On 19 Sep 2012, at 11:40, Ralf Hildebrandt wrote:
The broken name server at ns1.bdm.microsoftonline.com. The other one
is rightly returning NOHOST responses when asked for AAAA or MX
records for www.pimda.eu.
How can I see that? I performed a query using dig and gut:
# dig @ns1.bdm.microsoftonline.com www.pimda.eu AAAA
; <<>> DiG 9.8.1-P1 <<>> @ns1.bdm.microsoftonline.com www.pimda.eu
AAAA
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 12065
;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 2, ADDITIONAL: 4
;; WARNING: recursion requested but not available
The above is a NOHOST (or NODATA) response. There was no error
(NOERROR) and the Answer Section of the reply was empty. The name
being looked up exists but not as the QTYPE (or QCLASS) that was asked
for. ns1.bdm.microsoftonline.com is saying there are RRs for www.pimda.eu
, but no AAAA records.
It should be saying that authoritatively but isn't. The output of dig
would show "aa" in the flags: entries above if the server was seting
the Authoritative Answer bit in its reply.
The DNS doesn't have an explicit error/response code for the condition
where a name exists but not as the requested QTYPE. This condition is
shown by returning an empty Answer Section and a response code of
NOERROR.
BTW, that's yet another couple of good reasons for using dig. You get
to see the DNS headers and flag bits as well as what data's in which
section of the reply.
