bind does not resolved all domains (SERVFAIL)
Clément Fevrier
clement at forumanalogue.fr
Fri Jan 13 08:57:18 UTC 2017
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Hello,
I have a weird issue. I have at least one domain that bind9 can't
resolved (phdcomics.com, so a very important one ^^), with status
SERVFAIL. Bind server IP is 192.168.1.8, client is 192.168.1.7
Example #1
*client*
% dig phdcomics.com
; <<>> DiG 9.10.3-P4-Ubuntu <<>> phdcomics.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 25805
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;phdcomics.com. IN A
;; Query time: 1 msec
;; SERVER: 192.168.1.8#53(192.168.1.8)
;; WHEN: Fri Jan 13 09:47:25 CET 2017
;; MSG SIZE rcvd: 42
*server*
# tail -f query.log | grep 192.168.1.7#
client 192.168.1.7#49507 (phdcomics.com): query: phdcomics.com IN A +E
(192.168.1.8)
client 192.168.1.7#49507 (phdcomics.com): query: phdcomics.com IN A +E
(192.168.1.8)
client 192.168.1.7#49507 (phdcomics.com): query: phdcomics.com IN A +E
(192.168.1.8)
Example #2
*client*
% host phdcomics.com
;; connection timed out; no servers could be reached
*server*
# tail -f query.log | grep 192.168.1.7#
client 192.168.1.7#60279 (phdcomics.com): query: phdcomics.com IN A +
(192.168.1.8)
client 192.168.1.7#60279 (phdcomics.com): query: phdcomics.com IN A +
(192.168.1.8)
Other domains are working :
% dig google.fr
; <<>> DiG 9.10.3-P4-Ubuntu <<>> google.fr
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 45620
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 4, ADDITIONAL: 5
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;google.fr. IN A
;; ANSWER SECTION:
google.fr. 300 IN A 216.58.205.131
;; AUTHORITY SECTION:
google.fr. 170942 IN NS ns1.google.com.
google.fr. 170942 IN NS ns3.google.com.
google.fr. 170942 IN NS ns4.google.com.
google.fr. 170942 IN NS ns2.google.com.
;; ADDITIONAL SECTION:
ns1.google.com. 344963 IN A 216.239.32.10
ns2.google.com. 344963 IN A 216.239.34.10
ns3.google.com. 344963 IN A 216.239.36.10
ns4.google.com. 344963 IN A 216.239.38.10
;; Query time: 30 msec
;; SERVER: 192.168.1.8#53(192.168.1.8)
;; WHEN: Fri Jan 13 09:52:42 CET 2017
;; MSG SIZE rcvd: 200
And I can resolve this domain using another DNS
% dig phdcomics.com @8.8.8.8
; <<>> DiG 9.10.3-P4-Ubuntu <<>> phdcomics.com @8.8.8.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 61926
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;phdcomics.com. IN A
;; ANSWER SECTION:
phdcomics.com. 50 IN A 64.29.145.9
;; Query time: 41 msec
;; SERVER: 8.8.8.8#53(8.8.8.8)
;; WHEN: Fri Jan 13 09:53:49 CET 2017
;; MSG SIZE rcvd: 58
Regards,
Clément
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
iQIcBAEBCAAGBQJYeJZuAAoJEIACgnANMTD1pGsP/iM+ixlWeISaytIqBYZgfJHE
der2vS+X9m/pL2vP2qvMGIdu2Q+npWMYFZ1SL78AHLHkklxOUXRjQTlg1dorahH1
g8guzsnec9tOk4ShF0sNz9RvHT/m8Mhdnoq5FlAriKKAHeLB2bsGDaLXn+bDsVCF
2xHjoAxkTvI9j2pg/GnccMYuJZhrZTjd36n3ygs4nyvqk2MDwA3Lpf2mjtYK1mG7
lf9rnIwYe4mEdmYoG8luI393ieaUU85zAmb34pJ/8JcsK6er6ceYVkC1m8DLHD3d
OVm+SvMhKfmYmHmQ78r867by71RWyPHu7MraBTsXQFjjGJZTFycP11vVQ8aIyXgn
CIERWz8/7Rf91/LwxpvWPXmSsSEuhXI4DTJ0o7lF0YLawzJPQR9e9Y+fl7KfWy9p
6tuxc/pIwin1+DBTj4Y1mg9GIc9n+oHdhu8ZcopxVn/JDNNS3YUpKvhUJcaPpvzv
hVURHP7r1t7hymW+Nu707ahdSwAObzW2v0r8avWLHumhHm44Gegw6o1dVNtM2uK/
275dKlSyGyK3m0BwNyALwAsbemkjtDITda4zwT82pw5ioQ06rqGLCmKligc1VUup
98yAh5rgZ0ylWuwIIdqGC1Pfs0inSsk7PJIY9OIqRf81yJmgWIwTyTDsVn39VCT1
jJukyL69WaOLNBUNdtJq
=n0/P
-----END PGP SIGNATURE-----
More information about the bind-users
mailing list