Does anyone have DNSSEC problem with uscg.mil

Thu Nov 14 18:00:03 UTC 2013

Hi,

Does anyone have any DNSSEC problem with uscg.mil.

On our DNS servers, we have seen broken trust chain error and the validation failed.

14-Nov-2013 12:57:37.486 lame-servers: error (broken trust chain) resolving 'uscg.mil/A/IN': 199.211.218.6#53
14-Nov-2013 12:57:37.573 lame-servers: error (broken trust chain) resolving 'uscg.mil/A/IN': 199.211.218.6#53
14-Nov-2013 12:57:37.658 lame-servers: error (broken trust chain) resolving 'uscg.mil/MX/IN': 199.211.218.6#53
14-Nov-2013 12:57:37.743 lame-servers: error (broken trust chain) resolving 'uscg.mil/MX/IN': 199.211.218.6#53

14-Nov-2013 12:58:12.878 dnssec: debug 3: validating @23cee638: uscg.mil AAAA: in authvalidated
14-Nov-2013 12:58:12.878 dnssec: debug 3: validating @23cee638: uscg.mil AAAA: authvalidated: got broken trust chain
14-Nov-2013 12:58:12.878 dnssec: debug 3: validating @23cee638: uscg.mil AAAA: resuming nsecvalidate
14-Nov-2013 12:58:13.058 dnssec: debug 3: validating @23cee638: uscg.mil A: starting
14-Nov-2013 12:58:13.058 dnssec: debug 3: validating @23cee638: uscg.mil A: attempting positive response validation
14-Nov-2013 12:58:13.058 dnssec: debug 3: validating @23cee638: uscg.mil A: in fetch_callback_validator
14-Nov-2013 12:58:13.058 dnssec: debug 3: validating @23cee638: uscg.mil A: fetch_callback_validator: got failure
14-Nov-2013 12:58:13.233 dnssec: debug 3: validating @23cee638: uscg.mil MX: starting
14-Nov-2013 12:58:13.233 dnssec: debug 3: validating @23cee638: uscg.mil MX: attempting positive response validation
14-Nov-2013 12:58:13.233 dnssec: debug 3: validating @23cee638: uscg.mil MX: in fetch_callback_validator
14-Nov-2013 12:58:13.233 dnssec: debug 3: validating @23cee638: uscg.mil MX: fetch_callback_validator: got failure

Thanks,
Linh Khuu
Network Security Specialist
Northrop Grumman IS | Civil Systems Division (CSD)
Office: 410-965-0746
Pager: 443-847-7551
Email: Linh.Khuu at ssa.gov