All Questions
Tagged with domain-name-system dns-zone
497
questions
4
votes
2
answers
856
views
Remote domain: DNS record A exists when NS does not
I have encountered a domain for which I can sucessfully retrieve a DNS A record. At the same time, however, any public DNS server seems to return empty NS record. The domain in question is bluedriving....
- 305
-1
votes
0
answers
76
views
How to create zones and zone files for existing public zones on an internal BIND server? [closed]
We have two BIND DNS servers in our infrastructure and all of the servers and clients DNS servers are set to these two BIND servers.
We want to create some records for DNS resolution and since our ...
- 170
0
votes
2
answers
228
views
Why do I have to specify the DNS server when doing a forward lookup?
I'm trying to set up a small, private DNS server. I'm using Bind9 and systemd resolved, netplan for managing the network. I've specified the DNS server in both the netplan configuration and /etc/...
2
votes
2
answers
129
views
Can you create a domain record that could be used as an inbound IP allow list?
Is there a way to create a domain record that would function as an inbound IP allow list, to be used in firewalls? Essentially creating a HTTPS ingress proxy.
Example:
FQDN
IP Range
allowlist.bob....
- 25
0
votes
0
answers
24
views
Move Nameserver from crashed BIND servers (DNSSEC Enabled)
The situation basically is:
The BIND servers that are authoritative for a domain crashed and are utilizing DNSSEC (Ie; I can't change the DNS entries for the zone), is it enough to have the registrar ...
0
votes
0
answers
22
views
How to Forward an authorative zone in BIND between internal and public clients
I have a dns server authorative for my public records and my internal records , I want to forward a zone in my internal dns server so internal clients can access certain records without using the ...
0
votes
2
answers
109
views
What is the behavior of a DNS resolver if one authoritative name server does not have particular record but another one does
Say I have sent a query for TXT record for m1._domainkey.amazon.com
nslookup -q=txt m1._domainkey.amazon.com
Say the authoritative nameservers for amazon.com are
amazon.com nameserver = ns1.amzndns....
- 19
1
vote
1
answer
247
views
unbound DNS without recursive
I want to configure the unbound DNS for the domain e.g. domain.com in a way that it only answers for *.domain.com and rest of any query like gmail.com or hotmail.com are refused.
I have following ...
- 13
-1
votes
2
answers
130
views
IPv6 AAAA record not resolving for sub domain
Hi have one domain lets say example.in, i have been using one of its subdomain for my application purpose xyz.example.in, i have following NS record for main domain and sub domain :
example.in NS ...
- 117
0
votes
0
answers
30
views
importing domain from AWS Route S3 to Linode
I want to import a domain registered in AWS:
in the Guides: https://www.linode.com/docs/products/networking/dns-manager/guides/incoming-dns-zone-transfers/
Within your external name server, allow ...
0
votes
0
answers
86
views
Bind Recursion DNS Server Returning Wildcard Address for Host Despite Exact Entry Existing in Zonefile on Hosts DNS Server
I setup a bind server (version BIND 9.18.16-1+ubuntu20.04.1+isc+1-Ubuntu on Ubuntu 20.04), and this particular instance is setup as a recursion resolver with no forwarders. When I dig one of my ...
- 187
0
votes
1
answer
169
views
DNS Zone File returns Error about my A records. Bind9 Ubuntu 22.04
I am trying to setup a guest ubuntu 22.04 DNS/DHCP server on a ProxMox Host. My error message when running
I have my domain registered via cloudfare ("Not shown in the file", and the domain ...
0
votes
2
answers
61
views
How do sites like workpress.com assign all users their own subdomain?
How does workdpress.com achieve this, where everyone, get a subdomain, like chooseName.wordpress.com after a new user sign up and when the subdomain has not been chosen?
0
votes
0
answers
43
views
Ubuntu Server Configure Bind9 DNS Server for HTTP request
I have configured a Bind9 DNS Server Forward Zone according to the code below. The way is configured, I only can do SSH using the server name <geoportal.geoint.lan>. I tried adding to the code ...
- 101
0
votes
1
answer
238
views
Convert AD-integrated DNS zones to Primary DNS zones
We have inherited a domain with 2008 R2 domain controllers running DNS on them. We want to add Windows Server 2019 to the domain then demote the 2008 R2 domain controllers to just DNS servers. We are ...
0
votes
2
answers
66
views
WHy is my DNS zone gone? [closed]
I changed my name servers for the domain mmaiato.com from the default GoDaddy name servers to custom NS records as part of my web hosting requirements.
I did not ask for a change of registrar. I did ...
user1017757
0
votes
1
answer
346
views
rndc showzone returns "rndc: 'showzone' failed: failure" on valid zones
I am running BIND 9.18.12-0 on Ubuntu 22.04 and I have the following problem on more than one installation. I have even installed bind locally with a simple test configuration and I am still seeing ...
- 161
2
votes
1
answer
347
views
All of my DNS zones do not make it on the secondary, what is wrong?
TL;DR You may want to quickly jump to the answer to know what happened and not spend time reading the whole question.
I have a tool (ipmgr) to generate my zones (I had to manage about 35 of them, so ...
- 2,250
-1
votes
1
answer
241
views
DNS Nameserver delegation not working in route53
Our company recently updated our DNS settings so they could be managed in AWS Route53 via Terraform instead of manually managed in Google Domains. We have a site that sits on example.com as well as ...
- 1
-1
votes
1
answer
286
views
Split DNS Issue - Configuring a new domain controller with an existing Apache web HTTP services using the same domain name "example.com"
We have a problem configuring a new domain controller with an existing Linux server hosting an Apache web HTTP services using the same domain name "example.com".
The Ip address for the first ...
- 1
-2
votes
2
answers
258
views
Block IP in DNS Zone File (Instead of Domain)
I'm using bind9 DNS server. I used to block websites using their domain name in RPZ zone file such as:
malicious.example CNAME .
But, I need to block IP rather than domain such as:
192.0.2.4 ...
0
votes
1
answer
225
views
What are practical outcomes of adding a CNAME record to an apex? What breaks?
There's this canonical question, but it essentially comes down to "it's not allowed by the RFCs." I don't think that's helpful. What I'd like to know is what exactly breaks and how?
Let's ...
- 2,195
0
votes
0
answers
172
views
Windows DNS randomly responds with SOA NS
Strange behavior at the client.
Monitoring software is set to ping a hostname every minute
Checks with Windows DNS server, which forwards the query to F5 GTM if needed.
It resolves hostname ...
- 1
0
votes
0
answers
156
views
PowerDNS need's answer any query with an "A" record when no A or cName Record Found
I have setup a DNS server with centos 7 & powerDNS letest. All things are working fine. but I want to do a thing that will be share a A record for every domain which is no listed on this DNS ...
0
votes
1
answer
374
views
DNS Zone has no address records (A or AAAA)
Whenever I run systemctl start named.service I get the error:
zone example.com/IN NS 'linserver-1.myco.example.com.example.com' has no address records (A or AAAA) Now the confusing thing for me is ...
0
votes
0
answers
400
views
Bind9 unable to resolve external nameserver
I have set up a DNS Server within my company's LAN.
Local nameservers works correctly, however those outside such as google.com are not resolved...
By running dig google.it I get this result:
; <&...
- 1
0
votes
1
answer
619
views
Bind9 Returning SERVFAIL for custom Zones
I'm trying to setup a DNS-Server for my Domains using Bind. The Server behaves correctly for noncustom Domains like google.com or github.com, but for my domains it always returns "SERVFAIL". ...
- 103
0
votes
0
answers
331
views
DNS forward resolution for specific non-FQDN hostnames (short names)
I'm in a situation where I'm being asked to solve a problem where computers are being migrated from one network/DNS domain to another. As this transition occurs, there will be machines in the original ...
- 101
1
vote
2
answers
459
views
DNS Naming clash between TXT Record and CNAME/A-Record
I observed an unexpected behavior in the usage of Azure DNS Zones.
I have the following DNS Records:
_acme_challenge.<mysubdomain1> IN TXT -> any value
* IN ...
- 113
2
votes
1
answer
565
views
Nameserver record keeps getting added to DNS zone in Windows Server DNS
I have a public DNS server running on a Windows server with the hostname dc01.
A nameserver for this hostname (dc01) keeps getting added to the DNS zone:
If I try to delete it, then reload the zone ...
- 180
1
vote
1
answer
199
views
BIND Nameserver - $ORIGIN in zonefile include always appends to its previous value
There is a a basic zonefile for "example.com" with an include of another zonefile for the subdomain, which has another include for each server.
Now the usage of $ORIGIN without trailing dot ...
- 11
0
votes
2
answers
90
views
Name server change, impact analysis and down time - worst case
The company I am working for is changing the name servers our registrar points to and wants a complete impact analysis in worst case scenario to impacted systems.
I know if we update the TTL's and ...
- 91
0
votes
2
answers
459
views
How to set up whitelisting on a DNS forwarding server with BIND9?
I have set up a DNS forwarding server on Ubuntu 20.04 LTS using Bind 9. I need to implement DNS whitelisting, however, I have not found any tutorials which explain how to set it up. I have tried ...
- 33
0
votes
1
answer
175
views
Split DNS - private addresses for LAN, global addresses for Internet?
I think this question has been asked previously, but I can't seem to find the right answer. How do I set up split DNS on my Windows server, such that a particular FQDN should be server one of 2 types ...
- 162
0
votes
1
answer
340
views
When an authoritative server is found in the NS record, is the A record checked for the ip address or not?
I am trying to understand what NS records are, how glue records form part of it and what happens afterwards? As far as I understand the NS record contains the hostname/s of the authoritative ...
- 33
0
votes
2
answers
336
views
Domain transfer: is my transfer incomplete, or is propagation taking a while?
I transferred a domain between registrars (from AWS to a local one). Route 53’s logs show the transfer as complete. My new registrar and https://dnc.org.nz/whois/whois-lookup/ (it’s a .co.nz domain) ...
- 125
0
votes
2
answers
2k
views
How to point a name to another name in the DNS?
I need to create a A-Record for a subdomain on server X to make it point to server Y, but the IP from server Y is changing from time to time.
Server Y also has a hostname / domain.
The A-record does ...
- 491
-1
votes
1
answer
28
views
Centos7 slave zones doesn't query master for zone file
This is my named.conf. These are zones on 192.168.2.194.
Also, 192.168.2.194 can successfully query zone files from centos 7 master zones.
0
votes
0
answers
22
views
Certificate validation issue with subdomains of subdomains [duplicate]
I have a current, production certificate with a wildcard common-name hosted in Amazon Certificate Manager (ACM). I've added a CNAME with a subdomain of a subdomain (like ....) to our Route53 zone that ...
- 560
0
votes
1
answer
29
views
Does creating a 10th level domain require creating 9 domain that preced to it?
Let's say, I own a domain example.com and it's setup correctly in my domain management dashboard. Now I want to create a long subdomain of the 10th level:
d10.d9.d8....d2.example.com
Will all that ...
- 11
0
votes
1
answer
565
views
Stood up Domain Controller using a seperate domains DNS server. How do I create the dc/pdc/gc records in DNS?
So we have a non-standard setup that appears to be supported by Microsoft. Pretty much a Domain controller not hosting DNS (Using another Domains DNS server).
Delving into creating all of the records ...
- 210
2
votes
1
answer
495
views
Connecting GCP VM instance to Google Domain
I am trying to connect a domain name I got from Google Domains to a Google Cloud Platform VM instance. My domain is .dev and when I tried nslookup and dig trace, they are already pointing to the right ...
google-cloud-platform
0
votes
1
answer
53
views
Suddenly dig +nocmd pop3.pauperis.org aaaa +noall +answer returns nothing
the command dig +nocmd pop3.pauperis.org aaaa +noall +answer returns the followingin my laptop:
pop3.pauperis.org. 3111 IN CNAME pauperis.org.
pauperis.org. 3111 IN AAAA 2001:41d0:...
- 508
0
votes
1
answer
1k
views
BIND 9.16 dnssec-policy default is not automatically renewing keys
Three months ago I upgraded my DNS servers to BIND 9.16 (currently running 9.16.25) to take advantage of the new dnssec-policy default option which would allow me to easily run DNSSEC for my domains. ...
0
votes
2
answers
100
views
Is there specificity in DNS?
I own a domain (say, example.com) and wanted to:
automatically update ext.example.com with my public DNS (via a script that will make the update once the ISP-provided IP changes) → this works
...
- 3,617
0
votes
1
answer
479
views
75.75.75.75 (Comcast DNS) not resolving ironpawsllc.com
IronPawsLLC.com is not pingable, gives an NXDOMAIN, and results in 0 answers when dig @75.75.75.75 ironpawsllc.com is used. So far, all the other DNS servers that I've tested against resolve. ...
1
vote
1
answer
2k
views
How to install second primary DNS on a domain?
So I'm testing some features in the windows server 2019 lab. I have one active directory. No need to say that the DNS server is running on the active directory correctly.
I want to add another primary ...
- 159
1
vote
1
answer
393
views
BIND9 - dig is unable to resolve from different server
$ named -v
BIND 9.16.1-Ubuntu (Stable Release) <id:d497c32>
I have 3 servers configured in digitalocean nyc1 all in the same subnet
on server01 - I have installed bind9 and configured the zones ...
- 113
2
votes
1
answer
654
views
Hosting only a subdomain in Azure dns service
We have a "traditional" dns service, where some outsourcing company manages our dns services. We host a lot of services in the cloud (mostly Azure) and then must submit tickets to the dns ...
- 205
1
vote
1
answer
874
views
FQDN without the hostname part?
As far as I know, A fully qualified domain name (FQDN) consists of two parts:
The hostname part: A single label representing a machine belonging to one specific domain.
The domain name part: ...
- 21