Domain lookup only working from some DNS servers

Simon Waters Simon at
Tue Jan 21 04:16:45 UTC 2003

Hash: SHA1

David Aselford wrote:
> Interesting problem....
> The optusnet support team indicate that there is an error in
> DNS configuration.

And they didn't give any hints?

Okay the two delegated names servers (dig ns +short) are on the same network. If you don't
include the off-network server in the delegation no one will
find it when most needed - i,e, when your network is down or busy.

The server is lame.

The domain has issues of it's own that could do
with resolving.

The TTL on the NS records cached at are
greater than the TTL for those records from the authoritative
servers, and since it is running BIND 9 I wondered have you
changed the zone recently, and if so what changes? I
wonder if you had omitted the A records for the NS at some point
or similar?

I don't see any obvious show stoppers - it resolves from DNS
servers in UK fine.

The default TTL is fine, but the negative TTL for is
rather long. See documentation on $TTL and the meaning of the
last field of SOA.

Lots of authoritative servers involved also permit recursion,
shouldn't matter too much, but not considered best practice.

Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Using GnuPG with Mozilla -


More information about the bind-users mailing list