[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-users] NXDOMAIN troubles - not the usual missing records

I have several RaQ4's configured with my upstream's DNS servers as primary
and secondary nameservers.

They are:

ns1.acs.pnap.net 64.94.1.1
ns2.acs.pnap.net 64.94.1.33

Recently, these have started showing up in my logs a million times:

Apr 17 20:02:36 myhostname named[525]: sysquery: findns error (NXDOMAIN) on
NS1.ACS.PNAP.NET?
Apr 17 20:02:46 myhostname named[525]: sysquery: findns error (NXDOMAIN) on
NS2.ACS.PNAP.NET?
Apr 17 20:04:27 intertruss1 named[525]: sysquery: findns error (NXDOMAIN) on
NS1.PNAP.NET?
Apr 17 20:04:27 intertruss1 named[525]: sysquery: findns error (NXDOMAIN) on
NS2.PNAP.NET?
Apr 17 20:08:01 intertruss1 named[525]: sysquery: findns error (NXDOMAIN) on
ns-a.pnap.net?
Apr 17 20:08:01 intertruss1 named[525]: sysquery: findns error (NXDOMAIN) on
ns-b.pnap.net?
Apr 17 20:08:01 intertruss1 named[525]: sysquery: findns error (NXDOMAIN) on
ns-c.pnap.net?
Apr 17 20:08:01 intertruss1 named[525]: sysquery: findns error (NXDOMAIN) on
ns-d.pnap.net?


Funny thing is, dig returns the proper results:

[root log]# dig NS1.ACS.PNAP.NET

; <<>> DiG 8.3 <<>> NS1.ACS.PNAP.NET
;; res options: init recurs defnam dnsrch
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 2
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2
;; QUERY SECTION:
;;      NS1.ACS.PNAP.NET, type = A, class = IN

;; ANSWER SECTION:
NS1.ACS.PNAP.NET.       12H IN A        64.94.1.1

;; AUTHORITY SECTION:
ACS.PNAP.NET.           12H IN NS       NS1.ACS.PNAP.NET.
ACS.PNAP.NET.           12H IN NS       ns2.ACS.PNAP.NET.

;; ADDITIONAL SECTION:
NS1.ACS.PNAP.NET.       12H IN A        64.94.1.1
ns2.ACS.PNAP.NET.       12H IN A        64.94.1.33

;; Total query time: 4 msec
;; FROM: MY_FQDN to SERVER: default -- 64.94.1.1
;; WHEN: Thu Apr 17 20:12:28 2003
;; MSG SIZE  sent: 34  rcvd: 114


This is having a profound impact on my ability to send or receive mail to
domain names whose primary nameservice is provided by
ns1.acs.pnap.net and ns2.acs.pnap.net; those messages are rejected as
'domain does not resolve'...here's a sample:

Apr 17 17:38:59 hostname sendmail[5839]: h3HLbd605839: ruleset=check_mail,
arg1=<user@xxxxxxx>, relay=[64.94.14.228], reject=451 4.1.8
<user@xxxxxxx>... Domain of sender address user@xxxxxxx does not resolve

then, I try:

[root log]# dig -x 64.94.14.228

; <<>> DiG 8.3 <<>> -x
;; res options: init recurs defnam dnsrch
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 2
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2
;; QUERY SECTION:
;;      228.14.94.64.in-addr.arpa, type = ANY, class = IN

;; ANSWER SECTION:
228.14.94.64.in-addr.arpa.  12H IN PTR  mail.spx.org.

;; AUTHORITY SECTION:
14.94.64.in-addr.arpa.  12H IN NS       ns1.acs.pnap.net.
14.94.64.in-addr.arpa.  12H IN NS       ns2.acs.pnap.net.

;; ADDITIONAL SECTION:
ns1.acs.pnap.net.       12H IN A        64.94.1.1
ns2.acs.pnap.net.       12H IN A        64.94.1.33

;; Total query time: 3 msec
;; FROM: my_fqdn to SERVER: default -- 64.94.1.1
;; WHEN: Thu Apr 17 20:17:27 2003
;; MSG SIZE  sent: 43  rcvd: 149

So to my tired eyes, everything looks like it should be working.

This is driving me C-R-A-Z-Y. Any insight is GREATLY appreciated.

Thanks,

Brandon