Information about DNS and network

Latest Posts

Asking Microsoft Azure – when will you add DNSSEC support?

Someone on Twitter is asking when Microsoft Azure DNS will finally add DNSSEC support given that customers have been asking about it for years. He points to an Azure forum post where this request was raised in April 2016. If you would also like to see Azure DNS support DNSSEC, please either share the tweet or upvote/comment on the Azure forum post (or both).

submitted by /u/danyork
[link] [comments]

Powered by WPeMatico

Running into issues with bind9

I setup the bind9 service and entries in ubuntu for the local office network, I’ve used it multiple times at other locations over the past decade with no problems for small networks like this. Only odd items here is it uses a non-standard domain internally (we will say company.fgh for example), as well as an IP subset assigned to the company that is typically external IPs (Class B, not a standard LAN 10.x or 192.x class A or C, we will use a hypothetical similar Class B address 133.0.0.x), but these IPs are used for LAN addresses (servers) with a few externally used facing the internet (email server for example).

I suspect there is something with the Class B addresses which are being sent out to resolve externally which is causing the failure.

It worked fine for a week or two (or maybe not) but suddenly all the SMB network shares (permissions handled by AD) stopped working and I cannot see why. For this example the SMB shares are at using a similar (hypothetical) Class B address

There are no other odd nor unusual entries nor networks added.

I have the, and formatted properly per every single time I’ve used it before and other instructional sites online. One piece that seems to be an issue is the NS records lines. If I just use:


then when I start bind9 service, it says “skipped as no NS records exist”.

Yet if I use

company.fgh. IN NS company.fgh. IN NS 

then the service starts but the SMB shares are broken/unresolvable. It does have 20+ entries, things like: IN A IN A IN A IN A IN A 

The named.conf.local does have the “company.fgh” zone with all IP subsets that would use the DNS server, such as;;, etc. as well as the zone with all the same entries (and proper alterations needed).

The named.conf.options file has the acl “trusted” with the same list of networks, I have tried the allow-recursion, allow-query, allow-query-cache, and allow-transfer as both “any” and “trusted” which seems to make no difference.

Any ideas or suggestions please.

submitted by /u/scr3wballl
[link] [comments]

Powered by WPeMatico

What organization to contact?

If my company, who is the registered owner of its domain through, has found out that a certificate with the same FQDN has been issued to another company/domain in Saudi Arabia? We are located in Southern California.

I have proof and have done my homework to prove that has fraudulently issued a domain name certificate to another organization not even within our country.

Who do I contact to have this certificate revoked and placed on the CRL?

Any further details, I can provide. I’ve done nslookups and the almighty shodan has also proved my findings to be correct.

DNS Gurus of Reddit, plz halp.

submitted by /u/Danaaerys
[link] [comments]

Powered by WPeMatico

cPanel account transfer and webmail

Hey all,

A few months ago I started renting a new dedicated server. I used cPanels transfer feature to move all of the accounts from my old server to my new server.

I hadn’t noticed until today that webmail is broken. I don’t really use webmail, but there are lots of emails in my inboxes that might be worth going through.

In particular, something strange happens when I try and access the webmail subdomain.

Let’s say my server has hosts domains “” and ““.

When I try access webmail, e.g., the index.html file from is served.

Somehow the webmail subdomain is being pointed to the other domain on my server.

I have no idea why this is happening, when I look at the DNS records, I can’t see anything unusual.

The zone has A records for mail, webmail, etc, which all point to the servers IP. The zone only has the standard A records, mail, www, etc.

Does anyone have any ideas what might of gone wrong / how I can attempt to troubleshoot the issue?

The reason why I can’t access my webmail is because when I click on “View emails” cPanel directs me to which is pointed to which doesn’t exist.

I have found a work around by adding an A record for webmail to the domain, but I still would like to understand what is going on.

Thanks in advance

submitted by /u/lindacupple
[link] [comments]

Powered by WPeMatico

help in understanding DoH traffic

My objective is to have netfilter/iptables on my router bock DoH traffic from my LAN. I’m looking for help in understanding why I haven’t been successful.

I have the following in my router’s iptables:

-A FORWARD -p tcp -d --dport 443 -j DROP_FORWARD_443

-A FORWARD -p udp -d --dport 443 -j DROP_FORWARD_443

From a machine on my LAN I do this:

$ dig @ -p 443

This is correctly dropped and is logged in the syslog of my router (which runs Ubuntu):

Oct 13 18:34:10 kernel: [ 6461.242705] Dropped_Forward_443: IN=enp3s0 OUT=tun0 MAC=00:0e:c4:ce:e9:84:44:6d:57:6b:99:cb:08:00 SRC= DST= LEN=79 TOS=0x00 PREC=0x00 TTL=63 ID=21631 PROTO=UDP SPT=38589 DPT=443 LEN=59

This I understand. What I don’t understand is when I enable “DNS over HTTPS” in Firefox on a machine on my LAN and then check my DNS server address on I see that the machine is using Cloudflare. Could somebody help me understand why my netfilter rule isn’t working here? Many thanks for any clues.

submitted by /u/lapisalienus
[link] [comments]

Powered by WPeMatico