Domain unresolved in Singapore

Chris Buxton cbuxton at menandmice.com
Wed Feb 20 16:43:59 UTC 2008 

OK, now I see the problem. If the A records are removed from cache  
earlier than the NS records, despite having the same TTL as the NS  
records - a possible though in my mind unlikely scenario - the  
resolver will be unable to look up the servers' addresses until the NS  
records are expired due to a lack of glue records for these names.

It's a subtle thing, and I wouldn't have gotten it if you hadn't  
reminded me that records can be removed from cache at any time, and  
not just when the TTL runs out.

Chris Buxton
Professional Services
Men & Mice
Address: Noatun 17, IS-105, Reykjavik, Iceland
Phone:   +354 412 1500
Email:   cbuxton at menandmice.com
www.menandmice.com

Men & Mice
We bring control and flexibility to network management

This e-mail and its attachments may contain confidential and  
privileged information only intended for the person or entity to which  
it is addressed. If the reader of this message is not the intended  
recipient, you are hereby notified that any retention, dissemination,  
distribution or copy of this e-mail is strictly prohibited. If you  
have received this e-mail in error, please notify us immediately by  
reply e-mail and immediately delete this message and all its attachment.



On Feb 19, 2008, at 5:49 PM, Mark Andrews wrote:

>
>> Mark, I believe you're mistaken. There are glue records for these
>> servers, in the .id zone; they do not depend on cache.
>>
>> $ dig guentner.co.id +norec @NS1.id
>>
>> ;; AUTHORITY SECTION:
>> guentner.co.id.		1800	IN	NS	ns2.guentner.co.id.
>> guentner.co.id.		1800	IN	NS	ns1.guentner.co.id.
>>
>> ;; ADDITIONAL SECTION:
>> ns1.guentner.co.id.	13300	IN	A	222.124.211.227
>> ns2.guentner.co.id.	13300	IN	A	222.124.211.228
>
> 	Try ns1.guentner-asiapacific.com and ns2.guentner-asiapacific.com
> 	as those are the nameservers the child zone advertises.
>
> 	Mark
>
> ; <<>> DiG 9.3.4-P1 <<>> ns guentner-asiapacific.com @222.124.211.227
> ; (1 server found)
> ;; global options:  printcmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 997
> ;; flags: qr aa rd; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 2
>
> ;; QUESTION SECTION:
> ;guentner-asiapacific.com.	IN	NS
>
> ;; ANSWER SECTION:
> guentner-asiapacific.com. 300	IN	NS	ns1.guentner-asiapacific.com.
> guentner-asiapacific.com. 300	IN	NS	ns2.guentner-asiapacific.com.
>
> ;; ADDITIONAL SECTION:
> ns1.guentner-asiapacific.com. 300 IN	A	222.124.211.227
> ns2.guentner-asiapacific.com. 300 IN	A	222.124.211.228
>
> ;; Query time: 417 msec
> ;; SERVER: 222.124.211.227#53(222.124.211.227)
> ;; WHEN: Wed Feb 20 12:47:58 2008
> ;; MSG SIZE  rcvd: 110
>
> ; <<>> DiG 9.3.4-P1 <<>> ns1.guentner-asiapacific.com @a.gtld- 
> servers.net
> ; (2 servers found)
> ;; global options:  printcmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 27147
> ;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 2, ADDITIONAL: 0
>
> ;; QUESTION SECTION:
> ;ns1.guentner-asiapacific.com.	IN	A
>
> ;; AUTHORITY SECTION:
> guentner-asiapacific.com. 172800 IN	NS	ns1.guentner.co.id.
> guentner-asiapacific.com. 172800 IN	NS	ns2.guentner.co.id.
>
> ;; Query time: 277 msec
> ;; SERVER: 2001:503:a83e::2:30#53(2001:503:a83e::2:30)
> ;; WHEN: Wed Feb 20 12:48:19 2008
> ;; MSG SIZE  rcvd: 96
>
> -- 
> Mark Andrews, ISC
> 1 Seymour St., Dundas Valley, NSW 2117, Australia
> PHONE: +61 2 9871 4742                 INTERNET: Mark_Andrews at isc.org

More information about the bind-users mailing list