DNS & network news

Non classé

SOA the second half

“` $ drill soa ns1.your-server.de ;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 49124 ;; flags: qr rd ra ; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;; ns1.your-server.de. IN SOA

;; ANSWER SECTION:

;; AUTHORITY SECTION: your-server.de. 3600 IN SOA ns1.your-server.de. postmaster.your-server.de. 2019061401 86400 1800 3600000 86400

;; ADDITIONAL SECTION:

;; Query time: 465 msec ;; SERVER: 127.0.0.1 ;; WHEN: Fri Jun 14 16:49:40 2019 ;; MSG SIZE rcvd: 83

$ drill ns1.your-server.de ;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 34285 ;; flags: qr rd ra ; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;; ns1.your-server.de. IN A

;; ANSWER SECTION: ns1.your-server.de. 7111 IN A 213.133.106.251

;; AUTHORITY SECTION:

;; ADDITIONAL SECTION:

;; Query time: 0 msec ;; SERVER: ::1 ;; WHEN: Fri Jun 14 16:50:28 2019 ;; MSG SIZE rcvd: 52

$ drill postmaster.your-server.de ;; ->>HEADER<<- opcode: QUERY, rcode: NXDOMAIN, id: 26114 ;; flags: qr rd ra ; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;; postmaster.your-server.de. IN A

;; ANSWER SECTION:

;; AUTHORITY SECTION: your-server.de. 3546 IN SOA ns1.your-server.de. postmaster.your-server.de. 2019061401 86400 1800 3600000 86400

;; ADDITIONAL SECTION:

;; Query time: 69 msec ;; SERVER: ::1 ;; WHEN: Fri Jun 14 16:50:35 2019 ;; MSG SIZE rcvd: 83 “`

It seems that ns1.your-server.de is the main server for the ns1.your-server.de, while postmaster.your-server.de resolves to nothing. DOes that means I can change the second half (postmaster.your-server.de in this case) to any of my subdomains, even if it does not resolve to anything?
I’ve seen this a lot…….

submitted by /u/Snorlax_Sim
[link] [comments]

Powered by WPeMatico

Is Cloudflare the best option for a private DNS?

Hi guys, I’m pretty much clueless about these things so figured this would be the best place to ask a hopefully simple question, I find researching this topic pretty hard for some reason.

Long story short, my communist ISP blocked a website that my business absolutely depends on, so I started using Google DNS to bypass the blockade. It works but no idea how private it actually is, somebody told me that there are better and more secure DNS options than Google so I was wondering what those were?

I don’t want my ISP to know anything about my internet activity, even if they really tried to look into it, is that level of privacy possible to achieve? My priorities regarding DNS would be privacy, security and speed, in that order.

submitted by /u/Kai-Tek
[link] [comments]

Powered by WPeMatico

DNSSEC Validation – Windows Server DNS

I am trying to implement DNSSEC validation on my Windows DNS servers, but I am so far unable to add the root trust anchor, instead being given vague errors. I tried to add the root’s anchor automatically through Windows PowerShell and dnscmd.exe, then again through manually adding. In each case I get a vague error that it failed. I am running DNS on Windows Server 2016 Core, but also have one Windows Server 2016 (Desktop experience) server which has the same problem. I’m not seeing anything in Event Viewer as to why it fails either, but I’m still fishing.

Does anyone here have any wisdom on getting DNSSEC validation to work in Windows Server? Super frustrating.

submitted by /u/jbparrish17
[link] [comments]

Powered by WPeMatico

Weird DNS requests coming from my home network

So I found this today, dns requests where acting strangely slow so I went over to my OpenDNS dashboard to check up on it. The First thing i noticed was over 12k DNS requests in one day! (See Image) I then went to look at what this dns requests where and a bunch of different various dns requests (nearly 700 per domain) where going out to dlink – like domains. I poked around online some and couldn’t find anything similar occurring to anyone else (probably because if it has happened no one noticed). One thing to note is my router is a D-Link router and that I host a WordPress website but the ip is hidden behind Cloud Flare. If anyone could think of a potential cause for such an event I would be extremely grateful.

DNS Requests By hour for 6/6/19

DNS Requests Sorted by domain for 6/6/19 (Only showing domains that are abnormal)

submitted by /u/AwesomenessZ
[link] [comments]

Powered by WPeMatico