Hi,
TL;DR: I too find it a little odd that whois says this domain is reserved but
querying the DNS shows that it isn't there at all as I would
usually expect just the NS records to be present in the containing
zone. I can only assume that this registrar allows for registered
zones to not be published at all if one wishes. The whois is
authoritative for what is available to register; the DNS is
authoritative for what you can globally query.
On Mon, Aug 19, 2024 at 03:49:11PM +0800, Wesley wrote:
> This is the dns info from registry nameserver:
In future it would help if you showed what actual query you are
doing with "dig". From the output I can piece together that you did
something like:
$ dig datafarm.net
or
$ dig -t s datafarm.net
but assuming that indeed is what you did, it does not actually "ask
the registry nameserver".
We can see from your output that you got a response from:
> ;; SERVER: 10.160.0.1#53(10.160.0.1)
which is probably a resolver on your local network. So that answer
you got may have been from cache.
We can see from your output that you ended up (either implicitly or
explicitly) asking for an A query:
> ;; QUESTION SECTION:
> ;datafarm.net. IN A
However the best record to use when trying to see if a domain exists
i*in DNS* is an SOA ("Start of Authority"). It should show where the
domain delegation happens. It's basically the details for the DNS
zone.
By asking for an A record you run the risk of getting an empty
answer just because that record type doesn't exist. There is after
all no particular reason for an A record to exist for the root of a
domain that is registered. There is no reason why the only record in
that zone might not be
just.to.annoy.wesley.datafarm.net.
in which case there would be no A record for datafarm.net.
But! Here a technicality of DNS that does come to our aid anyway.
NXDOMAIN is for when the name does not exist at all. If the name
xists but the record type you queried for does not exist, you would
expect to get a NOERROR response but with zero results.
So you have in fact determined that datafarm.net doesn't exist in
(your) DNS, though perhaps not in the ideal way. There is still the
issue that you queried your (?) resolver so the answer could be
coming from cache.
Your use of whois confirms that this domain is registered and like
you I would expect all registered domains to create NS records in
the parent zone. whois tells us that this domain's nameservers are:
Name Server: ns1.mclink-net.it
Name Server: ns2.mclink-net.it
so in the .net zone I would expect NS records like this to exist:
datafarm IN NS ns1.mclink-net.it.
datafarm IN NS ns2.mclink-net.it.
They don't though, which is puzzling to me. Perhaps there is a
registrar option to not publish the zone until ready or something.
Anyway, this can be verified by asking the nameservers that are
authoritative for the .net zone:
$ dig +short -t ns net.
h.gtld-servers.net.
k.gtld-servers.net.
b.gtld-servers.net.
c.gtld-servers.net.
i.gtld-servers.net.
m.gtld-servers.net.
e.gtld-servers.net.
g.gtld-servers.net.
f.gtld-servers.net.
j.gtld-servers.net.
a.gtld-servers.net.
d.gtld-servers.net.
l.gtld-servers.net.
Ask any of those by directing the query with '@':
$ dig +norecurse -t ns datafarm.net @h.gtld-servers.net.
; <<>> DiG 9.16.50-Debian <<>> -t ns datafarm.net @h.gtld-servers.net.
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25538
;; flags: qr aa; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;datafarm.net. IN NS
;; AUTHORITY SECTION:
net. 900 IN SOA a.gtld-servers.net.
nstld.verisign-grs.com. 1724083355 1800 900 604800 86400
;; Query time: 20 msec
;; SERVER: 2001:502:8cc::30#53(2001:502:8cc::30)
;; WHEN: Mon Aug 19 16:02:43 UTC 2024
;; MSG SIZE rcvd: 114
Note NXDOMAIN - so no name at all for "datafarm" exists within "net.". "aa"
flag says that this is an authoritative answer (not froma cache) and
"AUTHORITY SECTION" says what this server we queried is authoritative for, in
this case "net." zone. So this is an authoritative answer from
h.gtld-servers.net that no such name "datafarm" exists in "net.".
Thanks,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
