Ghost IP?

Nate Campi nate at campin.net
Sat Mar 30 19:16:50 UTC 2002 

On Sat, Mar 30, 2002 at 10:54:57AM +0100, Remco Rijnders <Remco Rijnders wrote:
> 
> So far so good. However, when I lookup DNS for the machine 
> fall.webconquest.com I get:
> 
> [picard:remmy](~)> dig fall.webconquest.com
> ...
> ;; ANSWER SECTION:
> fall.webconquest.com.   1d23h33m57s IN A  168.143.173.247

I was going to point you to the FAQ at
http://dougbarton.net/bind-users-FAQ.html but I can't seem to reach it
right now.

It's registered as a nameserver, contact "BULKREGISTER.COM, INC." and
have the record removed or it's associated IP changed.

  $ whois fall.webconquest.com.

   Server Name: FALL.WEBCONQUEST.COM
   IP Address: 168.143.173.247
   Registrar: BULKREGISTER.COM, INC.
   Whois Server: whois.bulkregister.com
   Referral URL: http://www.bulkregister.com


If you use BIND 9's dig utility to "trace" resolution from the roots,
you see one of the gTLD servers answer the question, not your
nameservers.

  $ dig +trace FALL.WEBCONQUEST.COM.

  ; <<>> DiG 9.2.0 <<>> +trace FALL.WEBCONQUEST.COM.
  ;; global options:  printcmd
  .			428805	IN	NS	D.ROOT-SERVERS.NET.
  .			428805	IN	NS	E.ROOT-SERVERS.NET.
  .			428805	IN	NS	F.ROOT-SERVERS.NET.
  .			428805	IN	NS	G.ROOT-SERVERS.NET.
  .			428805	IN	NS	H.ROOT-SERVERS.NET.
  .			428805	IN	NS	I.ROOT-SERVERS.NET.
  .			428805	IN	NS	J.ROOT-SERVERS.NET.
  .			428805	IN	NS	K.ROOT-SERVERS.NET.
  .			428805	IN	NS	L.ROOT-SERVERS.NET.
  .			428805	IN	NS	M.ROOT-SERVERS.NET.
  .			428805	IN	NS	A.ROOT-SERVERS.NET.
  .			428805	IN	NS	B.ROOT-SERVERS.NET.
  .			428805	IN	NS	C.ROOT-SERVERS.NET.
  ;; Received 436 bytes from 209.142.0.2#53(209.142.0.2) in 6 ms
  
  COM.			172800	IN	NS	A.GTLD-SERVERS.NET.
  COM.			172800	IN	NS	G.GTLD-SERVERS.NET.
  COM.			172800	IN	NS	H.GTLD-SERVERS.NET.
  COM.			172800	IN	NS	C.GTLD-SERVERS.NET.
  COM.			172800	IN	NS	I.GTLD-SERVERS.NET.
  COM.			172800	IN	NS	B.GTLD-SERVERS.NET.
  COM.			172800	IN	NS	D.GTLD-SERVERS.NET.
  COM.			172800	IN	NS	L.GTLD-SERVERS.NET.
  COM.			172800	IN	NS	F.GTLD-SERVERS.NET.
  COM.			172800	IN	NS	J.GTLD-SERVERS.NET.
  COM.			172800	IN	NS	K.GTLD-SERVERS.NET.
  COM.			172800	IN	NS	E.GTLD-SERVERS.NET.
  COM.			172800	IN	NS	M.GTLD-SERVERS.NET.
  ;; Received 470 bytes from 128.8.10.90#53(D.ROOT-SERVERS.NET) in 85 ms
  
  FALL.WEBCONQUEST.COM.	172800	IN	A	168.143.173.247
  WEBCONQUEST.COM.	172800	IN	NS	SPRING.WEBCONQUEST.COM.
  WEBCONQUEST.COM.	172800	IN	NS	SPRING2.WEBCONQUEST.COM.
  ;; Received 129 bytes from 192.5.6.30#53(A.GTLD-SERVERS.NET) in 73 ms

-- 
Nate

More information about the bind-users mailing list