Problems after 8.3.3 upgrade

Mark_Andrews at isc.org Mark_Andrews at isc.org
Thu Jul 25 00:42:07 UTC 2002 

> Just thought you might like to know... Since upgrading
> to bind 8.3.3 (from 8.2.5), I've seen problems that seem
> to be consistent with those reported in thread
>   <http://marc.theaimsgroup.com/?l=bind-users&m=102686003924049&w=2>
> 
> We are also behind a PIX firewall.  In our case, the problem
> manifests as an intermittant inability to fetch MX records
> for many of the larger ISP's, e.g. AOL, Yahoo, Hotmail, etc.
> I first noticed it a couple of weeks ago when outgoing messages
> began backing up in our mailserver's queue.  Since sendmail was
> reporting connect timeouts, I didn't think much of it at first.
> But then I noticed that sendmail was trying to deliver *directly*
> to the domain, rather than using an MX'ed host, so of course it
> got a timeout.  Manual checking disclosed the failure to get
> MX records.  Apparently, my old cranky sendmail gets impatient
> when they're not available right away.
> 
> Anyway, the info in the above thread was *very* helpful in
> finding a workaround.  I can't upgrade to bind 9, since I don't
> have 64-bit ints.  I can't get the PIX fixed, even if Cisco
> *has* a fix, since I don't own the box, and I'm not on good
> terms with the CIO who does. ;-(  
> 
> So I used the "server IP { edns no };" fix, manually entering
> the NS's of a few of the larger ISP's with which I've been
> having problems.  So far, so good.
> 
> But I'd still be interested to know if there's a better answer
> that neither requires downgrading to bind 8.2.5, nor repeated
> editing of the bind 8.3.3 config to add new NS's as needed.

	File a complaint with the CISCO TAC referencing BugID
	CSCds58726 stating that it is breaking RFC 2671 compliant
	exchanges.

	RFC 2671: Extension Mechanisms for DNS (EDNS0).

	Mark

> 
> Thanks in advance...
> -- Dave
> ----------
> David Allan Steffens, Senior Engineer, Eaton-Peabody Laboratory
> Research Laboratory of Electronics, Mass. Institute of Technology
> c/o Mass. Eye & Ear Infirmary, 243 Charles St., Boston, MA 02114 USA
> das at epl.meei.harvard.edu    Tel (617) 573-4211    Fax (617) 720-4408
> 
> 
> 
--
Mark Andrews, Internet Software Consortium
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: Mark.Andrews at isc.org

More information about the bind-users mailing list