resolving-problem

Mark Andrews marka at isc.org
Tue Jul 23 22:40:32 UTC 2013 

In message <CFBADB82F88A485885E728B14872136F at EJAZ>, "Ejaz" writes:
> 
> Thank you so much for your email and support, 
> 
> Pls, See, the dig + trace output when use ns1.nesma.net.sa,   at the end it
> say connection timedout. so please can you to find out the  problem is from
> where???
> 
> 
> [root at ns1 ~]# dig +trace www.fransiplus.com <http://www.fransiplus.com/> , .
> 
> ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.17.rc1.el6_4.4 <<>> +trace www.fransiplus.com
> ;; global options: +cmd
> .                       504930  IN      NS      j.root-servers.net.
> .                       504930  IN      NS      c.root-servers.net.
> .                       504930  IN      NS      a.root-servers.net.
> .                       504930  IN      NS      e.root-servers.net.
> .                       504930  IN      NS      f.root-servers.net.
> .                       504930  IN      NS      k.root-servers.net.
> .                       504930  IN      NS      g.root-servers.net.
> .                       504930  IN      NS      l.root-servers.net.
> .                       504930  IN      NS      i.root-servers.net.
> .                       504930  IN      NS      d.root-servers.net.
> .                       504930  IN      NS      m.root-servers.net.
> .                       504930  IN      NS      b.root-servers.net.
> .                       504930  IN      NS      h.root-servers.net.
> ;; Received 512 bytes from 212.119.64.2#53(212.119.64.2) in 5388 ms

You can talk to your local nameserver and have got the set of root server
names.
 
> com.                    172800  IN      NS      m.gtld-servers.net.
> com.                    172800  IN      NS      c.gtld-servers.net.
> com.                    172800  IN      NS      a.gtld-servers.net.
> com.                    172800  IN      NS      l.gtld-servers.net.
> com.                    172800  IN      NS      g.gtld-servers.net.
> com.                    172800  IN      NS      d.gtld-servers.net.
> com.                    172800  IN      NS      k.gtld-servers.net.
> com.                    172800  IN      NS      f.gtld-servers.net.
> com.                    172800  IN      NS      b.gtld-servers.net.
> com.                    172800  IN      NS      e.gtld-servers.net.
> com.                    172800  IN      NS      h.gtld-servers.net.
> com.                    172800  IN      NS      j.gtld-servers.net.
> ;; Received 508 bytes from 192.33.4.12#53(192.33.4.12) in 1789 ms

You can talk to the root servers and they responded with a referral to the
com servers.

> fransiplus.com.         172800  IN      NS      ns1.alfransi.com.sa.
> fransiplus.com.         172800  IN      NS      ns2.alfransi.com.sa.
> ;; Received 87 bytes from 192.5.6.30#53(192.5.6.30) in 202 ms

You can talk to the com servers and they responded with a referral to
ns1.alfransi.com.sa and ns2.alfransi.com.sa.
 
> ;; connection timed out; no servers could be reached

You tried to talk to ns1.alfransi.com.sa (193.22.249.48) and
ns2.alfransi.com.sa (193.22.249.148) but they failed to respond to
you.  I would be looking at routing/firewall issues between you and
them.

They don't appear to be using a firewall which is blocking based
on source port (I can get a response using 53, 1023 and other source
ports).

Mark
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: marka at isc.org

More information about the bind-users mailing list