Re: NSD: Could not tcp connect to X Operation timed out
On Wed, Jan 19, 2022 at 11:31:07AM +, Laura Smith wrote: > Hi > > OpenBSD NSD slave is driving me nuts with the following message in the logs > "Could not tcp connect to X Operation timed out". > > The answer sounds obvious, but I can: > > - Ping the IP > - Do a "dig @$auth_server_ip $auth_domain" > > Both respond normally. > > What am I missing here ? Connectivity clearly works ? PF is clearly not > dropping inbound port 53 on the master ? > > THanks > > Laura Hi, you need to use the +tcp option with dig to test TCP functionality. DNS is tcp and udp on port 53 and if the remote end doesn't support it they are breaking the RFC. Hope that helps, -peter
Re: NSD: Could not tcp connect to X Operation timed out
On Wed, Jan 19, 2022 at 11:31:07AM +, Laura Smith wrote: | Hi | | OpenBSD NSD slave is driving me nuts with the following message in the logs "Could not tcp connect to X Operation timed out". | | The answer sounds obvious, but I can: | | - Ping the IP | - Do a "dig @$auth_server_ip $auth_domain" Try "-t AXFR" and/or "+tcp" Ping uses icmp and dig defaults to udp. You can force tcp with "+tcp" and you can do the transfer manually with "-t AXFR". If both work, you may have multiple IPs configured, try with all of them. Cheers, Paul 'WEiRD' de Weerd -- >[<++>-]<+++.>+++[<-->-]<.>+++[<+ +++>-]<.>++[<>-]<+.--.[-] http://www.weirdnet.nl/
Re: NSD: Could not tcp connect to X Operation timed out
is pf allowing tcp port53 as well as udp port53 ? On Wed 19 Jan 2022, 11:46 Laura Smith, wrote: > Hi > > OpenBSD NSD slave is driving me nuts with the following message in the > logs "Could not tcp connect to X Operation timed out". > > The answer sounds obvious, but I can: > > - Ping the IP > - Do a "dig @$auth_server_ip $auth_domain" > > Both respond normally. > > What am I missing here ? Connectivity clearly works ? PF is clearly not > dropping inbound port 53 on the master ? > > THanks > > Laura > >
