Problems with BIND 9.2.2 on OS X

Andrew Cunningham andrewc at mac.com
Fri Oct 29 20:08:38 UTC 2004


There is some consternation on the OS X Server mailing lists regarding 
wide-spread problems with BIND that seem to have got "worse" recently. 
OS X Server ships with BIND 9.2.2. The typical complaint seems to be 
that BIND is failing to resolve addresses on a first attempt, and 
returning 'server not found to the client'. On the second or third 
attempt, though, BIND succeeds. No-one seems to be able to decide if it 
is OS X specific , or a wider BIND issue?


This is one explanation ?
"A few days ago, I can not get the exact date, some of the root servers 
started sending out AAAA records rather than A records. An AAAA record 
is the same as a A record, just the IPv6 version of it.

There is a long standing bug in BSD, or i should say, so I am told, 
that of course is also in OS X, that causes problems with name 
resolution under IPv6.

"

Here is a typical session showing two failures , followed by a success


xserveg5:/Users/admin root# dig +trace www.thinksecret.com

; <<>> DiG 9.2.2 <<>> +trace www.thinksecret.com
;; global options:  printcmd
.                       514064  IN      NS      E.ROOT-SERVERS.NET.
.                       514064  IN      NS      F.ROOT-SERVERS.NET.
.                       514064  IN      NS      G.ROOT-SERVERS.NET.
.                       514064  IN      NS      H.ROOT-SERVERS.NET.
.                       514064  IN      NS      I.ROOT-SERVERS.NET.
.                       514064  IN      NS      J.ROOT-SERVERS.NET.
.                       514064  IN      NS      K.ROOT-SERVERS.NET.
.                       514064  IN      NS      L.ROOT-SERVERS.NET.
.                       514064  IN      NS      M.ROOT-SERVERS.NET.
.                       514064  IN      NS      A.ROOT-SERVERS.NET.
.                       514064  IN      NS      B.ROOT-SERVERS.NET.
.                       514064  IN      NS      C.ROOT-SERVERS.NET.
.                       514064  IN      NS      D.ROOT-SERVERS.NET.
;; Received 244 bytes from 192.168.0.2#53(192.168.0.2) in 1 ms

com.                    172800  IN      NS      G.GTLD-SERVERS.NET.
com.                    172800  IN      NS      H.GTLD-SERVERS.NET.
com.                    172800  IN      NS      I.GTLD-SERVERS.NET.
com.                    172800  IN      NS      J.GTLD-SERVERS.NET.
com.                    172800  IN      NS      K.GTLD-SERVERS.NET.
com.                    172800  IN      NS      L.GTLD-SERVERS.NET.
com.                    172800  IN      NS      M.GTLD-SERVERS.NET.
com.                    172800  IN      NS      A.GTLD-SERVERS.NET.
com.                    172800  IN      NS      B.GTLD-SERVERS.NET.
com.                    172800  IN      NS      C.GTLD-SERVERS.NET.
com.                    172800  IN      NS      D.GTLD-SERVERS.NET.
com.                    172800  IN      NS      E.GTLD-SERVERS.NET.
com.                    172800  IN      NS      F.GTLD-SERVERS.NET.
;; Received 509 bytes from 192.203.230.10#53(E.ROOT-SERVERS.NET) in 188 
ms

dig: Couldn't find server 'G.GTLD-SERVERS.NET': No address associated 
with nodename
xserveg5:/Users/admin root# dig +trace www.thinksecret.com

; <<>> DiG 9.2.2 <<>> +trace www.thinksecret.com
;; global options:  printcmd
.                       514040  IN      NS      F.ROOT-SERVERS.NET.
.                       514040  IN      NS      G.ROOT-SERVERS.NET.
.                       514040  IN      NS      H.ROOT-SERVERS.NET.
.                       514040  IN      NS      I.ROOT-SERVERS.NET.
.                       514040  IN      NS      J.ROOT-SERVERS.NET.
.                       514040  IN      NS      K.ROOT-SERVERS.NET.
.                       514040  IN      NS      L.ROOT-SERVERS.NET.
.                       514040  IN      NS      M.ROOT-SERVERS.NET.
.                       514040  IN      NS      A.ROOT-SERVERS.NET.
.                       514040  IN      NS      B.ROOT-SERVERS.NET.
.                       514040  IN      NS      C.ROOT-SERVERS.NET.
.                       514040  IN      NS      D.ROOT-SERVERS.NET.
.                       514040  IN      NS      E.ROOT-SERVERS.NET.
;; Received 244 bytes from 192.168.0.2#53(192.168.0.2) in 1 ms

com.                    172800  IN      NS      J.GTLD-SERVERS.NET.
com.                    172800  IN      NS      K.GTLD-SERVERS.NET.
com.                    172800  IN      NS      L.GTLD-SERVERS.NET.
com.                    172800  IN      NS      M.GTLD-SERVERS.NET.
com.                    172800  IN      NS      A.GTLD-SERVERS.NET.
com.                    172800  IN      NS      B.GTLD-SERVERS.NET.
com.                    172800  IN      NS      C.GTLD-SERVERS.NET.
com.                    172800  IN      NS      D.GTLD-SERVERS.NET.
com.                    172800  IN      NS      E.GTLD-SERVERS.NET.
com.                    172800  IN      NS      F.GTLD-SERVERS.NET.
com.                    172800  IN      NS      G.GTLD-SERVERS.NET.
com.                    172800  IN      NS      H.GTLD-SERVERS.NET.
com.                    172800  IN      NS      I.GTLD-SERVERS.NET.
;; Received 509 bytes from 192.5.5.241#53(F.ROOT-SERVERS.NET) in 144 ms

thinksecret.com.        172800  IN      NS      ns.servint.com.
thinksecret.com.        172800  IN      NS      ns2.servint.com.
;; Received 112 bytes from 192.48.79.30#53(J.GTLD-SERVERS.NET) in 146 ms

dig: Couldn't find server 'ns.servint.com': No address associated with 
nodename
xserveg5:/Users/admin root# dig +trace www.thinksecret.com

; <<>> DiG 9.2.2 <<>> +trace www.thinksecret.com
;; global options:  printcmd
.                       514023  IN      NS      L.ROOT-SERVERS.NET.
.                       514023  IN      NS      M.ROOT-SERVERS.NET.
.                       514023  IN      NS      A.ROOT-SERVERS.NET.
.                       514023  IN      NS      B.ROOT-SERVERS.NET.
.                       514023  IN      NS      C.ROOT-SERVERS.NET.
.                       514023  IN      NS      D.ROOT-SERVERS.NET.
.                       514023  IN      NS      E.ROOT-SERVERS.NET.
.                       514023  IN      NS      F.ROOT-SERVERS.NET.
.                       514023  IN      NS      G.ROOT-SERVERS.NET.
.                       514023  IN      NS      H.ROOT-SERVERS.NET.
.                       514023  IN      NS      I.ROOT-SERVERS.NET.
.                       514023  IN      NS      J.ROOT-SERVERS.NET.
.                       514023  IN      NS      K.ROOT-SERVERS.NET.
;; Received 260 bytes from 192.168.0.2#53(192.168.0.2) in 1 ms

com.                    172800  IN      NS      A.GTLD-SERVERS.NET.
com.                    172800  IN      NS      G.GTLD-SERVERS.NET.
com.                    172800  IN      NS      H.GTLD-SERVERS.NET.
com.                    172800  IN      NS      C.GTLD-SERVERS.NET.
com.                    172800  IN      NS      I.GTLD-SERVERS.NET.
com.                    172800  IN      NS      B.GTLD-SERVERS.NET.
com.                    172800  IN      NS      D.GTLD-SERVERS.NET.
com.                    172800  IN      NS      L.GTLD-SERVERS.NET.
com.                    172800  IN      NS      F.GTLD-SERVERS.NET.
com.                    172800  IN      NS      J.GTLD-SERVERS.NET.
com.                    172800  IN      NS      K.GTLD-SERVERS.NET.
com.                    172800  IN      NS      E.GTLD-SERVERS.NET.
com.                    172800  IN      NS      M.GTLD-SERVERS.NET.
;; Received 509 bytes from 198.32.64.12#53(L.ROOT-SERVERS.NET) in 42 ms

thinksecret.com.        172800  IN      NS      ns.servint.com.
thinksecret.com.        172800  IN      NS      ns2.servint.com.
;; Received 112 bytes from 192.42.93.30#53(G.GTLD-SERVERS.NET) in 25 ms

www.thinksecret.com.    21600   IN      A       209.50.251.27
thinksecret.com.        21600   IN      NS      ns2.servint.com.
thinksecret.com.        21600   IN      NS      ns.servint.com.
;; Received 128 bytes from 209.50.225.13#53(ns.servint.com) in 109 ms





----------------------
Andrew Cunningham
ESI US R&D
andrew.cunningham at esi-group-na.com
(858) 350 0057 x105
Intl: +1-858-350 0057

Confidentiality Statement:
This message is intended only for the individual or entity to which it 
is addressed. It may contain privileged, confidential information which 
is exempt from disclosure under applicable laws. If you are not the 
intended recipient, please note that you are strictly prohibited from 
disseminating or distributing this information (other than to the 
intended recipient) or copying this information. If you have received 
this communication in error, please notify us immediately by e-mail or 
by telephone at (858)350-0057.



More information about the bind-users mailing list