Re: Forwarding DNS Server can not resolved alias records(CNAME)?

Fri, 25 Jun 2010 14:34:06 -0700

Note that the name "218.246.85.101" -- which is the target of the "www.01cool.com" alias -- does not exist in the Internet DNS.
I don't what kind of DNS implementation/configuration is running on 211.99.204.77, but it seems to be returning SERVFAIL for *any* recursive query outside of its authoritative zones: 

dig cnn.com @211.99.204.77

; <<>> DiG 9.3.0 <<>> cnn.com @211.99.204.77
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 800
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;cnn.com.                       IN      A

which would, of course, include the aforementioned name "218.246.85.101".


For non-recursive queries outside of its authoritative zones, it gives a 
root referral, which is reasonable.



I guess that crippling one's nameserver in this way is marginally better 
than being an open recursor, but not by much...




                                                                        
                                    - Kevin


On 6/25/2010 7:02 AM, ShanyiWan wrote:

Forwarding DNS Server can not resolved alias records(CNAME)?

here:

211.99.204.77   Forwarding DNS

Master Zone (another ip address)

[r...@flyinweb data]# vi 01cool.com.dom

$TTL 7200       ; 2 hours
@    IN  SOA  ns1.mymaster.com. root.mymaster.com. (
                 5; serial
                 10800; refresh
                 3600; retry
                 604800; expire
                 86400; mininum
                 )
         NS      ns1.mymaster.com.
         NS      ns2.mymaster.com.
         MX      10 mail.01cool.com.
@       A       218.246.85.101
mail    A       218.246.85.199
www     CNAME   218.246.85.101.
www1    CNAME   517sou.net.

A Record is correct,but CNAME Record is incorrect!

[r...@flyinweb data]# dig @211.99.204.77 01cool.com

;<<>>  DiG 9.7.0-P2<<>>  @211.99.204.77 01cool.com
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 17293
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 1

;; QUESTION SECTION:
;01cool.com.                    IN      A

;; ANSWER SECTION:
01cool.com.             7200    IN      A       218.246.85.101

;; AUTHORITY SECTION:
01cool.com.             7200    IN      NS      ns1.cnolnic.com.
01cool.com.             7200    IN      NS      ns2.cnolnic.com.

;; ADDITIONAL SECTION:
ns2.cnolnic.com.        6523    IN      A       59.151.23.112

;; Query time: 108 msec
;; SERVER: 211.99.204.77#53(211.99.204.77)
;; WHEN: Fri Jun 25 19:00:35 2010
;; MSG SIZE  rcvd: 104

[r...@flyinweb ~]# dig @211.99.204.77 www.01cool.com

;<<>>  DiG 9.7.0-P2<<>>  @211.99.204.77 www.01cool.com
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 25575
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;www.01cool.com.                        IN      A

;; Query time: 108 msec
;; SERVER: 211.99.204.77#53(211.99.204.77)
;; WHEN: Fri Jun 25 18:57:27 2010
;; MSG SIZE  rcvd: 32
~
--------------
ShanyiWan
2010-06-25

_______________________________________________
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users




   



_______________________________________________
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users






















					Reply via email to