RE: Lost DNS lookup

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



> -----Original Message-----
> From: McGuffey, David C.
> Sent: 12 June, 2008 11:00
> To: dtimms@xxxxxxxxxxxx
> Cc: fedora-list@xxxxxxxxxx
> Subject: Re: Lost DNS lookup
> 
> On Thu, 12 Jun 2008 22:48:12 +1000 David Timms <dtimms@xxxxxxxxxxxx>
wrote
> >
> > McGuffey, David C. wrote:
> > > A few days ago, a workstation in a lab stopped doing DNS lookups
to
> > > support connectivity to SMTP, POP, and web services.  As I think
back,
> > > the behavior started in close proximity in time to a stunnel
update.
> > # uname -a
> > # ifconfig
> > # time route
> > # ping localhost
> > # ping 127.0.0.1
> > # ping self ip from ifconfig
> > # ping self hostname by name
> > # ping another machine on this network.
> > # ping next hop router {from route}
> > # ping 66.249.89.99   {google}
> > # cat /etc/resolv.conf
> > # ping nameserver ip from resolv.conf
> > # dig www.google.com.au
> > # ping www.google.com.au
> >
> > Guessing you did all that, but maybe dropping the results would help
us
> > work out what's up ?
> >
> I did some of that, but not all.  Will try to get back to the machine
> today and do that.
> 
> BTW, I dropped an F8 loaded laptop onto the network, powered it up,
> received the dhcp configuration and was able to get out through the
> gateway.  So the problem is definitely associated with the F7 load on
the
> workstation.
> 
> Dave McGuffey
>

I thought this was solved when I fixed an unusually short dhcp lease
setting in our ISP provided firewall/switch.  But guess not.

Problem went away for quite a while.  Then it reared its ugly head
again.  Seems to be an intermittent issue.  This is eally driving us
nuts.

This machine and the other few devices on the internal network are
static IP using host files.

I ran through the list above, and can ping localhost, two printers, and
another computer via IP and hostname. Of course that is using the
/etc/host entries.  CUPS is working and we can print to both printers.
Samba is working on this machine, and the other machine can log in and
reach the smb shared folder. So, the network components (except for dns)
seem to be working A-OK.

As soon as I try to dig, or ping an external site by hostname the effort
times out.

When I try to ping my two ISP provided DNS servers, the effort times
out. That is not unusual, because most ISPs are dropping a lot of icmp
to their servers, except from a small number of their internal
management systems.  I do the same on my internal networks.

So...this appears to be a dns lookup problem. The /etc/host,
/etc/resolv.conf, /etc/networks, and /etc/nsswitch.conf all look good
and have not changed since before the problem started.

Iptables hasn't changed, so there is not a rule that intermittently
appears that would block dns lookups through the gateway.

I believe I may have a corrupted library routine upon which the dns
client relies.

I don't have a lot of time to go poking around...the boss is telling me
to get it fixed quickly, or move on to F9 (which I'm not quite ready to
do for this particular machine.)

Later today I'm going to try tshark to snoop the network traffic to see
if the machine is actually sending dns queries out through the gateway.

***Assuming there are no dns queries going out of the machine, using yum
in a force mode, which network components should I reload from the F7
repository?***

Dave McGuffey
Principal Information System Security Engineer // NSA-IEM, NSA-IAM
SAIC, IISBU, Columbia, MD


-- 
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list

[Index of Archives]     [Current Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Yosemite News]     [Yosemite Photos]     [KDE Users]     [Fedora Tools]     [Fedora Docs]

  Powered by Linux