[Pdns-users] Recursor fails to resolve domains
Odhiambo Washington
odhiambo at gmail.com
Mon Apr 8 14:13:43 UTC 2013
Sure>
[root at jaribu] ~wash/Tools/PDNS/pdns-recursor-3.5-rc5# dig @196.200.16.2
gw.cmehtanbo.com any
; <<>> DiG 9.9.2-P2 <<>> @196.200.16.2 gw.cmehtanbo.com any
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 59753
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 3, ADDITIONAL: 4
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;gw.cmehtanbo.com. IN ANY
;; ANSWER SECTION:
gw.cmehtanbo.com. 9687 IN A 41.215.42.238
;; AUTHORITY SECTION:
cmehtanbo.com. 9687 IN NS ns1.accesskenya.com.
cmehtanbo.com. 9687 IN NS ukns1.accesskenya.com.
cmehtanbo.com. 9687 IN NS ns0.accesskenya.com.
;; ADDITIONAL SECTION:
ns0.accesskenya.com. 5956 IN A 196.200.16.8
ns1.accesskenya.com. 6016 IN A 196.200.16.8
ukns1.accesskenya.com. 5965 IN A 109.231.81.235
;; Query time: 87 msec
;; SERVER: 196.200.16.2#53(196.200.16.2)
;; WHEN: Mon Apr 8 17:07:01 2013
;; MSG SIZE rcvd: 177
[root at jaribu] ~wash/Tools/PDNS/pdns-recursor-3.5-rc5# dig @196.200.16.27
gw.cmehtanbo.com any
; <<>> DiG 9.9.2-P2 <<>> @196.200.16.27 gw.cmehtanbo.com any
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 9816
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 3, ADDITIONAL: 4
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;gw.cmehtanbo.com. IN ANY
;; ANSWER SECTION:
gw.cmehtanbo.com. 2923 IN A 41.215.42.238
;; AUTHORITY SECTION:
cmehtanbo.com. 2923 IN NS ns1.accesskenya.com.
cmehtanbo.com. 2923 IN NS ukns1.accesskenya.com.
cmehtanbo.com. 2923 IN NS ns0.accesskenya.com.
;; ADDITIONAL SECTION:
ns0.accesskenya.com. 6123 IN A 196.200.16.8
ns1.accesskenya.com. 5974 IN A 196.200.16.8
ukns1.accesskenya.com. 6055 IN A 109.231.81.235
;; Query time: 232 msec
;; SERVER: 196.200.16.27#53(196.200.16.27)
;; WHEN: Mon Apr 8 17:07:16 2013
;; MSG SIZE rcvd: 177
[root at jaribu] ~wash/Tools/PDNS/pdns-recursor-3.5-rc5#
However, a direct dig to {ns1|ukns1|ns0}.accesskenya.com are all declined
from my IP.
I manage several Unix boxes, so I decided to try the same queries from
'outside' my ISPs network and here is what I got!
(17:11:24 <~>) 0 $ dig @ns1.accesskenya.com. gw.cmehtanbo.com. any
; <<>> DiG 9.6.-ESV-R7-P4 <<>> @ns1.accesskenya.com. gw.cmehtanbo.com. any
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 25808
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 3, ADDITIONAL: 3
;; WARNING: recursion requested but not available
;; QUESTION SECTION:
;gw.cmehtanbo.com. IN ANY
;; ANSWER SECTION:
gw.cmehtanbo.com. 38400 IN A 41.215.42.238
;; AUTHORITY SECTION:
cmehtanbo.com. 38400 IN NS ukns1.accesskenya.com.
cmehtanbo.com. 38400 IN NS ns0.accesskenya.com.
cmehtanbo.com. 38400 IN NS ns1.accesskenya.com.
;; ADDITIONAL SECTION:
ns0.accesskenya.com. 38400 IN A 196.200.16.8
ns1.accesskenya.com. 38400 IN A 196.200.16.8
ukns1.accesskenya.com. 38400 IN A 109.231.81.235
;; Query time: 3 msec
;; SERVER: 196.200.16.8#53(196.200.16.8)
;; WHEN: Mon Apr 8 17:11:27 2013
;; MSG SIZE rcvd: 166
(17:11:27 <~>) 0 $ dig @ukns1.accesskenya.com. gw.cmehtanbo.com. any
; <<>> DiG 9.6.-ESV-R7-P4 <<>> @ukns1.accesskenya.com. gw.cmehtanbo.com. any
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 21325
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 3, ADDITIONAL: 3
;; WARNING: recursion requested but not available
;; QUESTION SECTION:
;gw.cmehtanbo.com. IN ANY
;; ANSWER SECTION:
gw.cmehtanbo.com. 38400 IN A 41.215.42.238
;; AUTHORITY SECTION:
cmehtanbo.com. 38400 IN NS ns0.accesskenya.com.
cmehtanbo.com. 38400 IN NS ns1.accesskenya.com.
cmehtanbo.com. 38400 IN NS ukns1.accesskenya.com.
;; ADDITIONAL SECTION:
ns0.accesskenya.com. 38400 IN A 196.200.16.8
ns1.accesskenya.com. 38400 IN A 196.200.16.8
ukns1.accesskenya.com. 38400 IN A 109.231.81.235
;; Query time: 204 msec
;; SERVER: 109.231.81.235#53(109.231.81.235)
;; WHEN: Mon Apr 8 17:11:38 2013
;; MSG SIZE rcvd: 166
(17:11:38 <~>) 0 $ dig @ns0.accesskenya.com. gw.cmehtanbo.com. any
; <<>> DiG 9.6.-ESV-R7-P4 <<>> @ns0.accesskenya.com. gw.cmehtanbo.com. any
; (1 server found)
;; global options: +cmd
;; connection timed out; no servers could be reached
(17:12:06 <~>) 0 $
So it would appear that my ISP allows queries to {ns1|ukns1|ns0}.
accesskenya.com from outside their network, but kinds disallow it from the
servers they give to clients to use!
On 8 April 2013 16:59, Peter van Dijk <peter.van.dijk at netherlabs.nl> wrote:
> Hello,
>
> also, can you show the results of dig queries against the two servers you
> are forwarding to?
>
> Kind regards,
> --
> Peter van Dijk
> Netherlabs Computer Consulting BV - http://www.netherlabs.nl/
>
>
> _______________________________________________
> Pdns-users mailing list
> Pdns-users at mailman.powerdns.com
> http://mailman.powerdns.com/mailman/listinfo/pdns-users
>
--
Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254733744121/+254722743223
"I can't hear you -- I'm using the scrambler."
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.powerdns.com/pipermail/pdns-users/attachments/20130408/34344b59/attachment-0001.html>
More information about the Pdns-users
mailing list