Some domains don't resolve



  • DNSmasq don't resolve domain free.anport.ru and some tohers.

    # cat /etc/resolv.conf
    domain cbanapa.dnsalias.org
    nameserver 127.0.0.1
    nameserver 192.168.1.1
    nameserver 31.15.88.2
    nameserver 31.15.88.3
    nameserver 31.15.88.2
    nameserver 83.239.0.202
    nameserver 8.8.8.8
    nameserver 208.67.220.222
    # nslookup free.anport.ru
    Server:		127.0.0.1
    Address:	127.0.0.1#53
    
    *** Can't find free.anport.ru: No answer
    
    # nslookup free.anport.ru 8.8.8.8
    Server:		8.8.8.8
    Address:	8.8.8.8#53
    
    Non-authoritative answer:
    Name:	free.anport.ru
    Address: 10.140.10.107
    
    

    Is this because of domain's IP (10.140.10.107 is in ISP's private subnet)?



  • as it was resloved in http://forum.pfsense.org/index.php/topic,42913.0.html dnsmasq thought it's attack " dnsmasq[5522]: possible DNS-rebind attack detected: free.anport.ru"
    I added an option "rebind-domain-ok=free.anport.ru" to DNSmasq advanced config and it's all right now.


Locked