I am having issues with a SINGLE domain "corrupt.co.nz", every other domain is fine! Here's the deal: Bind logs return nothing like they usually would saying there was an error with the domain. I can dig to ALL of my AUTH NS servers, and get the records returned no problemo. I can use XTRA, DTS (and a few others have used their own DNS servers) and get returned results without any SERVFAIL errors. I try to dig anything to the PARADISE NS servers (203.96.152{4,12}) and I get mixed results. I get www.corrupt.co.nz and corrupt.co.nz, but none of my overly important records (home.corrupt.co.nz, mail.corrupt.co.nz) It returns SERVFAIL id:2 whenever I try to request anything other then www.corrupt.co.nz / corrupt.co.nz via PARADISES NS Servers Any ideas? I have contacted soa(a)paradise.net.nz but god knows how long that will take to be processed. - Drew
At risk of being accused as a top-poster.... http://www.dnsreport.com/tools/dnsreport.ch?domain=corrupt.co.nz Drew Broadley wrote:
I am having issues with a SINGLE domain "corrupt.co.nz", every other domain is fine!
Does that help?
On Fri, Apr 16, 2004 at 11:54:57AM +1200, Drew Broadley wrote:
I get www.corrupt.co.nz and corrupt.co.nz, but none of my overly important records (home.corrupt.co.nz, mail.corrupt.co.nz)
It returns SERVFAIL id:2 whenever I try to request anything other then www.corrupt.co.nz / corrupt.co.nz via PARADISES NS Servers
The id value isn't a value of substance for this discussion (it's not an error code at all, its used as a transaction ID).
Any ideas?
One reason for the fault may be that a negative result has been cached and will therefor require some time for it to invalidate the negative result for those names. -- Cameron Kerr cameron.kerr(a)paradise.net.nz : http://nzgeeks.org/cameron/ Empowered by Perl!
Seems fine to me...
icepick(a)ns:~$ dig @rachel.paradise.net.nz corrupt.co.nz
; <<>> DiG 8.3 <<>> @rachel.paradise.net.nz corrupt.co.nz
; (1 server found)
;; ANSWER SECTION:
corrupt.co.nz. 38m14s IN A 202.36.205.18
;; AUTHORITY SECTION:
corrupt.co.nz. 38m14s IN NS theyre.corrupt.co.nz.
corrupt.co.nz. 38m14s IN NS im.corrupt.co.nz.
corrupt.co.nz. 38m14s IN NS hes.corrupt.co.nz.
corrupt.co.nz. 38m14s IN NS shes.corrupt.co.nz.
though terminator.xtra show ...
;; AUTHORITY SECTION:
corrupt.co.nz. 1h48m18s IN NS ns1.iplay.net.nz.
corrupt.co.nz. 1h48m18s IN NS ns2.iplay.net.nz.
corrupt.co.nz. 1h48m18s IN NS ns3.iplay.net.nz.
corrupt.co.nz. 1h48m18s IN NS ns4.iplay.net.nz.
Barry
----- Original Message -----
From: "Drew Broadley"
I am having issues with a SINGLE domain "corrupt.co.nz", every other domain is fine!
Here's the deal:
Bind logs return nothing like they usually would saying there was an error with the domain.
I can dig to ALL of my AUTH NS servers, and get the records returned no problemo.
I can use XTRA, DTS (and a few others have used their own DNS servers) and get returned results without any SERVFAIL errors.
I try to dig anything to the PARADISE NS servers (203.96.152{4,12}) and I get mixed results. I get www.corrupt.co.nz and corrupt.co.nz, but none of my overly important records (home.corrupt.co.nz, mail.corrupt.co.nz) It returns SERVFAIL id:2 whenever I try to request anything other then www.corrupt.co.nz / corrupt.co.nz via PARADISES NS Servers
Any ideas?
I have contacted soa(a)paradise.net.nz but god knows how long that will take to be processed.
- Drew
_______________________________________________ NZNOG mailing list NZNOG(a)list.waikato.ac.nz http://list.waikato.ac.nz/mailman/listinfo/nznog
"Drew Broadley"
I am having issues with a SINGLE domain "corrupt.co.nz", every other domain is fine! ... It returns SERVFAIL id:2 whenever I try to request anything other then www.corrupt.co.nz / corrupt.co.nz via PARADISES NS Servers
The Paradise servers list as name servers: corrupt.co.nz. 1h8m39s IN NS theyre.corrupt.co.nz. corrupt.co.nz. 1h8m39s IN NS im.corrupt.co.nz. corrupt.co.nz. 1h8m39s IN NS hes.corrupt.co.nz. corrupt.co.nz. 1h8m39s IN NS shes.corrupt.co.nz. not the servers listed in the actual zone: corrupt.co.nz. 2h13m20s IN NS ns1.iplay.net.nz. corrupt.co.nz. 2h13m20s IN NS ns2.iplay.net.nz. corrupt.co.nz. 2h13m20s IN NS ns3.iplay.net.nz. which is different to the list on the registry: corrupt.co.nz. 1D IN NS ns2.iplay.net.nz. corrupt.co.nz. 1D IN NS ns3.iplay.net.nz. corrupt.co.nz. 1D IN NS ns.iplay.net.nz. The top list (theyre.corrupt.co.nz et al) are all CNAMES which is Not Allowed. I suspect that Paradise has cached a broken configuration, and you'll just have to wait until it times out in just over an hour. You might like to make sure the registry and zone NS lists agree too. -- don
Cheers for the help everyone, the links supplied by Tim and James will help immensly in the future! I know my config is a little nasty and I should have included a bit more of my CHANGELOG history. It was broken before changing the NS details for the domain, they originally did not mismatch. It was a case of paradise caching a bad configuration for over 12 hours which I found particulalry weird, and it probably did not help that I was fiddling every hour or so with the configuration. I left it overnight for 8+ hours (with being able to successfully query all my NS's and get full results) and it still did not refresh with the latest working records. Things seem to have sorted themselves out, now I'm going to slap myself on the wrist and tidy up my conf. - Drew
Cheers for the help everyone, the links supplied by Tim and James will help immensly in the future! I know my config is a little nasty and I should have included a bit more of my CHANGELOG history. It was broken before changing the NS details for the domain, they originally did not mismatch. It was a case of paradise caching a bad configuration for over 12 hours which I found particulalry weird, and it probably did not help that I was fiddling every hour or so with the configuration. I left it overnight for 8+ hours (with being able to successfully query all my NS's and get full results) and it still did not refresh with the latest working records. Things seem to have sorted themselves out, now I'm going to slap myself on the wrist and tidy up my conf. - Drew
participants (5)
-
Barry Murphy -
Cameron Kerr -
Don Stokes -
Drew Broadley -
James Spooner