Craig aven dns

Brad Knowles brad.knowles at skynet.be
Wed Apr 11 20:11:32 UTC 2001 

At 3:48 PM -0400 4/11/01, Charles Bodley wrote:

>  two of my domains are having issues.
>  The main domain is craigmichaelaven.com and also craigaven.com
>  I can run dig and get information but ns fails each time.
>  Can someone else test it out and see if they have problems also?

	Looks to me like NS2.TFLOGIC.com. is screwed up somehow -- it's 
handing out non-authoritative answers for these two domains:

dig @NS.TFLOGIC.com. craigaven.com. soa

; <<>> DiG 8.1 <<>> @NS.TFLOGIC.com. craigaven.com. soa
; (1 server found)
;; res options: init recurs defnam dnsrch
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 10
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2
;; QUERY SECTION:
;;      craigaven.com, type = SOA, class = IN

;; ANSWER SECTION:
craigaven.com.          1H IN SOA       craigaven.com. 
hostmaster.tflogic.com. (
                                         2001041102      ; serial
                                         12H             ; refresh
                                         2H              ; retry
                                         2W              ; expiry
                                         1H )            ; minimum


;; AUTHORITY SECTION:
craigaven.com.          1H IN NS        ns.tflogic.com.
craigaven.com.          1H IN NS        ns2.tflogic.com.

;; ADDITIONAL SECTION:
ns.tflogic.com.         1H IN A         216.143.228.100
ns2.tflogic.com.        1H IN A         216.143.228.101

;; Total query time: 78 msec
;; WHEN: Wed Apr 11 16:08:44 2001
;; MSG SIZE  sent: 31  rcvd: 153

dig @ns2.tflogic.com. craigaven.com. soa

; <<>> DiG 8.1 <<>> @ns2.tflogic.com. craigaven.com. soa
; (1 server found)
;; res options: init recurs defnam dnsrch
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 10
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2
;; QUERY SECTION:
;;      craigaven.com, type = SOA, class = IN

;; ANSWER SECTION:
craigaven.com.          28m16s IN SOA   craigaven.com. 
hostmaster.tflogic.com. (
                                         2001041101      ; serial
                                         12H             ; refresh
                                         2H              ; retry
                                         2W              ; expiry
                                         1H )            ; minimum


;; AUTHORITY SECTION:
craigaven.com.          1d21h5m35s IN NS  NS.tflogic.com.
craigaven.com.          1d21h5m35s IN NS  NS2.tflogic.com.

;; ADDITIONAL SECTION:
NS.tflogic.com.         1H IN A         216.143.228.100
NS2.tflogic.com.        1H IN A         216.143.228.101

;; Total query time: 81 msec
;; WHEN: Wed Apr 11 16:08:46 2001
;; MSG SIZE  sent: 31  rcvd: 153


	Notice that the "flags:" section for the latter query only 
includes "qr rd ra" and not the "aa" flag that you should see from a 
server that is supposed to be authoritative for this zone.  This 
server also seems to have a slightly older version of the zone for 
this domain (note the serial number differences).


	This is all that leaps out at me for the moment.  If you can fix 
the problem of this machine being non-authoritative for this zone, 
that may solve your other problems.

-- 
Brad Knowles, <brad.knowles at skynet.be>

/*        efdtt.c  Author:  Charles M. Hannum <root at ihack.net>          */
/*       Represented as 1045 digit prime number by Phil Carmody         */
/*     Prime as DNS cname chain by Roy Arends and Walter Belgers        */
/*                                                                      */
/*     Usage is:  cat title-key scrambled.vob | efdtt >clear.vob        */
/*   where title-key = "153 2 8 105 225" or other similar 5-byte key    */

dig decss.friet.org|perl -ne'if(/^x/){s/[x.]//g;print pack(H124,$_)}'

More information about the bind-users mailing list