Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Local DNS resolving works, but external nameservers cannot resolve

Status
Not open for further replies.

omonoiatis9

Technical User
Mar 18, 2012
4
CY
Hello,

I have Bind9 installed on a RedHat 5.11 server and i am trying to configure a new zone in my nameserver.
This zone is a little more complicated that the rest of my zones because the domain of the url should be hosted on my nameserver but the webserver hosting the website is a server that does not belong to the company i work.
This is how i configured my zone file for this domain:
$TTL 604800
$ORIGIN <domain>.
@ IN SOA <my_nameserver>. postmaster.semltd.com.cy. (
2016060103 ; serial
12H ; refresh
15M ; retry
1W ; expiry
1D ) ; minimum

IN NS <my_nameserver>.
IN NS <secondary_dns>.
<my_nameserver>. IN A <nameserver_ip>
www IN A <webserver_ip>

when i try to resolve the domain locally i can get a successfull answer:
dig <domain>

; <<>> DiG 9.7.4-P1-RedHat-9.7.4-1.P1.el5 <<>> <domain>
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 34272
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2

;; QUESTION SECTION:
;<domain>. IN A

;; ANSWER SECTION:
<domain>. 604800 IN A <webserver_ip>

;; AUTHORITY SECTION:
<domain>. 604800 IN NS <nameserver>.
<domain>. 604800 IN NS <secondary_dns>.

;; ADDITIONAL SECTION:
<nameserver>. 604800 IN A <ip_address>
<secondary_dns>. 86392 IN A <ip_address>

;; Query time: 0 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Wed Jun 1 09:47:57 2016
;; MSG SIZE rcvd: 136

when i try to resolve the domain from an external nameserver (8.8.8.8 for google) i get a SERVFAIL error:

dig @8.8.8.8 <domain>

; <<>> DiG 9.7.4-P1-RedHat-9.7.4-1.P1.el5 <<>> @8.8.8.8 <domain>
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 59192
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;<domain>. IN A

;; Query time: 3169 msec
;; SERVER: 8.8.8.8#53(8.8.8.8)
;; WHEN: Wed Jun 1 09:48:18 2016
;; MSG SIZE rcvd: 38

Does anybody has any idea why i am facing this problem?

Thank you.
 
If you are getting SERVFAIL then something is misconfigured on the external authoritative server for the <domain>. Please check that.
You could also use "+trace" option for "dig" for debugging.
 
OK thank you for your reply.
From the trace i can see that is looking for a dns server that is not mine.
I will notify them that they need to contact their old dns hosts to remove their zone from their configuration.
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top