<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body>
<div class="moz-cite-prefix">On 13/03/2025 14:59, rob777 via
Pdns-users wrote:<br>
</div>
<blockquote type="cite"
cite="mid:CAAPVCxwsiy28A397mojmT_BC91XKM4igFGBc_rWdEnUWGPq9og@mail.gmail.com">
<li style="margin-top:0.25rem">
<p style="margin:0px">My Powerdns Recursor cant resolve stuff
from the NS Servers <a
class="gmail-relative gmail-pointer-events-auto gmail-a gmail-cursor-pointer gmail-underline"
href="http://ns1.linode.com/" rel="noopener nofollow ugc"
target="_blank" style="font-size:1em;margin-top:0px"
moz-do-not-send="true">ns1.linode.com</a> , <a
class="gmail-relative gmail-pointer-events-auto gmail-a gmail-cursor-pointer gmail-underline"
href="http://ns2.linode.com/" rel="noopener nofollow ugc"
target="_blank" style="font-size:1em" moz-do-not-send="true">ns2.linode.com</a>, <a
class="gmail-relative gmail-pointer-events-auto gmail-a gmail-cursor-pointer gmail-underline"
href="http://ns3.linode.com/" rel="noopener nofollow ugc"
target="_blank" style="font-size:1em;margin-bottom:0px"
moz-do-not-send="true">ns3.linode.com</a></p>
</li>
<li style="margin-top:0.25rem"><br>
</li>
</blockquote>
<p>You starting point should be to send test DNS queries directly
there. On your pdns server:<br>
</p>
<p>dig +norec @ns1.linode.com alpinelinux.org a</p>
<p>Repeat this several times.<br>
</p>
<p>1. do you get any reply?<br>
2. is the reply authoritative (aa flag present) ?<br>
3. are the answers consistent between successive queries (apart
from ordering of RRs), and is the TTL the same?</p>
<p>From here I get:</p>
<p># dig +norec @ns1.linode.com alpinelinux.org a<br>
<br>
; <<>> DiG 9.18.30-0ubuntu0.22.04.2-Ubuntu
<<>> +norec @ns1.linode.com alpinelinux.org a<br>
; (2 servers found)<br>
;; global options: +cmd<br>
;; Got answer:<br>
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id:
30452<br>
;; flags: qr aa; QUERY: 1, ANSWER: 1, AUTHORITY: 5, ADDITIONAL: 1<br>
<br>
;; OPT PSEUDOSECTION:<br>
; EDNS: version: 0, flags:; udp: 1024<br>
;; QUESTION SECTION:<br>
;alpinelinux.org. IN A<br>
<br>
;; ANSWER SECTION:<br>
alpinelinux.org. 3600 IN A 213.219.36.190<br>
<br>
;; AUTHORITY SECTION:<br>
alpinelinux.org. 3600 IN NS ns5.linode.com.<br>
alpinelinux.org. 3600 IN NS ns4.linode.com.<br>
alpinelinux.org. 3600 IN NS ns3.linode.com.<br>
alpinelinux.org. 3600 IN NS ns1.linode.com.<br>
alpinelinux.org. 3600 IN NS ns2.linode.com.<br>
<br>
;; Query time: 6 msec<br>
;; SERVER: 2600:14c0:6::2#53(ns1.linode.com) (UDP)<br>
;; WHEN: Thu Mar 13 18:15:57 UTC 2025<br>
;; MSG SIZE rcvd: 160</p>
<p>If you get no reply at all in point (1), then *maybe* linode are
blocking your DNS traffic. Or there is a network routability issue
between you and them. Try with traceroute, and raise the issue
with *your* provider.<br>
</p>
<p>If you get a reply but it doesn't look what I showed above, then
there is something between you and the Internet which is mangling
your DNS, e.g. some sort of inline proxy - in which case, this is
a networking issue that you have to take upstream, nothing to do
with PDNS.</p>
<p>It could also be a problem resolving "ns1.linode.com", which it
has to do before sending the query there. Does that resolve? Try:</p>
<p>dig +short @8.8.8.8 ns1.linode.com. a</p>
<p>then repeat the original query with the IP address returned:</p>
<p>dig +norec @x.x.x.x alpinelinux.org a</p>
<p>Happy debugging!<br>
</p>
<p>Brian.<br>
</p>
</body>
</html>