Re: major DNS hiccup

---

• From: Mike Scott <usenet.10@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
• Date: Mon, 10 Jul 2006 10:47:06 GMT

---

Michel Talon wrote:

Mike Scott <usenet.10@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx> wrote:

This one seems to fall heavily into the "can't happen" category, and I'm stuck for ideas: would /very/ much appreciate pointers about where to look.

Thanks in advance.

Could it be that you have somewhat firewalled TCP and leaved only UDP?
Some DNS queries are done via UDP, others via TCP, so firewalling TCP is
not a good idea.

I'm 99.9999% sure it's not firewall-related. If it were, I would think either all or no traffic would pass at all; and I've tried a different machine (with a very liberal firewall config). I see traffic passing both ways (all udp, no tcp, incidentally), and all with correct checksums (another contributor to this thread suggested checking this), and nothing being blocked. Oh, and I've just tried removing pf's 'scrub' rule - an act of desperation that made no difference at all :-(

What I get is nameserver reply packets from assorted unrelated servers (even the root servers) with defects in them - either no answer record but with the question returned to me (as seems normal), or no answer /and/ no question (the latter being flagged in the reply as 'format error').

It seems that this is occurring even when the lookup is (at application level) successful - and that duplicate replies from different servers often provide the missing information.

I've now dropped back to using my ISP's name servers plus hosts files for the LAN addresses, which works but is not really satisfactory and only plasters over the problem - which started suddenly last thursday if I recall.

Maybe I've just not fed the Gremlins enough last week?

--
Please use the corrected version of the address below for replies.
Replies to the header address will be junked, as will mail from
various domains listed at www.scottsonline.org.uk
Mike Scott Harlow Essex England.(unet -a-t- scottsonline.org.uk)
.

---

• References:
  • major DNS hiccup
    • From: Mike Scott
  • Re: major DNS hiccup
    • From: Michel Talon

• Prev by Date: Re: bootable CF disk
• Next by Date: Re: major DNS hiccup
• Previous by thread: Re: major DNS hiccup
• Next by thread: Re: major DNS hiccup
• Index(es):
  • Date
  • Thread

---

Relevant Pages new server 2003 slow login NOT a DNS problem ... we have a remote site that had been using Windows 2000 servers until ... UDP:138 ... TCP:445 ... (microsoft.public.windows.server.general) Re: Server with UDP and TCP ... servers using TCP. ... servers use UDP. ... TCP sockets and the same time. ... same issue occurs if i use the UDP recvfrom comand. ... (comp.lang.c) Re: ISA Always Blocks DNS Zone Transfers ... I do allow both TCP Incoming and Receive Send UDP. ... Maybe the NAT is inteferring with the Zone Transfer. ... You should change this setting only to allowed DNS Servers! ... (microsoft.public.isaserver) Server with UDP and TCP ... servers using TCP. ... servers use UDP. ... TCP sockets and the same time. ... same issue occurs if i use the UDP recvfrom comand. ... (comp.lang.c) NFS problem with recent 2.6 kernels (also serial console weirdness) ... 100000 2 tcp 111 portmapper ... 100000 2 udp 111 portmapper ... mounted filesystem with ordered data mode. ... Mounted root (ext3 filesystem) readonly. ... (Linux-Kernel)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(13)