Cache problem

Mark Andrews Mark_Andrews at isc.org
Tue Jan 30 13:52:55 UTC 2007


> Dear List,
> 
> I have a problem with my DNS cache which I can’t know exactly what it is.
> 
> Today a record could not be resolved and when I issued the command “rndc 
> flush” the server started resolving again
> 
> Here is the record I was trying to resolve
> 
> ; <<>> DiG 9.3.3rc2 <<>> bluepages.com.sa
> 
> ;; global options:  printcmd
> 
> ;; Got answer:
> 
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 936
> 
> ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
> 
> 
> 
> ;; QUESTION SECTION:
> 
> ;bluepages.com.sa.              IN      A
> 
> 
> 
> ;; ANSWER SECTION:
> 
> bluepages.com.sa.       85233   IN      A       207.106.22.33
> 
> 
> 
> ;; Query time: 1 msec
> 
> ;; SERVER: 127.0.0.1#53(127.0.0.1)
> 
> ;; WHEN: Tue Jan 30 12:42:37 2007
> 
> ;; MSG SIZE  rcvd: 50
> 
> 
> 
> This is happening with my two servers and the two servers are described 
> below
> 
> 
> 
> Master:
> 
> OS: FC5
> 
> BIND Version: 9.3.3rc2
> 
> -------
> 
> Named.conf
> 
> -------------
> 
> options {
> 
>         directory "/var/named";
> 
>         dump-file "/var/named/data/cache_dump.db";
> 
>         statistics-file "/var/named/data/named_stats.txt";
> 
>         version "Get Lost";
> 
>         allow-query { any; };
> 
>         allow-recursion { localhost; trusted; };
> 
>         minimal-responses yes;
> 
>         blackhole { badguys;  };
> 
>         notify yes;
> 
>         max-ncache-ttl 1;
> 
>         allow-transfer { secondaries; };
> 
>         also-notify {192.168.1.101; 192.168.10.9;}; // all zones
> 
>         allow-notify { secondaries; };
> 
>         recursive-clients 30000;
> 
> };
> 
> ---------
> 
> Slave:
> 
> OS: RH AS 4
> 
> BIND Version: 9.2.4
> 
> 
> 
> Named.conf
> 
> options {
> 
>         directory "/var/named";           // Working directory
> 
>         pid-file "named.pid" ;
> 
>         blackhole { bogusnets; };
> 
>         version "Get Lost";
> 
>         allow-query { any; };
> 
>         allow-recursion { our-nets; localhost; };
> 
>         minimal-responses yes;
> 
>         notify no;
> 
>         max-ncache-ttl 1;
> 
>         recursive-clients 300000;
> 
> };
> 
> 
> 
> 
> 
> I have posted something like this earlier and it was solved by setting the 
> ncache to 1 now i think it is back again, however the named -4 didn’t really 
> help doing anything
> 
> 
> 
> I have bind V8 as well and it never faces this problem
> 
> 
> 
> Do I need to send more information?
> 
> 
> 
> Thank you

	ns1.egysol.com and ns2.egysol.com don't exist according to
	the servers for egysol.com.  There are glue A records in the
	COM zone for them.

	Complain to the administrators of the egysol.com zone that
	there are missing records address records for ns1.egysol.com
	and ns2.egysol.com.

	Note when you do query using the glue records you get a
	different set of nameservers for bluepages.com.sa so the
	delegation for bluepages.com.sa also needs to be fixed.

	Until these issues are addressed you will continue to
	have problems resolving bluepages.com.sa.

	Atleast ns1.rapidns.com and ns2.rapidns.com exist.

	Mark

% dig9 +trace bluepages.com.sa

; <<>> DiG 9.5.0a1 <<>> +trace bluepages.com.sa
;; global options:  printcmd
.                       319188  IN      NS      B.ROOT-SERVERS.NET.
.                       319188  IN      NS      K.ROOT-SERVERS.NET.
.                       319188  IN      NS      H.ROOT-SERVERS.NET.
.                       319188  IN      NS      A.ROOT-SERVERS.NET.
.                       319188  IN      NS      I.ROOT-SERVERS.NET.
.                       319188  IN      NS      M.ROOT-SERVERS.NET.
.                       319188  IN      NS      F.ROOT-SERVERS.NET.
.                       319188  IN      NS      G.ROOT-SERVERS.NET.
.                       319188  IN      NS      E.ROOT-SERVERS.NET.
.                       319188  IN      NS      L.ROOT-SERVERS.NET.
.                       319188  IN      NS      J.ROOT-SERVERS.NET.
.                       319188  IN      NS      D.ROOT-SERVERS.NET.
.                       319188  IN      NS      C.ROOT-SERVERS.NET.
;; Received 480 bytes from 127.0.0.1#53(127.0.0.1) in 13 ms

sa.                     172800  IN      NS      NS.NIXU.NET.
sa.                     172800  IN      NS      NS1.ISU.NET.sa.
sa.                     172800  IN      NS      NS1.NIC.NET.sa.
sa.                     172800  IN      NS      NS2.NIC.NET.sa.
sa.                     172800  IN      NS      RIP.PSG.COM.
;; Received 230 bytes from 2001:dc3::35#53(M.ROOT-SERVERS.NET) in 402 ms

bluepages.com.sa.       172800  IN      NS      ns2.egysol.com.
bluepages.com.sa.       172800  IN      NS      ns1.egysol.com.
;; Received 80 bytes from 147.28.0.39#53(RIP.PSG.COM) in 3955 ms

dig9: couldn't get address for 'ns1.egysol.com': not found
% 

% dig ns egysol.com @a.gtld-servers.net

; <<>> DiG 9.3.2-P2 <<>> ns egysol.com @a.gtld-servers.net
; (2 servers found)
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 7774
;; flags: qr rd; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 2

;; QUESTION SECTION:
;egysol.com.                    IN      NS

;; ANSWER SECTION:
egysol.com.             172800  IN      NS      ns1.egysol.net.
egysol.com.             172800  IN      NS      ns2.egysol.net.

;; ADDITIONAL SECTION:
ns1.egysol.net.         172800  IN      A       216.246.41.231
ns2.egysol.net.         172800  IN      A       216.246.41.232

;; Query time: 461 msec
;; SERVER: 2001:503:a83e::2:30#53(2001:503:a83e::2:30)
;; WHEN: Wed Jan 31 00:29:39 2007
;; MSG SIZE  rcvd: 106

% 

%  dig ns1.egysol.com @216.246.41.231

; <<>> DiG 9.3.2-P2 <<>> ns1.egysol.com @216.246.41.231
; (1 server found)
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65104
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;ns1.egysol.com.                        IN      A

;; AUTHORITY SECTION:
egysol.com.             86400   IN      SOA     ns1.egysol.net. root.server.egysol.net. 2006082801 86400 7200 3600000 86400

;; Query time: 229 msec
;; SERVER: 216.246.41.231#53(216.246.41.231)
;; WHEN: Wed Jan 31 00:32:52 2007
;; MSG SIZE  rcvd: 94

% dig ns1.egysol.com @216.246.41.232

; <<>> DiG 9.3.2-P2 <<>> ns1.egysol.com @216.246.41.232
; (1 server found)
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 601
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;ns1.egysol.com.                        IN      A

;; AUTHORITY SECTION:
egysol.com.             86400   IN      SOA     ns1.egysol.net. root.server.egysol.net. 2006082801 86400 7200 3600000 86400

;; Query time: 216 msec
;; SERVER: 216.246.41.232#53(216.246.41.232)
;; WHEN: Wed Jan 31 00:33:02 2007
;; MSG SIZE  rcvd: 94

% dig ns2.egysol.com @216.246.41.232

; <<>> DiG 9.3.2-P2 <<>> ns2.egysol.com @216.246.41.232
; (1 server found)
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65101
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;ns2.egysol.com.                        IN      A

;; AUTHORITY SECTION:
egysol.com.             86400   IN      SOA     ns1.egysol.net. root.server.egysol.net. 2006082801 86400 7200 3600000 86400

;; Query time: 220 msec
;; SERVER: 216.246.41.232#53(216.246.41.232)
;; WHEN: Wed Jan 31 00:33:47 2007
;; MSG SIZE  rcvd: 94

% dig ns2.egysol.com @216.246.41.231

; <<>> DiG 9.3.2-P2 <<>> ns2.egysol.com @216.246.41.231
; (1 server found)
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10420
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;ns2.egysol.com.                        IN      A

;; AUTHORITY SECTION:
egysol.com.             86400   IN      SOA     ns1.egysol.net. root.server.egysol.net. 2006082801 86400 7200 3600000 86400

;; Query time: 222 msec
;; SERVER: 216.246.41.231#53(216.246.41.231)
;; WHEN: Wed Jan 31 00:33:52 2007
;; MSG SIZE  rcvd: 94

% 

% dig +norec ns1.egysol.com @a.gtld-servers.net

; <<>> DiG 9.3.2-P2 <<>> +norec ns1.egysol.com @a.gtld-servers.net
; (2 servers found)
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 35065
;; flags: qr; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2

;; QUESTION SECTION:
;ns1.egysol.com.                        IN      A

;; ANSWER SECTION:
ns1.egysol.com.         172800  IN      A       207.106.22.124

;; AUTHORITY SECTION:
egysol.com.             172800  IN      NS      ns1.egysol.net.
egysol.com.             172800  IN      NS      ns2.egysol.net.

;; ADDITIONAL SECTION:
ns1.egysol.net.         172800  IN      A       216.246.41.231
ns2.egysol.net.         172800  IN      A       216.246.41.232

;; Query time: 468 msec
;; SERVER: 2001:503:a83e::2:30#53(2001:503:a83e::2:30)
;; WHEN: Wed Jan 31 00:37:21 2007
;; MSG SIZE  rcvd: 126

% 

% dig bluepages.com.sa mx @207.106.22.124

; <<>> DiG 9.3.2-P2 <<>> bluepages.com.sa mx @207.106.22.124
; (1 server found)
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 45813
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 3

;; QUESTION SECTION:
;bluepages.com.sa.              IN      MX

;; ANSWER SECTION:
bluepages.com.sa.       86400   IN      MX      10 mail.bluepages.com.sa.

;; AUTHORITY SECTION:
bluepages.com.sa.       86400   IN      NS      ns1.rapidns.com.
bluepages.com.sa.       86400   IN      NS      ns2.rapidns.com.

;; ADDITIONAL SECTION:
mail.bluepages.com.sa.  86400   IN      A       207.106.22.33
ns1.rapidns.com.        86400   IN      A       207.106.22.124
ns2.rapidns.com.        86400   IN      A       66.7.149.52

;; Query time: 245 msec
;; SERVER: 207.106.22.124#53(207.106.22.124)
;; WHEN: Wed Jan 31 00:45:05 2007
;; MSG SIZE  rcvd: 150

% 
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: Mark_Andrews at isc.org



More information about the bind-users mailing list