Unable to browse from external network in SplitDNS

Purva Rawan purvar at cdac.in
Wed Mar 18 13:02:11 UTC 2020 

Hello ,

We have configured splitDNS .Bind version is 9.9.2.We are able to lookup and
browse to particular URL( e.g.https://registry.npmjs.org
<https://registry.npmjs.org/> ) from internal network but the same URL when we
tried from external network ,it failed to browse ,but able to do nslookup.We
checked tcpdump logs and observed that DNS protocol switched from udp to tcp.

Tcpdump logs for reference

17:39:28.380918 ARP, Request who-has 196.1.113.242 tell 196.1.113.248, length 28

17:39:28.381205 ARP, Reply 196.1.113.242 is-at 00:09:0f:09:00:1a, length 46

17:39:30.395995 IP 196.1.113.242.54930 > 196.1.113.248.domain: Flags [S], seq
2177054283, win 14600, options [mss 1460,sackOK,TS val 2512104 ecr 0,nop,wscale
7], length 0

17:39:38.420575 IP 196.1.113.242.54930 > 196.1.113.248.domain: Flags [S], seq
2177054283, win 14600, options [mss 1460,sackOK,TS val 2520128 ecr 0,nop,wscale
7], length 0

17:39:54.451991 IP 196.1.113.242.54930 > 196.1.113.248.domain: Flags [S], seq
2177054283, win 14600, options [mss 1460,sackOK,TS val 2536160 ecr 0,nop,wscale
7], length 0

17:40:26.483591 IP 196.1.113.242.54930 > 196.1.113.248.domain: Flags [S], seq
2177054283, win 14600, options [mss 1460,sackOK,TS val 2568192 ecr 0,nop,wscale
7], length 0

Kindly help to resolve the same.

Regards,

Purva Rawan
------------------------------------------------------------------------------------------------------------
[ C-DAC is on Social-Media too. Kindly follow us at:
Facebook: https://www.facebook.com/CDACINDIA & Twitter: @cdacindia ]

This e-mail is for the sole use of the intended recipient(s) and may
contain confidential and privileged information. If you are not the
intended recipient, please contact the sender by reply e-mail and destroy
all copies and the original message. Any unauthorized review, use,
disclosure, dissemination, forwarding, printing or copying of this email
is strictly prohibited and appropriate legal action will be taken.
------------------------------------------------------------------------------------------------------------

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20200318/11131aa2/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.jpg
Type: image/jpeg
Size: 7789 bytes
Desc: not available
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20200318/11131aa2/attachment.jpg>

More information about the bind-users mailing list