have to see that the Authoritative Server of the DNS works fine. So I have added a domain to my DNS table and when I query that domain using as DNS my new DNS server it does work fine.

The issue starts when I’d like to query a domain which is not in my DNS table, ex. google.com using as DNS my new DNS. It seems that the server does send the query but never gets the answer. So I assume that my new DNS server sends the query to a Master DNS which I do not which one is as on powerDNS the version 4.1 you do not have that visibility. Unless I do not where to check. It seems that the master DNS does not reply to my DNS.

From the logs I do see that error message:

pdns_recursor[1548]: Failed to update . records, got an exception: Too much time waiting for…5msec

pdns_recursor[1548]: Failed to update . records, RCODE=-1

Not sure what it is for.

Also below is the output when I dig google.com from my new DNS server.

dig google.com @localhost

; <<>> DiG 9.9.4-RedHat-9.9.4-72.el7 <<>> google.com @localhost

;; global options: +cmd

;; Got answer:

;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 30811

;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1


; EDNS: version: 0, flags:; udp: 4096


;google.com. IN A

;; Query time: 0 msec


;; WHEN: Fri Jan 11 12:29:34 GMT 2019

;; MSG SIZE rcvd: 39

PowerDNS doco is not the greatest regarding these issues. I would really appreciate if someone could give some light here.

Many Thanks in advance

submitted by /u/nickmavrou
[link] [comments]

Powered by WPeMatico

DNSCrypt Questions


I have a question, I’m using OpenDNS on my router for my whole network and OpenDNS on my computer and when using DNSCrypt it disconnects my connection to OpenDNS.

My first question is, how can I use OpenDNS server’s while still be connected to DNSCrypt because I want the content filtering.

My second question is does this only happen to my computer or anyone using the same adapter? Because it changed the IP on my LAN2.

OpenDNS only has a DNSCrypt server for IPV6, not IPV4, in case you were wondering.

submitted by /u/Q-Scud
[link] [comments]

Powered by WPeMatico

Troubleshooting AWS Route53

Hi all,

I’m having issues with AWS Route53 DNS. My domain name is maxpaymar.com. When I do `dig -t NS maxpaymar.com`, everything looks fine. However, in Route53 there are also CNAME and SOA records that are not showing up with dig. I previously had my domain hijacked when it was hosted on GoDaddy and I’m seeing some DNSSEC records when I do `dig +trace`. Not sure if that would cause issues, but when I do dig for my other domains (ones that were never with GoDaddy and never got hijacked) there are no issues. I read somewhere else that AWS does not support DNS SEC so I’m wondering if that is what may be causing the issue? I don’t really know what else to do at this point. I just want to validate my CNAME and get issued a certificate for my site. I am a bit of a DNS noob so I don’t know what else to do to troubleshoot this issue.

Thanks for your help.

submitted by /u/maxpaymar
[link] [comments]

Powered by WPeMatico

Noob DNS Question

I’ve learned barely enough DNS to get foward and reverse zones working for IPV4 and IPV6 on a Windows 2016 Datacenter Edition PC for my CCNA studies. I’ve learned a bit about scavenging old records, etc, but while at work a few days ago I encountered a Richoh printer that was showing offline on our buildings network print server. Ping “hostname” and no record found. Went into the printer settings and the name of the printer somehow was now blank. Reentered the the correct name as it reflected in our print server, restarted the printer, and within about a minute of starting up all jobs stuck in the print queue were now beginning to print. Basically I want to know what kind of settings update DNS this quickly. Our DHCP leases last 2 hours so I’m not really sure what is going on here but then yet I’m on noob level for DNS, DHCP, network related stuff. When I reboot the printer/machine does that also renew DNS?

submitted by /u/whitecastleburgers21
[link] [comments]

Powered by WPeMatico