i too see this . But only on debian lenny bind9 installations, not on every host and only since a few days. Maybe some security update introduced a bug.
as a workaround i configured forwarders.
- Thomas
On 29.04.2010 10:50, Christian 'wiwi' Wittenhorst wrote:
I got some reports from customers that some CH domains no not resolve... While testing if found: Only two of the [a-f].nic.ch seem to give replies... The ones that answer are exactly the ones that do not have IPv6 addresses...
Happens at least for ksz.ch and swisscom.ch. Anyone else sees this?
Any ideas?
(820)[root@svn /tmp]# sh ch dig swisscom.ch ns @A.nic.ch ;; Got referral reply from 130.59.1.80, trying next server
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 <<>> swisscom.ch ns @A.nic.ch ;; global options: printcmd ;; connection timed out; no servers could be reached
dig swisscom.ch ns @B.nic.ch ;; Got referral reply from 130.59.211.10, trying next server
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 <<>> swisscom.ch ns @B.nic.ch ;; global options: printcmd ;; connection timed out; no servers could be reached
dig swisscom.ch ns @C.nic.ch ;; Got referral reply from 147.28.0.39, trying next server
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 <<>> swisscom.ch ns @C.nic.ch ;; global options: printcmd ;; connection timed out; no servers could be reached
dig swisscom.ch ns @D.nic.ch
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 <<>> swisscom.ch ns @D.nic.ch ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 24625 ;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 2, ADDITIONAL: 0
;; QUESTION SECTION: ;swisscom.ch. IN NS
;; AUTHORITY SECTION: swisscom.ch. 3600 IN NS dns2.swisscom.com. swisscom.ch. 3600 IN NS dns1.swisscom.com.
;; Query time: 218 msec ;; SERVER: 200.160.0.5#53(200.160.0.5) ;; WHEN: Thu Apr 29 10:41:36 2010 ;; MSG SIZE rcvd: 79
dig swisscom.ch ns @E.nic.ch ;; Got referral reply from 204.61.216.47, trying next server
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 <<>> swisscom.ch ns @E.nic.ch ;; global options: printcmd ;; connection timed out; no servers could be reached
dig swisscom.ch ns @F.nic.ch
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 <<>> swisscom.ch ns @F.nic.ch ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 61901 ;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 2, ADDITIONAL: 0
;; QUESTION SECTION: ;swisscom.ch. IN NS
;; AUTHORITY SECTION: swisscom.ch. 3600 IN NS dns1.swisscom.com. swisscom.ch. 3600 IN NS dns2.swisscom.com.
;; Query time: 24 msec ;; SERVER: 194.146.106.10#53(194.146.106.10) ;; WHEN: Thu Apr 29 10:41:51 2010 ;; MSG SIZE rcvd: 79
dig ksz.ch ns @A.nic.ch ;; Got referral reply from 130.59.1.80, trying next server
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 <<>> ksz.ch ns @A.nic.ch ;; global options: printcmd ;; connection timed out; no servers could be reached
dig ksz.ch ns @B.nic.ch ;; Got referral reply from 130.59.211.10, trying next server
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 <<>> ksz.ch ns @B.nic.ch ;; global options: printcmd ;; connection timed out; no servers could be reached
dig ksz.ch ns @C.nic.ch ;; Got referral reply from 147.28.0.39, trying next server
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 <<>> ksz.ch ns @C.nic.ch ;; global options: printcmd ;; connection timed out; no servers could be reached
dig ksz.ch ns @D.nic.ch
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 <<>> ksz.ch ns @D.nic.ch ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 59974 ;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 3, ADDITIONAL: 0
;; QUESTION SECTION: ;ksz.ch. IN NS
;; AUTHORITY SECTION: ksz.ch. 3600 IN NS zug.ch.ns.progon.net. ksz.ch. 3600 IN NS udns1.ultradns.net. ksz.ch. 3600 IN NS udns2.ultradns.net.
;; Query time: 228 msec ;; SERVER: 200.160.0.5#53(200.160.0.5) ;; WHEN: Thu Apr 29 10:44:25 2010 ;; MSG SIZE rcvd: 107
dig ksz.ch ns @E.nic.ch ;; Got referral reply from 204.61.216.47, trying next server
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 <<>> ksz.ch ns @E.nic.ch ;; global options: printcmd ;; connection timed out; no servers could be reached
dig ksz.ch ns @F.nic.ch
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 <<>> ksz.ch ns @F.nic.ch ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 1256 ;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 3, ADDITIONAL: 0
;; QUESTION SECTION: ;ksz.ch. IN NS
;; AUTHORITY SECTION: ksz.ch. 3600 IN NS zug.ch.ns.progon.net. ksz.ch. 3600 IN NS udns2.ultradns.net. ksz.ch. 3600 IN NS udns1.ultradns.net.
;; Query time: 24 msec ;; SERVER: 194.146.106.10#53(194.146.106.10) ;; WHEN: Thu Apr 29 10:44:41 2010 ;; MSG SIZE rcvd: 107
(825)[root@svn /tmp]# dig -d swisscom.ch ns @A.nic.ch main parsing swisscom.ch clone_lookup() make_empty_lookup() clone_server_list() looking up swisscom.ch main parsing ns main parsing @A.nic.ch make_server(130.59.1.80) make_server(2001:620::4) setup_system() create_search_list() ndots is 1. copy_server_list() make_server(81.94.122.18) lock_lookup dighost.c:3100 success start_lookup() setup_lookup(0x2ad26cf3ed98) resetting lookup counter. using root origin recursive query add_question() starting to render the message done rendering create query 0x2ad26cf63b88 linked to lookup 0x2ad26cf3ed98 create query 0x2ad26cf63d68 linked to lookup 0x2ad26cf3ed98 do_lookup() send_udp(0x2ad26cf63b88) bringup_timer() have local timeout of 1 working on lookup 0x2ad26cf3ed98, query 0x2ad26cf63b88 sockcount=1 recving with lookup=0x2ad26cf3ed98, query=0x2ad26cf63b88, sock=0x2ad26cf86010 recvcount=1 sending a request unlock_lookup dighost.c:3102 lock_lookup dighost.c:1919 success send_done() sendcount=0 check_if_done() list empty unlock_lookup dighost.c:1948 recv_done() lock_lookup dighost.c:2605 success recvcount=0 lookup=0x2ad26cf3ed98, query=0x2ad26cf63b88 before parse starts sending query 0x2ad26cf63d68
send_udp(0x2ad26cf63d68) bringup_timer() have local timeout of 5 working on lookup 0x2ad26cf3ed98, query 0x2ad26cf63d68 sockcount=2 recving with lookup=0x2ad26cf3ed98, query=0x2ad26cf63d68, sock=0x2ad26cf87070 recvcount=1 sending a request ;; Got referral reply from 130.59.1.80, trying next server clear_query(0x2ad26cf63b88) sockcount=1 check_next_lookup(0x2ad26cf3ed98) still have a worker unlock_lookup dighost.c:2848 lock_lookup dighost.c:1919 success send_done() sendcount=0 check_if_done() list empty unlock_lookup dighost.c:1948 connect_timeout() lock_lookup dighost.c:2160 success resending UDP request to first server send_udp(0x2ad26cf63d68) bringup_timer() have local timeout of 5 working on lookup 0x2ad26cf3ed98, query 0x2ad26cf63d68 sending a request unlock_lookup dighost.c:2201 lock_lookup dighost.c:1919 success send_done() sendcount=0 check_if_done() list empty unlock_lookup dighost.c:1948 connect_timeout() lock_lookup dighost.c:2160 success resending UDP request to first server send_udp(0x2ad26cf63d68) bringup_timer() have local timeout of 5 working on lookup 0x2ad26cf3ed98, query 0x2ad26cf63d68 sending a request unlock_lookup dighost.c:2201 lock_lookup dighost.c:1919 success send_done() sendcount=0 check_if_done() list empty unlock_lookup dighost.c:1948 connect_timeout() lock_lookup dighost.c:2160 success
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 <<>> -d swisscom.ch ns @A.nic.ch ;; global options: printcmd ;; connection timed out; no servers could be reached cancel_lookup() check_if_done() list empty check_next_lookup(0x2ad26cf3ed98) still have a worker unlock_lookup dighost.c:2201 recv_done() lock_lookup dighost.c:2605 success recvcount=0 lookup=0x2ad26cf3ed98, query=0x2ad26cf63d68 no longer pending. Got operation canceled clear_query(0x2ad26cf63d68) sockcount=0 check_next_lookup(0x2ad26cf3ed98) try_clear_lookup(0x2ad26cf3ed98) destroy freeing server 0x2ad26cf41408 belonging to 0x2ad26cf3ed98 freeing server 0x2ad26cf41c38 belonging to 0x2ad26cf3ed98 start_lookup() check_if_done() list empty shutting down unlock_lookup dighost.c:2632 destroy cancel_all() lock_lookup dighost.c:3116 success unlock_lookup dighost.c:3146 destroy_libs() freeing task freeing taskmgr lock_lookup dighost.c:3173 success flush_server_list() freeing commctx freeing socketmgr freeing timermgr destroy DST lib detach from entropy unlock_lookup dighost.c:3219
Greetings from Zug
wiwi
swinog mailing list swinog@lists.swinog.ch http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog