DNS & network news

Monthly Archive: January 2019

Why aren’t some methods retrieving A records for cardinalfinancial.com

I was browsing hackernews (https://news.ycombinator.com) the other day and I noticed a broken link in one of the “Who is Hiring” monthly threads:

https://news.ycombinator.com/item?id=18807017

Specifically, the link that didn’t (doesn’t) work is:

https://cardinalfinancial.com/about/careers/search/job/376-software-engineer-full-stack/

The failure that I’m seeing is a failure to resolve a A record ‘cardinalfinancial.com’.

If I go to mxtoolbox.com and run a A record lookup, they find a result:

https://mxtoolbox.com/SuperTool.aspx?action=a%3acardinalfinancial.com

If I go to viewdns.info and get them to list all DNS records for cardinalfinancial.com they show an A record:

https://viewdns.info/dnsrecord/?domain=cardinalfinancial.com

Both sets of results agree with each other: two A records exist and point to 52.22.147.174 & 52.20.153.199 respectively. If I modify my local hosts file to set ‘cardinalfinancial.com’ to point to either of these IP addresses, the website works perfectly. The web server is up, but without helping out my local machine, I can’t resolve the domain’s A record locally.

I found another public DNS checking site that agrees with my local experience:

http://dns-record-viewer.online-domain-tools.com/

If I request “ANY” for cardinalfinancial.com, I see all the other results (NS, MX, TXT) but no A records. I tried 8.8.8.* plus all of the NS listed as authoritative for cardinalfinancial.com

So some methods of querying DNS are bringing back A records, but others are not. I’ve never seen a situation like that before.

Can you help me understand what is going on here?

Edit for clairity: I’m not linked in any way to any of the organisations involved here, I’m just a curious observer.

submitted by /u/Do_not_reply_to_me
[link] [comments]

Powered by WPeMatico

MS DNS Stub zones: AD Site aware?

New job. New Challenges. Time for DNS cleanup – out with the ZT’s, in with the Stubs, perhaps.

Question: Are MS DNS Stub zones AD Site aware when selecting the NS to forward a lookup to?

Scenario: Multiple forests. DCs (w/ DNS) at same geo-locations. Similar IPv4 (v6 largely not enabled) addressing scheme. If I setup AD-Integrated stubs to replace zone transfers, assuming ADS&S is setup with a subnet that covers client and and an NS IP in the stub zone, would the lookup be kept to the same site?

Goal: I would like to keep forwarded queries to same site rather than random and therefore possibly traversing much slower lines to a remote NS listed in the stub. If the NS DNS selects is unpredictable, then it looks like I would need to use non-AD integrated CF’s with only the local IPs listed to achieve that objective.

submitted by /u/redlimey
[link] [comments]

Powered by WPeMatico