On 2014-04-10 00:43, Hugo Osvaldo Barrera wrote: > Hi, > > I've having this extremely wierd issue. > My hostname is elysion.barrera.io. When I try to ping, curl, or something > alike aDomainIReallySureDoeNotExist.com, it pings/curls/whatever > my local domain. Maybe an example can me clearer: > > # ping adsfsdgasdadsfasfsdfasdf.net > PING elysion.barrera.io (174.136.104.18): 56 data bytes > 64 bytes from 174.136.104.18: icmp_seq=0 ttl=255 time=0.032 ms > 64 bytes from 174.136.104.18: icmp_seq=1 ttl=255 time=0.081 ms > > dig, however, works fine: > > # dig adsfsdgasdadsfasfsdfasdf.net > <snip> > ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20200 > ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 > <snip> > > I've tried changing nameserver to my ISP's, Google Public DNS, etc, the > issue is always persistant (besides, dig working makes me think it's a > local issue). > > Note that ALL nonexistant domain resolve to myself, never anything > different. > > Any hints on where I should be looking? > > -- > Hugo Osvaldo Barrera >
I got a few off-list replies that led me to the issue. I've wildcard CNAME set up (which responds for any non-existant subdomain": *.barrera.io IN CNAME elysion.barrera.io. When resoling "nonexistant.net" fails, ping will seach for "nonexistant.net.barrera.io". And, well, the rest of it is pretty obvious. So the issue wasn't on the nameserver I'm using to resolve, nor on my local system, but rather a combination of existing DNS rescords, and my search domain. I guess the solution is getting rid of the wildcard domain - any other alternatives? Thanks, -- Hugo Osvaldo Barrera [demime 1.01d removed an attachment of type application/pgp-signature]
