-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 El 2009-02-14 a las 20:06 +0100, Camaleón escribió:
Desde hace unos días tengo problemas con la resolución de un dominio en concreto (marc.info). Utilizo los servidores dns de Telefónica.
¿Alguien que tenga configurado algún servidor de Telefónica podría confirmar este punto? No sé si se trata de un problema localizado o general, porque ya lleva varios días así :-?
*** stthpc:/etc # dig @80.58.0.97 marc.info
; <<>> DiG 9.4.1-P1 <<>> @80.58.0.97 marc.info ; (1 server found) ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 8891 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION: ;marc.info. IN A
;; Query time: 1083 msec ;; SERVER: 80.58.0.97#53(80.58.0.97) ;; WHEN: Sat Feb 14 19:54:23 2009 ;; MSG SIZE rcvd: 27 ***
En cambio, si se utiliza el servidor dns de opendns (por ejemplo), no hay ningún problema...
*** stthpc:/etc # dig @208.67.222.222 marc.info
; <<>> DiG 9.4.1-P1 <<>> @208.67.222.222 marc.info ; (1 server found) ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 63138 ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION: ;marc.info. IN A
;; ANSWER SECTION: marc.info. 1070 IN A 63.238.77.172 marc.info. 1070 IN A 63.238.77.253
;; Query time: 79 msec ;; SERVER: 208.67.222.222#53(208.67.222.222) ;; WHEN: Sat Feb 14 19:58:21 2009 ;; MSG SIZE rcvd: 59 ***
cer@nimrodel:~> dig marc.info ; <<>> DiG 9.4.2-P1 <<>> marc.info ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 52585 ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;marc.info. IN A ;; ANSWER SECTION: marc.info. 1800 IN A 63.238.77.253 marc.info. 1800 IN A 63.238.77.172 ;; AUTHORITY SECTION: marc.info. 9052 IN NS ns2.korelogic.com. marc.info. 9052 IN NS ns1.korelogic.com. ;; ADDITIONAL SECTION: ns1.korelogic.com. 94081 IN A 173.66.103.22 ns2.korelogic.com. 94081 IN A 173.66.103.23 ;; Query time: 175 msec ;; SERVER: 192.168.1.12#53(192.168.1.12) ;; WHEN: Sat Feb 14 20:36:07 2009 ;; MSG SIZE rcvd: 140 cer@nimrodel:~> El servidor que pones tu no responde. Y mi servidor ahora mismo no se a quien pregunta, creo que a los root. Hago un "rcnamed restart", cer@nimrodel:~> host -v marc.info Trying "marc.info" ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 2816 ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;marc.info. IN A ;; ANSWER SECTION: marc.info. 1800 IN A 63.238.77.172 marc.info. 1800 IN A 63.238.77.253 ;; AUTHORITY SECTION: marc.info. 10800 IN NS ns1.korelogic.com. marc.info. 10800 IN NS ns2.korelogic.com. ;; ADDITIONAL SECTION: ns2.korelogic.com. 172800 IN A 173.66.103.23 ns1.korelogic.com. 172800 IN A 173.66.103.22 Received 140 bytes from 192.168.1.12#53 in 797 ms Trying "marc.info" ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 5116 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;marc.info. IN AAAA ;; AUTHORITY SECTION: marc.info. 3600 IN SOA ns1.korelogic.com. root.marc.info. 2008111501 1200 3600 604800 3600 Received 85 bytes from 192.168.1.12#53 in 178 ms Trying "marc.info" ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 48518 ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 3 ;; QUESTION SECTION: ;marc.info. IN MX ;; ANSWER SECTION: marc.info. 10800 IN MX 100 marcmx.10east.com. marc.info. 10800 IN MX 10 mail.marc.info. ;; AUTHORITY SECTION: marc.info. 10799 IN NS ns1.korelogic.com. marc.info. 10799 IN NS ns2.korelogic.com. ;; ADDITIONAL SECTION: mail.marc.info. 1800 IN A 173.66.103.20 ns2.korelogic.com. 172799 IN A 173.66.103.23 ns1.korelogic.com. 172799 IN A 173.66.103.22 Received 175 bytes from 192.168.1.12#53 in 181 ms cer@nimrodel:~> Ahora bien, si en el "/etc/named.conf" le dejo que pregunte primero al dns del adsl (automático), entonces tarda más, pero lo consigue: cer@nimrodel:~> host -v marc.info Trying "marc.info" ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 54650 ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;marc.info. IN A ;; ANSWER SECTION: marc.info. 1800 IN A 63.238.77.172 marc.info. 1800 IN A 63.238.77.253 ;; AUTHORITY SECTION: marc.info. 10800 IN NS ns2.korelogic.com. marc.info. 10800 IN NS ns1.korelogic.com. ;; ADDITIONAL SECTION: ns2.korelogic.com. 172550 IN A 173.66.103.23 ns1.korelogic.com. 172549 IN A 173.66.103.22 Received 140 bytes from 192.168.1.12#53 in 4054 ms Trying "marc.info" ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 65109 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;marc.info. IN AAAA ;; AUTHORITY SECTION: marc.info. 3600 IN SOA ns1.korelogic.com. root.marc.info. 2008111501 1200 3600 604800 3600 Received 85 bytes from 192.168.1.12#53 in 535 ms Trying "marc.info" ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 14190 ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 3 ;; QUESTION SECTION: ;marc.info. IN MX ;; ANSWER SECTION: marc.info. 10800 IN MX 10 mail.marc.info. marc.info. 10800 IN MX 100 marcmx.10east.com. ;; AUTHORITY SECTION: marc.info. 10799 IN NS ns1.korelogic.com. marc.info. 10799 IN NS ns2.korelogic.com. ;; ADDITIONAL SECTION: mail.marc.info. 1800 IN A 173.66.103.20 ns2.korelogic.com. 172549 IN A 173.66.103.23 ns1.korelogic.com. 172548 IN A 173.66.103.22 Received 175 bytes from 192.168.1.12#53 in 301 ms cer@nimrodel:~> En cambio, si pido "terra.es" se ve que interroga a los root servers, o eso creo: cer@nimrodel:~> host -v terra.es Trying "terra.es" ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 36778 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 13, ADDITIONAL: 12 ;; QUESTION SECTION: ;terra.es. IN A ;; ANSWER SECTION: terra.es. 10440 IN A 213.4.130.210 ;; AUTHORITY SECTION: . 445728 IN NS C.ROOT-SERVERS.NET. . 445728 IN NS A.ROOT-SERVERS.NET. . 445728 IN NS I.ROOT-SERVERS.NET. . 445728 IN NS K.ROOT-SERVERS.NET. . 445728 IN NS M.ROOT-SERVERS.NET. . 445728 IN NS G.ROOT-SERVERS.NET. . 445728 IN NS D.ROOT-SERVERS.NET. . 445728 IN NS B.ROOT-SERVERS.NET. . 445728 IN NS E.ROOT-SERVERS.NET. . 445728 IN NS H.ROOT-SERVERS.NET. . 445728 IN NS F.ROOT-SERVERS.NET. . 445728 IN NS L.ROOT-SERVERS.NET. . 445728 IN NS J.ROOT-SERVERS.NET. ;; ADDITIONAL SECTION: K.ROOT-SERVERS.NET. 532117 IN A 193.0.14.129 K.ROOT-SERVERS.NET. 533763 IN AAAA 2001:7fd::1 F.ROOT-SERVERS.NET. 580330 IN A 192.5.5.241 F.ROOT-SERVERS.NET. 593369 IN AAAA 2001:500:2f::f A.ROOT-SERVERS.NET. 532116 IN A 198.41.0.4 A.ROOT-SERVERS.NET. 533699 IN AAAA 2001:503:ba3e::2:30 L.ROOT-SERVERS.NET. 532116 IN A 199.7.83.42 L.ROOT-SERVERS.NET. 533775 IN AAAA 2001:500:3::42 H.ROOT-SERVERS.NET. 587406 IN A 128.63.2.53 H.ROOT-SERVERS.NET. 591355 IN AAAA 2001:500:1::803f:235 B.ROOT-SERVERS.NET. 592707 IN A 192.228.79.201 M.ROOT-SERVERS.NET. 532117 IN A 202.12.27.33 Received 505 bytes from 192.168.1.12#53 in 88 ms Trying "terra.es" ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 46685 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;terra.es. IN AAAA ;; AUTHORITY SECTION: terra.es. 112 IN SOA dns1.terra.es. dnsadmin.corp.terra.es. 2009021300 28800 7200 2592000 172800 Received 81 bytes from 192.168.1.12#53 in 68 ms Trying "terra.es" ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 18802 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 13, ADDITIONAL: 12 ;; QUESTION SECTION: ;terra.es. IN MX ;; ANSWER SECTION: terra.es. 10367 IN MX 100 mx.terra.es. ;; AUTHORITY SECTION: . 445727 IN NS E.ROOT-SERVERS.NET. . 445727 IN NS G.ROOT-SERVERS.NET. . 445727 IN NS D.ROOT-SERVERS.NET. . 445727 IN NS I.ROOT-SERVERS.NET. . 445727 IN NS K.ROOT-SERVERS.NET. . 445727 IN NS J.ROOT-SERVERS.NET. . 445727 IN NS H.ROOT-SERVERS.NET. . 445727 IN NS A.ROOT-SERVERS.NET. . 445727 IN NS B.ROOT-SERVERS.NET. . 445727 IN NS L.ROOT-SERVERS.NET. . 445727 IN NS F.ROOT-SERVERS.NET. . 445727 IN NS C.ROOT-SERVERS.NET. . 445727 IN NS M.ROOT-SERVERS.NET. ;; ADDITIONAL SECTION: mx.terra.es. 10234 IN A 213.4.149.224 K.ROOT-SERVERS.NET. 532116 IN A 193.0.14.129 K.ROOT-SERVERS.NET. 533762 IN AAAA 2001:7fd::1 F.ROOT-SERVERS.NET. 580329 IN A 192.5.5.241 F.ROOT-SERVERS.NET. 593368 IN AAAA 2001:500:2f::f A.ROOT-SERVERS.NET. 532115 IN A 198.41.0.4 A.ROOT-SERVERS.NET. 533698 IN AAAA 2001:503:ba3e::2:30 L.ROOT-SERVERS.NET. 532115 IN A 199.7.83.42 L.ROOT-SERVERS.NET. 533774 IN AAAA 2001:500:3::42 H.ROOT-SERVERS.NET. 587405 IN A 128.63.2.53 H.ROOT-SERVERS.NET. 591354 IN AAAA 2001:500:1::803f:235 B.ROOT-SERVERS.NET. 592706 IN A 192.228.79.201 Received 508 bytes from 192.168.1.12#53 in 64 ms cer@nimrodel:~> Esto es con: forwarders { 192.168.1.1; }; # router adsl ... forward first; Trae cuenta tener tu propio servidor DNS. - -- Saludos Carlos E.R. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (GNU/Linux) iEYEARECAAYFAkmXIcYACgkQtTMYHG2NR9VQMACdHdMrXxXCKAukcP4t7xhXUY09 qZUAmwfiTCUmBo4r5LN/EZ8BwlReWSyc =Wi42 -----END PGP SIGNATURE-----