DNS format error

Chuck Anderson cra at WPI.EDU
Wed Apr 28 01:51:26 UTC 2010


On Tue, Apr 27, 2010 at 07:40:20PM -0600, ic.nssip wrote:
> I hope somebody can tell me why I'm getting so many "DNS format 
> error" on a DNS Server running BIND 9.7.0 on a Solaris 10 machine. 
> The server is resolving fine queries for normal traffic. Is just 
> syslog that gets tones of messages like the ones in the next 
> capture. The start command for named is: "/usr/local/sbin/named -4 
> -c /etc/named.conf" but I get the errors no matter if I use "-4" 
> option or not.
> 
> Apr 27 19:13:03 ns.domain.net named[25674]: [ID 873579 
> daemon.notice] DNS format error from 209.235.30.142#53 resolving 
> www25.victoriassecret.com/AAAA for client 216.108.17.179#65160: 
> invalid response

I get these also.  victoriassecret.com must be using a broken DNS 
server or DNS load balancer that doesn't understand AAAA records.  
This isn't about your BIND server querying /over/ IPv6, it is about 
your BIND server asking for AAAA records, probably because it was 
asked to resolve AAAA records on behalf of its recursive clients.  All 
the popular operating systems will do this by default now.  You can 
just ignore the messages.



More information about the bind-users mailing list