[lug] DNS Problems: Is it me, or is it Comcast?
Frank Whiteley
techzone at greeleynet.com
Mon Oct 4 09:46:08 MDT 2004
All seems well from here WRT to your server. Can't say about Comcast or
your workstation.
mtr cleansoft.com
Matt's traceroute [v0.54]
io.frii.com Mon Oct 4 09:42:57
2004
Keys: D - Display mode R - Restart statistics Q - Quit
Packets Pings
Hostname %Loss Rcv Snt Last Best Avg
Worst
1. 216.17.222.6 0% 3 3 0 0 16
48
2. 216.17.230.17 0% 3 3 1 0 0
1
3. 216.17.230.42 0% 3 3 3 3 3
4
4. 66.250.5.253 0% 3 3 3 3 4
4
5. 66.28.5.17 0% 3 3 151 112 139
153
6. 66.28.4.30 0% 3 3 15 15 15
15
7. 66.28.4.37 0% 3 3 23 23 24
25
8. 154.54.2.194 0% 3 3 24 24 25
25
9. 4.68.127.13 0% 3 3 22 22 22
22
10. 209.244.15.161 0% 3 3 24 22 23
24
11. 209.247.11.21 0% 3 3 21 21 22
22
12. 4.68.112.154 0% 2 2 23 23 23
23
13. 63.211.250.18 0% 2 2 44 44 44
44
14. 66.7.147.246 0% 2 2 43 43 43
43
15. 66.7.147.250 0% 2 2 45 45 45
45
16. 66.54.149.171 0% 2 2 46 45 46
46
17. 198.49.126.101 0% 2 2 47 47 47
48
18. 198.49.126.122 0% 2 2 45 45 46
47
io: {39} dig @ns2.cleansoft.net any cleansoft.net
; <<>> DiG 9.2.2 <<>> @ns2.cleansoft.net any cleansoft.net
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 18508
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 0, ADDITIONAL: 2
;; QUESTION SECTION:
;cleansoft.net. IN ANY
;; ANSWER SECTION:
cleansoft.net. 86400 IN A 198.49.126.122
cleansoft.net. 86400 IN MX 0 cleansoft.net.
cleansoft.net. 86400 IN SOA ns1.cleansoft.net.
postmaster.cleansoft.net. 5 10800 3600 604800 86400
cleansoft.net. 86400 IN NS ns1.cleansoft.net.
cleansoft.net. 86400 IN NS ns2.cleansoft.net.
;; ADDITIONAL SECTION:
ns1.cleansoft.net. 86400 IN A 198.49.126.122
ns2.cleansoft.net. 86400 IN A 198.49.126.122
;; Query time: 58 msec
;; SERVER: 198.49.126.122#53(ns2.cleansoft.net)
;; WHEN: Mon Oct 4 09:43:50 2004
;; MSG SIZE rcvd: 178
; <<>> DiG 9.2.2 <<>> @ns1.frii.net any cleansoft.net
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 53162
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 2
;; QUESTION SECTION:
;cleansoft.net. IN ANY
;; ANSWER SECTION:
cleansoft.net. 172172 IN NS ns2.cleansoft.net.
cleansoft.net. 172172 IN NS ns1.cleansoft.net.
;; AUTHORITY SECTION:
cleansoft.net. 172172 IN NS ns1.cleansoft.net.
cleansoft.net. 172172 IN NS ns2.cleansoft.net.
;; ADDITIONAL SECTION:
ns1.cleansoft.net. 172736 IN A 198.49.126.122
ns2.cleansoft.net. 172736 IN A 198.49.126.122
;; Query time: 4 msec
;; SERVER: 216.17.128.1#53(ns1.frii.net)
;; WHEN: Mon Oct 4 09:44:54 2004
;; MSG SIZE rcvd: 127
Frank Whiteley
Greeley
----- Original Message -----
From: "Michael Deck" <deckm at cleansoft.com>
To: <lug at lug.boulder.co.us>
Sent: Monday, October 04, 2004 09:33
Subject: [lug] DNS Problems: Is it me, or is it Comcast?
> I started having some DNS problems on Friday morning, and I need help
> determining whether it's in the name server that I administer, or whether
> it's entirely a Comcast problem (and what I might suggest they do about
it).
>
> Here are the details. On Friday morning I noticed I was unable to ping my
> remote server (cleansoft.com) by name but I could ping it by IP address
> (198.49.126.122). This from my home office, which has Comcast "business"
> cable internet. The remote host is running KRUD FC1 and is authoritative
> for cleansoft.com.
>
> I also noticed I could ping the server by name from the host of one of my
> clients. At first I thought that this was a DNS refresh problem, or maybe
> an iptables problem, but I think I've convinced myself it isn't iptables.
>
> If I put 198.49.126.122 in /etc/resolv.conf as a nameserver, my local
> problems go away. Emails appear to be reaching me from everywhere except
> other comcast users.
>
> What I don't know is whether my zone files are somehow causing the
problem.
> Here is another tidbit that worries me. When I use
>
> host -v -C cleansoft.com
>
> from my client's system,
>
> > host -v -C cleansoft.com
> Trying "cleansoft.com"
> Received 121 bytes from xxx.xx.xxx.x#53 in 7 ms
> Trying "cleansoft.com"
> ;; connection timed out; no servers could be reached
>
> where I've blunked out my client's DNS host address. So what does this
> mean? I thought -C meant to try to find the authoritative nameserver.
>
> Here is my zone file for cleansoft.com. Note, this setup has been working
> for a couple of months until Friday morning, and I haven't changed
anything
> related to BIND that I am aware of, though there may have been a system
> reboot in there that I don't know about. I checked my record with my
domain
> registrar, and it shows ns1.cleansoft.com 198.49.126.122 as primary
> nameserver for this domain.
>
> cleansoft.com. IN SOA ns1.cleansoft.com. postmaster.cleansoft.com. (
> 6 ; Serial
> 10800 ; Refresh after 3 hours
> 3600 ; Retry after 1 hour
> 604800 ; Expire after 1 week
> 86400 ; Minimum TTL of 1 day
> )
>
> cleansoft.com. IN NS ns1.cleansoft.com.
> cleansoft.com. IN NS ns2.cleansoft.com.
>
> ;
> ; Host addresses
> ;
>
> localhost.cleansoft.com. IN A 127.0.0.1
> www.cleansoft.com. IN A 198.49.126.122
> cleansoft.com. IN A 198.49.126.122
> mail.cleansoft.com. IN A 198.49.126.122
> ns1.cleansoft.com. IN A 198.49.126.122
> ns2.cleansoft.com. IN A 198.49.126.122
> cleansoft.com. IN MX 0 cleansoft.com.
>
>
>
> Michael Deck
> Cleanroom Software Engineering, Inc.
>
> _______________________________________________
> Web Page: http://lug.boulder.co.us
> Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> Join us on IRC: lug.boulder.co.us port=6667 channel=#colug
More information about the LUG
mailing list