resolving-problem
Hello, All, This lately we have been receiving complain from our customer that domains "b2bdr.fransib2corp.com www.fransitadawul.com.sa www.fransiplus.com" are unable to resolve from our DNS server whereas it can be resolve from all over the world FYI, my name servers are as listed below. Ns1.nesma.net.sa Ns2.nesma.net.sa Any help would be highly appreciated. Thank you so much in advance Regards, __ Mohammed Ejaz Sr,Systems Administrator Middle East Internet Company (CYBERIA) Riyadh, Saudi Arabia Phone: +966-1-4647114 Ext: 140 Mobile +966-562311787 Fax: +966-1-4654735 E-mail: me...@cyberia.net.sa ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: resolving-problem
Can you post full output of the following dig commands ran on one of your nameservers: dig www.franisplus.com dig +trace www.franisplus.com Steve On 21 July 2013 10:55, Ejaz wrote: > ** ** ** > > Hello, All, > > ** ** > > This lately we have been receiving complain from our customer that > domains “b2bdr.fransib2corp.com www.fransitadawul.com.sa > www.fransiplus.com” are unable to resolve from our DNS server whereas it > can be resolve from all over the world > > ** ** > > ** ** > > FYI, my name servers are as listed below. > > ** ** > > Ns1.nesma.net.sa > > Ns2.nesma.net.sa > > ** ** > > ** ** > > Any help would be highly appreciated. Thank you so much in advance > > ** ** > > Regards, > __ > Mohammed Ejaz > Sr,Systems Administrator > Middle East Internet Company (CYBERIA) > Riyadh**, **Saudi Arabia > Phone: +966-1-4647114 Ext: 140 > Mobile +966-562311787 > Fax: +966-1-4654735 > E-mail: me...@cyberia.net.sa > > ** ** > > ___ > Please visit https://lists.isc.org/mailman/listinfo/bind-users to > unsubscribe from this list > > bind-users mailing list > bind-users@lists.isc.org > https://lists.isc.org/mailman/listinfo/bind-users > ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: resolving-problem
oops, typo... dig www.fransiplus.com dig +trace www.fransiplus.com On 21 July 2013 11:09, Steven Carr wrote: > Can you post full output of the following dig commands ran on one of your > nameservers: > > dig www.franisplus.com > dig +trace www.franisplus.com > > Steve > > > > On 21 July 2013 10:55, Ejaz wrote: > >> ** ** ** >> >> Hello, All, >> >> ** ** >> >> This lately we have been receiving complain from our customer that >> domains “b2bdr.fransib2corp.com www.fransitadawul.com.sa >> www.fransiplus.com” are unable to resolve from our DNS server whereas it >> can be resolve from all over the world >> >> ** ** >> >> ** ** >> >> FYI, my name servers are as listed below. >> >> ** ** >> >> Ns1.nesma.net.sa >> >> Ns2.nesma.net.sa >> >> ** ** >> >> ** ** >> >> Any help would be highly appreciated. Thank you so much in advance >> >> ** ** >> >> Regards, >> __ >> Mohammed Ejaz >> Sr,Systems Administrator >> Middle East Internet Company (CYBERIA) >> Riyadh**, **Saudi Arabia >> Phone: +966-1-4647114 Ext: 140 >> Mobile +966-562311787 >> Fax: +966-1-4654735 >> E-mail: me...@cyberia.net.sa >> >> ** ** >> >> ___ >> Please visit https://lists.isc.org/mailman/listinfo/bind-users to >> unsubscribe from this list >> >> bind-users mailing list >> bind-users@lists.isc.org >> https://lists.isc.org/mailman/listinfo/bind-users >> > > ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
RE: resolving-problem
Thank you so much. Let me tell you, it resolve from the server without any problem, but when I tried to resolve these domain from my PC by using the ns1.nesma.net.sa which I can't how ever as you said, the below is the output of dig. Nslookup etc.. >From the server, it is ok [root@ns1 ~]# host www.fransiplus.com www.fransiplus.com is an alias for fransiplus.com. fransiplus.com has address 193.22.249.49 dig output. [root@ns1 ~]# dig +trace www.fransiplus.com ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.17.rc1.el6_4.4 <<>> +trace www.fransiplus.com ;; global options: +cmd . 504930 IN NS j.root-servers.net. . 504930 IN NS c.root-servers.net. . 504930 IN NS a.root-servers.net. . 504930 IN NS e.root-servers.net. . 504930 IN NS f.root-servers.net. . 504930 IN NS k.root-servers.net. . 504930 IN NS g.root-servers.net. . 504930 IN NS l.root-servers.net. . 504930 IN NS i.root-servers.net. . 504930 IN NS d.root-servers.net. . 504930 IN NS m.root-servers.net. . 504930 IN NS b.root-servers.net. . 504930 IN NS h.root-servers.net. ;; Received 512 bytes from 212.119.64.2#53(212.119.64.2) in 5388 ms com.172800 IN NS m.gtld-servers.net. com.172800 IN NS c.gtld-servers.net. com.172800 IN NS i.gtld-servers.net. com.172800 IN NS a.gtld-servers.net. com.172800 IN NS l.gtld-servers.net. com.172800 IN NS g.gtld-servers.net. com.172800 IN NS d.gtld-servers.net. com.172800 IN NS k.gtld-servers.net. com.172800 IN NS f.gtld-servers.net. com.172800 IN NS b.gtld-servers.net. com.172800 IN NS e.gtld-servers.net. com.172800 IN NS h.gtld-servers.net. com.172800 IN NS j.gtld-servers.net. ;; Received 508 bytes from 192.33.4.12#53(192.33.4.12) in 1789 ms fransiplus.com. 172800 IN NS ns1.alfransi.com.sa. fransiplus.com. 172800 IN NS ns2.alfransi.com.sa. ;; Received 87 bytes from 192.5.6.30#53(192.5.6.30) in 202 ms >From My pc. Where I can't resolve. > fransiplus.com.sa Server: ns1.nesma.net.sa Address: 212.71.32.19 DNS request timed out. timeout was 2 seconds. *** Request to ns1.nesma.net.sa timed-out Ejaz _ From: Steven Carr [mailto:sjc...@gmail.com] Sent: Sunday, July 21, 2013 1:11 PM To: Ejaz Cc: Bind users Subject: Re: resolving-problem oops, typo... dig www.fransiplus.com dig +trace www.fransiplus.com On 21 July 2013 11:09, Steven Carr wrote: Can you post full output of the following dig commands ran on one of your nameservers: dig www.franisplus.com dig +trace www.franisplus.com Steve On 21 July 2013 10:55, Ejaz wrote: Hello, All, This lately we have been receiving complain from our customer that domains "b2bdr.fransib2corp.com www.fransitadawul.com.sa www.fransiplus.com" are unable to resolve from our DNS server whereas it can be resolve from all over the world FYI, my name servers are as listed below. Ns1.nesma.net.sa Ns2.nesma.net.sa Any help would be highly appreciated. Thank you so much in advance Regards, __ Mohammed Ejaz Sr,Systems Administrator Middle East Internet Company (CYBERIA) Riyadh, Saudi Arabia Phone: +966-1-4647114Ext: 140 Mobile +966-562311787 Fax: +966-1-4654735 E-mail: me...@cyberia.net.sa ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: resolving-problem
Can you resolve other websites using ns1.nesma.net.sa from your PC or is it just these few sites that you can't resolve? Are you able to share your BIND configuration? Steve On 21 July 2013 11:24, Ejaz wrote: > ** ** ** > > Thank you so much. > > ** ** > > Let me tell you, it resolve from the server without any problem, but > when I tried to resolve these domain from my PC by using the > ns1.nesma.net.sa which I can’t > > ** ** > > how ever as you said, the below is the output of dig. Nslookup etc.. > > ** ** > > * * > > *From the server, it is ok* > > ** ** > > [root@ns1 ~]# host www.fransiplus.com > > www.fransiplus.com is an alias for fransiplus.com. > > fransiplus.com has address 193.22.249.49 > > ** ** > > ** ** > > dig output. > > ** ** > > * * > > *[root@ns1 ~]# dig +trace www.fransiplus.com* > > ** ** > > ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.17.rc1.el6_4.4 <<>> +trace > www.fransiplus.com > > ;; global options: +cmd > > . 504930 IN NS j.root-servers.net. > > . 504930 IN NS c.root-servers.net. > > . 504930 IN NS a.root-servers.net. > > . 504930 IN NS e.root-servers.net. > > . 504930 IN NS f.root-servers.net. > > . 504930 IN NS k.root-servers.net. > > . 504930 IN NS g.root-servers.net. > > . 504930 IN NS l.root-servers.net. > > . 504930 IN NS i.root-servers.net. > > . 504930 IN NS d.root-servers.net. > > . 504930 IN NS m.root-servers.net. > > . 504930 IN NS b.root-servers.net. > > . 504930 IN NS h.root-servers.net. > > ;; Received 512 bytes from 212.119.64.2#53(212.119.64.2) in 5388 ms > > ** ** > > com.172800 IN NS m.gtld-servers.net. > > com.172800 IN NS c.gtld-servers.net. > > com.172800 IN NS i.gtld-servers.net. > > com.172800 IN NS a.gtld-servers.net. > > com.172800 IN NS l.gtld-servers.net. > > com.172800 IN NS g.gtld-servers.net. > > com.172800 IN NS d.gtld-servers.net. > > com.172800 IN NS k.gtld-servers.net. > > com.172800 IN NS f.gtld-servers.net. > > com.172800 IN NS b.gtld-servers.net. > > com.172800 IN NS e.gtld-servers.net. > > com.172800 IN NS h.gtld-servers.net. > > com.172800 IN NS j.gtld-servers.net. > > ;; Received 508 bytes from 192.33.4.12#53(192.33.4.12) in 1789 ms > > ** ** > > fransiplus.com. 172800 IN NS ns1.alfransi.com.sa. > > fransiplus.com. 172800 IN NS ns2.alfransi.com.sa. > > ;; Received 87 bytes from 192.5.6.30#53(192.5.6.30) in 202 ms > > > > ** ** > > *From My pc. Where I can’t resolve.* > > ** ** > > > fransiplus.com.sa > > Server: ns1.nesma.net.sa > > Address: 212.71.32.19 > > ** ** > > DNS request timed out. > > timeout was 2 seconds. > > *** Request to ns1.nesma.net.sa timed-out > > ** ** > > ** ** > > Ejaz > > ** ** > -- > > *From:* Steven Carr [mailto:sjc...@gmail.com] > *Sent:* Sunday, July 21, 2013 1:11 PM > *To:* Ejaz > *Cc:* Bind users > *Subject:* Re: resolving-problem > > ** ** > > oops, typo... > > dig www.fransiplus.com > dig +trace www.fransiplus.com > > ** ** > > On 21 July 2013 11:09, Steven Carr wrote: > > Can you post full output of the following dig commands ran on one of your > nameservers: > > dig www.franisplus.com > dig +trace www.franisplus.com > > Steve > > ** ** > > On 21 July 2013 10:55, Ejaz wrote: > > Hello, All, > > > > This lately we have been receiving complain from our customer that > domains “b2bdr.fransib2corp.com www.fransitadawul.com.sa > www.fransiplus.com” are unable to resolve from our DNS server whereas it > can be resolve from all over the world > > > > > > FYI, my name servers are as listed below. > > > > Ns1.nesma.net.sa > > Ns2.nesma.net.sa > > > > > > Any help would be highly appreciated. Thank you so much in advance > > > > Regards, > __ > Mohammed Ejaz > Sr,Systems Administrator > Middle East Internet Company (CYBERIA) > Riyadh**, **Saudi Arabia > Phone: +966-1-4647114 Ext: 140 > Mobile +966-562311787 > F
FW: resolving-problem
Thanks you once again for your quick response.
Yes, I can resolve all other webistes without any problems. As well as
requested, find the attached only main the configuration file,
Ejaz
_
acl trusted { 92.48.0.0/18; 212.119.65.0/24; 212.71.32.0/19; 213.181.160.0/19;
213.210.192.0/18; 91.151.160.0/22; 85.129.128.0/17; 81.21.60.0/22;
192.168.1.0/16; 172.16.0.0/16; 89.4.0.0/15; 91.147.128.0/23; 91.147.130.0/24;
193.227.127.0/24; 193.22.249.0/24; 62.120.0.0/16; 195.43.137.0/24;
92.43.168.0/26; 195.149.91.0/24; 206.51.26.0/24; 193.109.81.0/24;
204.187.87.0/24; 206.53.144.0/20; 216.9.240.0/20; 67.223.64.0/19;
93.186.16.0/20; 68.171.224.0/19; 74.82.64.0/19; 173.247.32.0/19;
178.239.80.0/20;92.43.168.4; 193.194.122.0/24;212.119.65.183;212.119.64.2;
212.119.65.20; 195.149.91.0/24; 212.119.65.11;212.118.106.0/24;};
acl secondaries {212.71.32.20;};
options {
listen-on port 53 { 212.71.32.19; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
allow-query { "trusted"; };
recursion yes;
/* Path to ISC DLV key */
bindkeys-file "/etc/named.iscdlv.key";
managed-keys-directory "/var/named/dynamic";
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};
zone "localdomain" IN {
type master;
file "localdomain.zone";
allow-update { none; };
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
Re: resolving-problem
So the logs would seem to indicate that the server responded to your PC, the only way you can see exactly what happened with that response is with traffic captures on the name server and your PC. Steve On 21 Jul 2013, at 12:52, "Ejaz" wrote: I can resolve yahoo and here the snippet of logs, 21-Jul-2013 14:46:11.119 queries: info: client 212.119.65.13#2007: query: yahoo.com.cyberia.net.sa IN A + (212.71.32.19) 21-Jul-2013 14:46:11.122 queries: info: client 212.119.65.13#2008: query: yahoo.com IN A + (212.71.32.19) But, Where as I can’t resolve fransiplus, here is the logs. 21-Jul-2013 14:46:19.135 queries: info: client 212.119.65.13#2009: query: fransiplus.com.cyberia.net.sa IN A + (212.71.32.19) 21-Jul-2013 14:46:19.138 queries: info: client 212.119.65.13#2010: query: fransiplus.com IN A + (212.71.32.19) I didin’t see any difference. Ejaz ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
RE: resolving-problem
In my opinion your 'listen-on' options should be changed from "212.71.32.19" to "any". i wish that can help you. -- T. KITTIRATANACHAI From: sjc...@gmail.com Subject: Re: resolving-problem Date: Sun, 21 Jul 2013 13:09:24 +0100 To: me...@cyberia.net.sa CC: bind-users@lists.isc.org So the logs would seem to indicate that the server responded to your PC, the only way you can see exactly what happened with that response is with traffic captures on the name server and your PC. Steve On 21 Jul 2013, at 12:52, "Ejaz" wrote: I can resolve yahoo and here the snippet of logs, 21-Jul-2013 14:46:11.119 queries: info: client 212.119.65.13#2007: query: yahoo.com.cyberia.net.sa IN A + (212.71.32.19) 21-Jul-2013 14:46:11.122 queries: info: client 212.119.65.13#2008: query: yahoo.com IN A + (212.71.32.19) But, Where as I can’t resolve fransiplus, here is the logs. 21-Jul-2013 14:46:19.135 queries: info: client 212.119.65.13#2009: query: fransiplus.com.cyberia.net.sa IN A + (212.71.32.19) 21-Jul-2013 14:46:19.138 queries: info: client 212.119.65.13#2010: query: fransiplus.com IN A + (212.71.32.19) I didin’t see any difference. Ejaz ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: resolving-problem
On 21 July 2013 13:42, Teerapatr Kittiratanachai wrote: > In my opinion your 'listen-on' options should be changed from > "212.71.32.19" to "any". > Actually I would disagree with that. There may be a very good reason that BIND is configured to listen on a specific IP address, the server may be multi-homed or it may have been configured like that for security reasons (e.g. should any addresses be added to the server in future they won't automatically start serving DNS). Steve ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
RE: resolving-problem
As I had resolve the IP address, the "212.71.32.19" which has configured is point to "ns1.nesma.net.sa". That seem that the DNS Server will listen only on itself, i think that the configuration file also came from the `ns1` too. I'm not sure about this. Can you explain me for further knowledge if I got the misunderstanding. -- Te Date: Sun, 21 Jul 2013 13:58:07 +0100 Subject: Re: resolving-problem From: sjc...@gmail.com To: bind-users@lists.isc.org On 21 July 2013 13:42, Teerapatr Kittiratanachai wrote: In my opinion your 'listen-on' options should be changed from "212.71.32.19" to "any". Actually I would disagree with that. There may be a very good reason that BIND is configured to listen on a specific IP address, the server may be multi-homed or it may have been configured like that for security reasons (e.g. should any addresses be added to the server in future they won't automatically start serving DNS). Steve ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: resolving-problem
On 21 July 2013 14:24, Teerapatr Kittiratanachai wrote: > As I had resolve the IP address, the "212.71.32.19" which has configured > is point to "ns1.nesma.net.sa". > That seem that the DNS Server will listen only on itself, i think that the > configuration file also came from the `ns1` too. I'm not sure about this. > Can you explain me for further knowledge if I got the misunderstanding. > BIND can only ever listen on an IP address that belongs to the name server. http://www.zytrax.com/books/dns/ch7/hkpng.html#listen-on listen-on defines the port and IP address(es) on which BIND will listen for incoming queries. The default is port 53 on all server interfaces. Multiple listen-on statements are allowed. I think what you are confusing it with is the allow-query statement which specifies who is allowed to query your name server. Steve ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: resolving-problem
On 21.07.13 12:55, Ejaz wrote: This lately we have been receiving complain from our customer that domains "b2bdr.fransib2corp.com www.fransitadawul.com.sa www.fransiplus.com" are unable to resolve from our DNS server whereas it can be resolve from all over the world FYI, my name servers are as listed below. Ns1.nesma.net.sa Ns2.nesma.net.sa ns2.alfransi.com.sa has problems resolving the nameservers' IPs. So, the correct resolution depends on ns1.alfransi.com.sa. % dig +norec any @ns2.alfransi.com.sa. ns2.alfransi.com.sa. ns1.alfransi.com.sa. ; <<>> DiG 9.8.4-rpz2+rl005.12-P1 <<>> +norec any @ns2.alfransi.com.sa. ; ns2.alfransi.com.sa. ns1.alfransi.com.sa. ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 3171 ;; flags: qr; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;ns2.alfransi.com.sa. IN ANY ;; Query time: 98 msec ;; SERVER: 193.22.249.148#53(193.22.249.148) ;; WHEN: Sun Jul 21 16:30:41 2013 ;; MSG SIZE rcvd: 37 ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 7877 ;; flags: qr; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;ns1.alfransi.com.sa. IN ANY -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Spam = (S)tupid (P)eople's (A)dvertising (M)ethod ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
New warning message...
I just started noticing these in my log: 7/21/13 11:33:13 PM named[355] 21-Jul-2013 23:33:13.646 general: warning: zone domain.com/IN: 'domain.com' found SPF/TXT record but no SPF/SPF record found, add matching type SPF record The zone does have an SPF record. I'm not sure I understand what else I'm supposed to be doing. Jeff ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: New warning message...
In message , SH Development writes: > I just started noticing these in my log: > > 7/21/13 11:33:13 PM named[355] 21-Jul-2013 23:33:13.646 general: > warning: zone domain.com/IN: 'domain.com' found S > PF/TXT record but no SPF/SPF record found, add matching type SPF record > > The zone does have an SPF record. I'm not sure I understand what else I'm > supposed to be doing. No. It has a legacy SPF TXT record. It SHOULD have record of type SPF as per RFC 4408. Named will complain if both types are not present. 3.1.1. DNS Resource Record Types This document defines a new DNS RR of type SPF, code 99. The format of this type is identical to the TXT RR [RFC1035]. For either type, the character content of the record is encoded as [US-ASCII]. It is recognized that the current practice (using a TXT record) is not optimal, but it is necessary because there are a number of DNS server and resolver implementations in common use that cannot handle the new RR type. The two-record-type scheme provides a forward path to the better solution of using an RR type reserved for this purpose. An SPF-compliant domain name SHOULD have SPF records of both RR types. A compliant domain name MUST have a record of at least one type. If a domain has records of both types, they MUST have identical content. For example, instead of publishing just one record as in Section 3.1 above, it is better to publish: example.com. IN TXT "v=spf1 +mx a:colo.example.com/28 -all" example.com. IN SPF "v=spf1 +mx a:colo.example.com/28 -all" Example RRs in this document are shown with the TXT record type; however, they could be published with the SPF type or with both types. > Jeff > ___ > Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe > from this list > > bind-users mailing list > bind-users@lists.isc.org > https://lists.isc.org/mailman/listinfo/bind-users -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: New warning message...
It's exactly as it says... Instead of ... TXT "SPF ..." You now do ... SPF "SPF ..." -- Jason Hellenthal Inbox: jhellent...@dataix.net Voice: +1 (616) 953-0176 JJH48-ARIN On Jul 22, 2013, at 0:48, SH Development wrote: > I just started noticing these in my log: > > 7/21/13 11:33:13 PMnamed[355]21-Jul-2013 23:33:13.646 general: > warning: zone domain.com/IN: 'domain.com' found SPF/TXT record but no SPF/SPF > record found, add matching type SPF record > > The zone does have an SPF record. I'm not sure I understand what else I'm > supposed to be doing. > > Jeff > ___ > Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe > from this list > > bind-users mailing list > bind-users@lists.isc.org > https://lists.isc.org/mailman/listinfo/bind-users smime.p7s Description: S/MIME cryptographic signature ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: New warning message...
On Mon, 2013-07-22 at 02:51 -0400, Jason Hellenthal wrote: > It's exactly as it says... > > > Instead of > ... TXT "SPF ..." > > > You now do > > > ... SPF "SPF ..." > > Mark Andrews wrote: No. It has a legacy SPF TXT record. It SHOULD have record of type SPF as per RFC 4408. Named will complain if both types are not present. ^ signature.asc Description: This is a digitally signed message part ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: New warning message...
Basically a SPF record type in place that's new but you could carry both for new and older clients. -- Jason Hellenthal Inbox: jhellent...@dataix.net Voice: +1 (616) 953-0176 JJH48-ARIN On Jul 22, 2013, at 0:48, SH Development wrote: > I just started noticing these in my log: > > 7/21/13 11:33:13 PMnamed[355]21-Jul-2013 23:33:13.646 general: > warning: zone domain.com/IN: 'domain.com' found SPF/TXT record but no SPF/SPF > record found, add matching type SPF record > > The zone does have an SPF record. I'm not sure I understand what else I'm > supposed to be doing. > > Jeff > ___ > Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe > from this list > > bind-users mailing list > bind-users@lists.isc.org > https://lists.isc.org/mailman/listinfo/bind-users smime.p7s Description: S/MIME cryptographic signature ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
