Re: [Pdns-users] Recursor fails to resolve domains

Odhiambo Washington Mon, 08 Apr 2013 07:18:17 -0700

Sure>

[root@jaribu] ~wash/Tools/PDNS/pdns-recursor-3.5-rc5# dig @196.200.16.2
gw.cmehtanbo.com any


; <<>> DiG 9.9.2-P2 <<>> @196.200.16.2 gw.cmehtanbo.com any
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 59753
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 3, ADDITIONAL: 4

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;gw.cmehtanbo.com.              IN      ANY

;; ANSWER SECTION:
gw.cmehtanbo.com.       9687    IN      A       41.215.42.238

;; AUTHORITY SECTION:
cmehtanbo.com.          9687    IN      NS      ns1.accesskenya.com.
cmehtanbo.com.          9687    IN      NS      ukns1.accesskenya.com.
cmehtanbo.com.          9687    IN      NS      ns0.accesskenya.com.

;; ADDITIONAL SECTION:
ns0.accesskenya.com.    5956    IN      A       196.200.16.8
ns1.accesskenya.com.    6016    IN      A       196.200.16.8
ukns1.accesskenya.com.  5965    IN      A       109.231.81.235

;; Query time: 87 msec
;; SERVER: 196.200.16.2#53(196.200.16.2)
;; WHEN: Mon Apr  8 17:07:01 2013
;; MSG SIZE  rcvd: 177

[root@jaribu] ~wash/Tools/PDNS/pdns-recursor-3.5-rc5# dig @196.200.16.27
gw.cmehtanbo.com any

; <<>> DiG 9.9.2-P2 <<>> @196.200.16.27 gw.cmehtanbo.com any
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 9816
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 3, ADDITIONAL: 4

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;gw.cmehtanbo.com.              IN      ANY

;; ANSWER SECTION:
gw.cmehtanbo.com.       2923    IN      A       41.215.42.238

;; AUTHORITY SECTION:
cmehtanbo.com.          2923    IN      NS      ns1.accesskenya.com.
cmehtanbo.com.          2923    IN      NS      ukns1.accesskenya.com.
cmehtanbo.com.          2923    IN      NS      ns0.accesskenya.com.

;; ADDITIONAL SECTION:
ns0.accesskenya.com.    6123    IN      A       196.200.16.8
ns1.accesskenya.com.    5974    IN      A       196.200.16.8
ukns1.accesskenya.com.  6055    IN      A       109.231.81.235

;; Query time: 232 msec
;; SERVER: 196.200.16.27#53(196.200.16.27)
;; WHEN: Mon Apr  8 17:07:16 2013
;; MSG SIZE  rcvd: 177

[root@jaribu] ~wash/Tools/PDNS/pdns-recursor-3.5-rc5#


However, a direct dig to {ns1|ukns1|ns0}.accesskenya.com are all declined
from my IP.
I manage several Unix boxes, so I decided to try the same queries from
'outside' my ISPs network and here is what I got!

(17:11:24 <~>) 0 $ dig @ns1.accesskenya.com. gw.cmehtanbo.com. any

; <<>> DiG 9.6.-ESV-R7-P4 <<>> @ns1.accesskenya.com. gw.cmehtanbo.com. any
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 25808
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 3, ADDITIONAL: 3
;; WARNING: recursion requested but not available

;; QUESTION SECTION:
;gw.cmehtanbo.com.              IN      ANY

;; ANSWER SECTION:
gw.cmehtanbo.com.       38400   IN      A       41.215.42.238

;; AUTHORITY SECTION:
cmehtanbo.com.          38400   IN      NS      ukns1.accesskenya.com.
cmehtanbo.com.          38400   IN      NS      ns0.accesskenya.com.
cmehtanbo.com.          38400   IN      NS      ns1.accesskenya.com.

;; ADDITIONAL SECTION:
ns0.accesskenya.com.    38400   IN      A       196.200.16.8
ns1.accesskenya.com.    38400   IN      A       196.200.16.8
ukns1.accesskenya.com.  38400   IN      A       109.231.81.235

;; Query time: 3 msec
;; SERVER: 196.200.16.8#53(196.200.16.8)
;; WHEN: Mon Apr  8 17:11:27 2013
;; MSG SIZE  rcvd: 166

(17:11:27 <~>) 0 $ dig @ukns1.accesskenya.com. gw.cmehtanbo.com. any

; <<>> DiG 9.6.-ESV-R7-P4 <<>> @ukns1.accesskenya.com. gw.cmehtanbo.com. any
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 21325
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 3, ADDITIONAL: 3
;; WARNING: recursion requested but not available

;; QUESTION SECTION:
;gw.cmehtanbo.com.              IN      ANY

;; ANSWER SECTION:
gw.cmehtanbo.com.       38400   IN      A       41.215.42.238

;; AUTHORITY SECTION:
cmehtanbo.com.          38400   IN      NS      ns0.accesskenya.com.
cmehtanbo.com.          38400   IN      NS      ns1.accesskenya.com.
cmehtanbo.com.          38400   IN      NS      ukns1.accesskenya.com.

;; ADDITIONAL SECTION:
ns0.accesskenya.com.    38400   IN      A       196.200.16.8
ns1.accesskenya.com.    38400   IN      A       196.200.16.8
ukns1.accesskenya.com.  38400   IN      A       109.231.81.235

;; Query time: 204 msec
;; SERVER: 109.231.81.235#53(109.231.81.235)
;; WHEN: Mon Apr  8 17:11:38 2013
;; MSG SIZE  rcvd: 166

(17:11:38 <~>) 0 $ dig @ns0.accesskenya.com. gw.cmehtanbo.com. any

; <<>> DiG 9.6.-ESV-R7-P4 <<>> @ns0.accesskenya.com. gw.cmehtanbo.com. any
; (1 server found)
;; global options: +cmd
;; connection timed out; no servers could be reached
(17:12:06 <~>) 0 $


So it would appear that my ISP allows queries to  {ns1|ukns1|ns0}.
accesskenya.com from outside their network, but kinds disallow it from the
servers they give to clients to use!




On 8 April 2013 16:59, Peter van Dijk <[email protected]> wrote:

> Hello,
>
> also, can you show the results of dig queries against the two servers you
> are forwarding to?
>
> Kind regards,
> --
> Peter van Dijk
> Netherlabs Computer Consulting BV - http://www.netherlabs.nl/
>
>
> _______________________________________________
> Pdns-users mailing list
> [email protected]
> http://mailman.powerdns.com/mailman/listinfo/pdns-users
>



-- 
Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254733744121/+254722743223
"I can't hear you -- I'm using the scrambler."

_______________________________________________
Pdns-users mailing list
[email protected]
http://mailman.powerdns.com/mailman/listinfo/pdns-users

Re: [Pdns-users] Recursor fails to resolve domains

Reply via email to