DNS Resolver going all crazy
-
1. I have a NAT loop-back set and I have 2 names registers which both point to the same IP address: whsp.eu and privendo.eu
2. If I use dataview to check the registrator dns (godaddy) both addresses point to the proper IP (check dataview_inet_dns.png)… used ns41.domaincontrol.com as DNS resolver.
3. If I use DNS lookup in pfsense I get proper IP for both addresses, so pfsense has access to proper DNS IP.
4. If I use dataview to check the pfsense DNS-Resolver IPs I get error 9002 (check dataview_dns_resolver.png).
5. If I execute 'nslookup -debug privendo.eu' I get all ok:
D:\Program Files\Monitors\DNS View>nslookup -debug privendo.eu
Got answer:
HEADER:
opcode = QUERY, id = 1, rcode = NOERROR
header flags: response, auth. answer, want recursion, recursion avail.
questions = 1, answers = 1, authority records = 0, additional = 0QUESTIONS:
1.0.168.192.in-addr.arpa, type = PTR, class = IN
ANSWERS:
-> 1.0.168.192.in-addr.arpa
name = router.localdomain
ttl = 3600 (1 hour)
Server: router.localdomain
Address: 192.168.0.1
Got answer:
HEADER:
opcode = QUERY, id = 2, rcode = NOERROR
header flags: response, want recursion, recursion avail.
questions = 1, answers = 1, authority records = 2, additional = 0QUESTIONS:
privendo.eu, type = A, class = IN
ANSWERS:
-> privendo.eu
internet address = 31.15.219.2
ttl = 3445 (57 mins 25 secs)
AUTHORITY RECORDS:
-> privendo.eu
nameserver = ns42.domaincontrol.com
ttl = 3445 (57 mins 25 secs)
-> privendo.eu
nameserver = ns41.domaincontrol.com
ttl = 3445 (57 mins 25 secs)
Non-authoritative answer:
Got answer:
HEADER:
opcode = QUERY, id = 3, rcode = NOERROR
header flags: response, want recursion, recursion avail.
questions = 1, answers = 0, authority records = 1, additional = 0QUESTIONS:
privendo.eu, type = AAAA, class = IN
AUTHORITY RECORDS:
-> privendo.eu
ttl = 445 (7 mins 25 secs)
primary name server = ns41.domaincontrol.com
responsible mail addr = dns.jomax.net
serial = 2017010704
refresh = 28800 (8 hours)
retry = 7200 (2 hours)
expire = 604800 (7 days)
default TTL = 600 (10 mins)
Name: privendo.eu
Address: 31.15.219.26. If I execute 'nslookup -debug whsp.eu' I get errors:
E:\Podjetja>nslookup -debug whsp.euGot answer:
HEADER:
opcode = QUERY, id = 1, rcode = NOERROR
header flags: response, auth. answer, want recursion, recursion avail.
questions = 1, answers = 1, authority records = 0, additional = 0QUESTIONS:
1.0.168.192.in-addr.arpa, type = PTR, class = IN
ANSWERS:
-> 1.0.168.192.in-addr.arpa
name = router.localdomain
ttl = 3600 (1 hour)
Server: router.localdomain
Address: 192.168.0.1
Got answer:
HEADER:
opcode = QUERY, id = 2, rcode = SERVFAIL
header flags: response, want recursion, recursion avail.
questions = 1, answers = 0, authority records = 0, additional = 0QUESTIONS:
whsp.eu, type = A, class = IN
Got answer:
HEADER:
opcode = QUERY, id = 3, rcode = SERVFAIL
header flags: response, want recursion, recursion avail.
questions = 1, answers = 0, authority records = 0, additional = 0QUESTIONS:
whsp.eu, type = AAAA, class = IN
Got answer:
HEADER:
opcode = QUERY, id = 4, rcode = SERVFAIL
header flags: response, want recursion, recursion avail.
questions = 1, answers = 0, authority records = 0, additional = 0QUESTIONS:
whsp.eu, type = A, class = IN
Got answer:
HEADER:
opcode = QUERY, id = 5, rcode = SERVFAIL
header flags: response, want recursion, recursion avail.
questions = 1, answers = 0, authority records = 0, additional = 0QUESTIONS:
whsp.eu, type = AAAA, class = IN
*** router.localdomain can't find whsp.eu: Server failed
7. I've restarted the DNS Resolver server, have restarted whole pfSense, have Turned off DNS Resolver and then Turned it on again, but still the whsp.eu doesn't get resolved and I don't know what to do.
If anybody has any ideas please help as I can't get any emails because of this issue.
Best regards
Waldemar
-
As it looks there is some DNS servers switching going on at godaddy and parts of the world still have the old servers.