DNS server not getting all updates

Pete Ehlke pde at rfc822.net
Wed Sep 22 19:51:31 UTC 2004


On Wed Sep 22, 2004 at 13:18:31 -0400, Brent Bailey wrote:
>
>The customer has his own primary & tertiary DNS servers. Only one of which
>(tertiary) knows of the customers newly created domain..my question is why
>would this happen where the tertiary knows of the domain but the primary
>server doesnt ?

Because some human configured them that way. 
>
>when doing a nslookup on the server this is the responce from the server
>
>primary# nslookup gregoryfloyd-assoc.com
>Server: dns.whatever.com
>Address: x.x.x.x
>No Address (A) records available for gregoryfloyd-assoc.com
>

Where are you getting the idea that there is a tertiary server?
gregoryfloyd-assoc.com is delegated to two servers, not three:

; <<>> DiG 9.2.1 <<>> gregoryfloyd-assoc.com ns
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 20299
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 2

;; QUESTION SECTION:
;gregoryfloyd-assoc.com.                IN      NS

;; ANSWER SECTION:
gregoryfloyd-assoc.com. 172800  IN      NS      ns34.websitewelcome.com.
gregoryfloyd-assoc.com. 172800  IN      NS      ns33.websitewelcome.com.

;; ADDITIONAL SECTION:
ns33.websitewelcome.com. 172800 IN      A       67.19.58.194
ns34.websitewelcome.com. 172800 IN      A       67.19.58.195

;; Query time: 173 msec
;; SERVER: 192.48.232.17#53(192.48.232.17)
;; WHEN: Wed Sep 22 15:46:20 2004
;; MSG SIZE  rcvd: 125

Both those servers know the address of gregoryfloyd-assoc.com:

; <<>> DiG 9.2.1 <<>> gregoryfloyd-assoc.com @ns34.websitewelcome.com.
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 55977
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2

;; QUESTION SECTION:
;gregoryfloyd-assoc.com.                IN      A

;; ANSWER SECTION:
gregoryfloyd-assoc.com. 14400   IN      A       67.19.58.194

;; AUTHORITY SECTION:
gregoryfloyd-assoc.com. 14400   IN      NS      ns33.websitewelcome.com.
gregoryfloyd-assoc.com. 14400   IN      NS      ns34.websitewelcome.com.

;; ADDITIONAL SECTION:
ns33.websitewelcome.com. 13048  IN      A       67.19.58.194
ns34.websitewelcome.com. 13287  IN      A       67.19.58.195

;; Query time: 54 msec
;; SERVER: 67.19.58.195#53(ns34.websitewelcome.com.)
;; WHEN: Wed Sep 22 15:47:44 2004
;; MSG SIZE  rcvd: 141


; <<>> DiG 9.2.1 <<>> gregoryfloyd-assoc.com @ns33.websitewelcome.com.
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 51379
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2

;; QUESTION SECTION:
;gregoryfloyd-assoc.com.                IN      A

;; ANSWER SECTION:
gregoryfloyd-assoc.com. 14400   IN      A       67.19.58.194

;; AUTHORITY SECTION:
gregoryfloyd-assoc.com. 14400   IN      NS      ns34.websitewelcome.com.
gregoryfloyd-assoc.com. 14400   IN      NS      ns33.websitewelcome.com.

;; ADDITIONAL SECTION:
ns33.websitewelcome.com. 13034  IN      A       67.19.58.194
ns34.websitewelcome.com. 13273  IN      A       67.19.58.195

;; Query time: 55 msec
;; SERVER: 67.19.58.194#53(ns33.websitewelcome.com.)
;; WHEN: Wed Sep 22 15:47:59 2004
;; MSG SIZE  rcvd: 141

Whatever servers you are asking, they're not the servers for
gregoryfloyd-assoc.com. If you had bothered to tell us the names of the
servers you are talking to, we might have been able to help more. The
DNS is inherently public. Obscuring your data buys you exactly nothing,
and actively hinders the people here who are doing your work for you.

-Pete


More information about the bind-users mailing list