unresolvable pms.psc.gov, but google/cloudflare/unbound work
Petr Špaček
pspacek at isc.org
Tue Sep 19 07:25:28 UTC 2023
On 18. 09. 23 15:29, Nicholas Miller wrote:
> I know this is an old thread but we are having issues resolving pms.psc.gov as well. Disabling DNSSec validation on a test server doesn’t solve the problem. I can add a forwarding zone for ha.psc.gov pointed to their NS servers and things work. I would love to know what is broken here.
>
>> dig pms.psc.gov
>
> ; <<>> DiG 9.16.43 <<>> pms.psc.gov
> ;; global options: +cmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 60669
> ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
>
> ;; OPT PSEUDOSECTION:
> ; EDNS: version: 0, flags:; udp: 1232
> ; COOKIE: 20b2eb2c9840bfbd0100000065084978288fdde1e6f7c2a6 (good)
> ;; QUESTION SECTION:
> ;pms.psc.gov. IN A
>
> ;; Query time: 2993 msec
> ;; SERVER: 128.138.240.1#53(128.138.240.1)
> ;; WHEN: Mon Sep 18 06:58:32 MDT 2023
> ;; MSG SIZE rcvd: 68
That's hard to diagnose without logs or any other supporting data.
All can I tell you is "it works on my system" (with BIND, of course):
$ dig pms.psc.gov
; <<>> DiG 9.19.18-dev <<>> +timeout +retry pms.psc.gov
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 29005
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; COOKIE: 5f2a9d77850917bd0100000065094c8ec7febc2147e2408d (good)
;; QUESTION SECTION:
;pms.psc.gov. IN A
;; ANSWER SECTION:
pms.psc.gov. 3600 IN CNAME pms.ha.psc.gov.
pms.ha.psc.gov. 30 IN A 156.40.178.24
;; Query time: 1533 msec
;; SERVER: 127.0.0.111#53(127.0.0.111) (UDP)
;; WHEN: Tue Sep 19 09:23:58 CEST 2023
;; MSG SIZE rcvd: 105
--
Petr Špaček
More information about the bind-users
mailing list