On 31/03/2021 20:12, Chhavi Mittal wrote:
This is what I get in tcpdump: I see a call to 53 for securityservices
and then a call to 8699 for mydomain.com <http://mydomain.com> and
then 2 more pair of calls for the same but end result is a timeout.
12:09:18.666913 IP (tos 0x0, ttl 64, id 5331, offset 0, flags [none],
proto UDP (17), length 81)
127.0.0.1.36427 > 127.0.0.1.53: 32855+ [1au] A?
securityservices.com <http://securityservices.com>. (53)
0x0000: 4500 0051 14d3 0000 4011 67c7 7f00 0001 E..Q....@.g.....
0x0010: 7f00 0001 8e4b 0035 003d fe50 8057 0120 .....K.5.=.P.W..
0x0020: 0001 0000 0000 0001 1476 6572 6173 6563 .........sec
0x0030: 7572 6974 7973 6572 7669 6365 7303 636f urityservices.co
<http://urityservices.co>
0x0040: 6d00 0001 0001 0000 2910 0000 0000 0000 m.......).......
0x0050: 00 .
12:09:18.667947 IP (tos 0x0, ttl 64, id 5332, offset 0, flags [DF],
proto UDP (17), length 58)
127.0.0.1.40512 > 127.0.0.1.8699: UDP, length 30
0x0000: 4500 003a 14d4 4000 4011 27dd 7f00 0001 E..:..@.@.'.....
0x0010: 7f00 0001 9e40 21fb 0026 fe39 6eeb 0100 .....@!..&.9n...
0x0020: 0001 0000 0000 0000 086d 7964 6f6d 6169 .........mydomai
0x0030: 6e03 636f 6d00 0001 0001 n.com.....
OK, so auth sends the request for mydomain.com to the recursor on 8699,
but the recursor doesn't forward it to auth on localhost:53, so your dig
client times out and retries 5 seconds later.
Is your recursor definitely listening on port 8699? (use "netstat
-naup" or "ss -naup")
_______________________________________________
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/pdns-users
