DNS server (BIND) stops forwarding and resolving url that works with forwarder. Restart helps.
Hello Team,
I have whitelisted 1 url that needs to be resolved from other DNS. So it forwards the request to other dns for resolution. But sometimes it stops resolving the urls and after restart of service it works. It is intermittent and if we dont restart, even though it starts working again... [root@gpdcmdnns005 data]# dig @10.122.255.219 onboard.princess.com
; <<>> DiG 9.9.4-RedHat-9.9.4-51.el7_4.2 <<>> @10.122.255.219 onboard.princess.com ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29675 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;onboard.princess.com. IN A
;; AUTHORITY SECTION: princess.com. 3180 IN SOA princess.com. domains.princess.com. 2018101602 14400 3600 604800 7200
;; Query time: 0 msec ;; SERVER: 10.122.255.219#53(10.122.255.219) ;; WHEN: Sun Nov 25 17:58:00 EST 2018 ;; MSG SIZE rcvd: 93 [root@gpdcmdnns005 data]# [root@gpdcmdnns005 data]# systemctl restart named
******************* After restart the service***** [root@gpdcmdnns005 data]# dig @10.122.255.219 onboard.princess.com
; <<>> DiG 9.9.4-RedHat-9.9.4-51.el7_4.2 <<>> @10.122.255.219 onboard.princess.com ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 49514 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 13, ADDITIONAL: 27
;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;onboard.princess.com. IN A
;; ANSWER SECTION: onboard.princess.com. 5 IN A 10.26.129.20
;; AUTHORITY SECTION: com. 60432 IN NS k.gtld-servers.net. com. 60432 IN NS e.gtld-servers.net. com. 60432 IN NS i.gtld-servers.net. com. 60432 IN NS b.gtld-servers.net. com. 60432 IN NS h.gtld-servers.net. com. 60432 IN NS c.gtld-servers.net. com. 60432 IN NS d.gtld-servers.net. com. 60432 IN NS g.gtld-servers.net. com. 60432 IN NS m.gtld-servers.net. com. 60432 IN NS a.gtld-servers.net. com. 60432 IN NS l.gtld-servers.net. com. 60432 IN NS f.gtld-servers.net. com. 60432 IN NS j.gtld-servers.net.
;; ADDITIONAL SECTION: f.gtld-servers.net. 92616 IN A 192.35.51.30 f.gtld-servers.net. 92616 IN AAAA 2001:503:d414::30 b.gtld-servers.net. 92616 IN A 192.33.14.30 b.gtld-servers.net. 92616 IN AAAA 2001:503:231d::2:30 m.gtld-servers.net. 92616 IN A 192.55.83.30 m.gtld-servers.net. 92616 IN AAAA 2001:501:b1f9::30 k.gtld-servers.net. 92616 IN A 192.52.178.30 k.gtld-servers.net. 92616 IN AAAA 2001:503:d2d::30 h.gtld-servers.net. 92616 IN A 192.54.112.30 h.gtld-servers.net. 92616 IN AAAA 2001:502:8cc::30 l.gtld-servers.net. 92616 IN A 192.41.162.30 l.gtld-servers.net. 92616 IN AAAA 2001:500:d937::30 j.gtld-servers.net. 92616 IN A 192.48.79.30 j.gtld-servers.net. 92616 IN AAAA 2001:502:7094::30 d.gtld-servers.net. 92616 IN A 192.31.80.30 d.gtld-servers.net. 92616 IN AAAA 2001:500:856e::30 g.gtld-servers.net. 92616 IN A 192.42.93.30 g.gtld-servers.net. 92616 IN AAAA 2001:503:eea3::30 a.gtld-servers.net. 92616 IN A 192.5.6.30 a.gtld-servers.net. 92616 IN AAAA 2001:503:a83e::2:30 i.gtld-servers.net. 92616 IN A 192.43.172.30 i.gtld-servers.net. 92616 IN AAAA 2001:503:39c1::30 e.gtld-servers.net. 92616 IN A 192.12.94.30 e.gtld-servers.net. 92616 IN AAAA 2001:502:1ca1::30 c.gtld-servers.net. 92616 IN A 192.26.92.30 c.gtld-servers.net. 92616 IN AAAA 2001:503:83eb::30
;; Query time: 3 msec ;; SERVER: 10.122.255.219#53(10.122.255.219) ;; WHEN: Sun Nov 25 17:59:55 EST 2018 ;; MSG SIZE rcvd: 861
NAMED.CONF configuration:*
allow-query { any; };
// Forward all DNS queries to Google Plubic DNS.
forwarders {
208.67.220.220;
208.67.222.222;
};
dnssec-enable no;
dnssec-validation no;
/* Path to ISC DLV key */
bindkeys-file "/etc/named.iscdlv.key";
managed-keys-directory "/var/named/dynamic";
pid-file "/run/named/named.pid";
session-keyfile "/run/named/session.key";
};
logging { channel default_debug { file "data/named.run"; severity dynamic; }; };
view labguest { response-policy { zone "rpz"; }; match-clients { labguest; }; allow-recursion { any; }; zone "rpz" { type master; file "/var/named/db.rpz"; //allow-query { none; }; allow-transfer { 127.0.0.1 ; }; }; zone "." IN { type hint; file "named.ca"; }; zone "gp.ocean.com" IN { type master; file "fwd.gp.ocean.com.db"; allow-query { any; }; };
zone "119.255.122.10.in-addr.arpa" IN { type master; file "1.0.0.127.db"; allow-update { none; }; }; include "/etc/named.rfc1912.zones"; include "/etc/named.root.key"; };