Forward record for WWW

Thu May 5 17:34:47 UTC 2016

Since this is only a test server not production, and lives in the DMZ it must be blocked at the FW.

# dig with no specification for query type and with "A" both give the same result. Dig with q-type "any" is output included.

Sorry that prior email had bad line breaks, looked ok when I wrote it but they have moved us to outlook and I am apparently not sufficient proficient in its use.

This is the output from dig against this server.

[euclid] ~ 201> dig @199.184.16.7 wadsworth.org

; <<>> DiG 9.10.2-P3 <<>> @199.184.16.7 wadsworth.org
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 8047
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;wadsworth.org.                 IN      A

;; AUTHORITY SECTION:
wadsworth.org.          86400   IN      SOA     pauling.wadsworth.org. qll.wadsworth.org. 1603081507 10800 3600 604800 86400

;; Query time: 0 msec
;; SERVER: 199.184.16.7#53(199.184.16.7)
;; WHEN: Thu May 05 13:29:15 EDT 2016
;; MSG SIZE  rcvd: 90

[euclid] ~ 213> dig any @199.184.16.7 wadsworth.org

; <<>> DiG 9.10.2-P3 <<>> any @199.184.16.7 wadsworth.org
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 62021
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 8, AUTHORITY: 0, ADDITIONAL: 5

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;wadsworth.org.                 IN      ANY

;; ANSWER SECTION:
wadsworth.org.          86400   IN      MX      10 smtptoo.wadsworth.org.
wadsworth.org.          86400   IN      MX      10 smtpproxy.wadsworth.org.
wadsworth.org.          86400   IN      MX      5 wish1.wadsworth.org.
wadsworth.org.          86400   IN      TXT     "v=spf1 ptr:wadsworth.org ip4:199.184.28.0/22 ?all"
wadsworth.org.          86400   IN      SOA     pauling.wadsworth.org. qll.wadsworth.org. 1603081507 10800 3600 604800 86400
wadsworth.org.          86400   IN      NS      ns1.albany.edu.
wadsworth.org.          86400   IN      NS      pauling.wadsworth.org.
wadsworth.org.          86400   IN      NS      beacon.health.state.ny.us.

;; ADDITIONAL SECTION:
wish1.wadsworth.org.    86400   IN      A       199.184.16.38
smtptoo.wadsworth.org.  86400   IN      A       199.184.16.18
smtpproxy.wadsworth.org. 86400  IN      A       199.184.16.16
pauling.wadsworth.org.  86400   IN      A       199.184.16.6

;; Query time: 0 msec
;; SERVER: 199.184.16.7#53(199.184.16.7)
;; WHEN: Thu May 05 13:30:49 EDT 2016
;; MSG SIZE  rcvd: 369

[euclid] ~ 214>

> -----Original Message-----
> From: Stephane Bortzmeyer [mailto:bortzmeyer at nic.fr]
> Sent: Thursday, May 05, 2016 12:12 PM
> To: Cuttler, Brian R. (HEALTH) <brian.cuttler at health.ny.gov>
> Cc: Stephane Bortzmeyer <bortzmeyer at nic.fr>; bind-users at lists.isc.org
> Subject: Re: Forward record for WWW
> 
> ATTENTION: This email came from an external source. Do not open
> attachments or click on links from unknown senders or unexpected emails.
> 
> 
> On Thu, May 05, 2016 at 04:06:06PM +0000,  Cuttler, Brian R. (HEALTH)
> <brian.cuttler at health.ny.gov> wrote  a message of 34 lines which said:
> 
> > I configured the change for my external test server only
> > (199.184.16.7, which is _probably_ available for external query)
> 
> No.
> 
> % dig @199.184.16.7 A wadsworth.org
> 
> ; <<>> DiG 9.9.5-9+deb8u6-Debian <<>> @199.184.16.7 A wadsworth.org ; (1
> server found) ;; global options: +cmd ;; connection timed out; no servers
> could be reached