On Sun, 2006-11-05 at 23:16 -0700, David G. Miller wrote: > None of my internal boxes (three running FC6 plus my wife's W2K box) can > resolve the address of my ISP's web site. > > The only thing I can find that's at all odd is dig returns: > > [root@fraud ~]# dig any mesanetworks.net > > ; <<>> DiG 9.2.4 <<>> any mesanetworks.net > ;; global options: printcmd > ;; Got answer: > ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 29964 > ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 2 > > ;; QUESTION SECTION: > ;mesanetworks.net. IN ANY > > ;; ANSWER SECTION: > mesanetworks.net. 8620 IN NS ns1.mesanetworks.net. > mesanetworks.net. 8620 IN NS ns2.mesanetworks.net. > > ;; AUTHORITY SECTION: > mesanetworks.net. 8620 IN NS ns1.mesanetworks.net. > mesanetworks.net. 8620 IN NS ns2.mesanetworks.net. > > ;; ADDITIONAL SECTION: > ns1.mesanetworks.net. 8620 IN A 69.93.53.228 > ns2.mesanetworks.net. 8620 IN A 69.93.53.229 > > ;; Query time: 6 msec > ;; SERVER: 72.19.169.230#53(72.19.169.230) > ;; WHEN: Sun Nov 5 21:43:14 2006 > ;; MSG SIZE rcvd: 130 > > for their domain (www.mesanetworks.net resolves to a CNAME that points > to mesanetworks.net). Note the absence of an IP address in the answer > section. I had similar results: ]$ dig any mesanetworks.net ; <<>> DiG 9.3.3rc2 <<>> any mesanetworks.net ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 8959 ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;mesanetworks.net. IN ANY ;; ANSWER SECTION: mesanetworks.net. 172800 IN NS ns1.mesanetworks.net. mesanetworks.net. 172800 IN NS ns2.mesanetworks.net. ;; AUTHORITY SECTION: mesanetworks.net. 172800 IN NS ns2.mesanetworks.net. mesanetworks.net. 172800 IN NS ns1.mesanetworks.net. ;; ADDITIONAL SECTION: ns1.mesanetworks.net. 172800 IN A 69.93.53.228 ns2.mesanetworks.net. 172800 IN A 69.93.53.229 ;; Query time: 269 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: Mon Nov 6 16:53:52 2006 ;; MSG SIZE rcvd: 130 But did get an A record after removing the "any" option, and repeating the query: ]$ dig any mesanetworks.net ; <<>> DiG 9.3.3rc2 <<>> any mesanetworks.net ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 55332 ;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;mesanetworks.net. IN ANY ;; ANSWER SECTION: mesanetworks.net. 523 IN A 69.93.53.250 mesanetworks.net. 511 IN NS ns2.mesanetworks.net. mesanetworks.net. 511 IN NS ns1.mesanetworks.net. ;; AUTHORITY SECTION: mesanetworks.net. 511 IN NS ns1.mesanetworks.net. mesanetworks.net. 511 IN NS ns2.mesanetworks.net. ;; ADDITIONAL SECTION: ns1.mesanetworks.net. 14311 IN A 69.93.53.228 ns2.mesanetworks.net. 14311 IN A 69.93.53.229 ;; Query time: 2 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: Mon Nov 6 16:55:57 2006 ;; MSG SIZE rcvd: 146 > If anyone has any suggestions, please let me know. My ISP says > everything is ducky on their side. Perhaps something IS wonky on their network. I had the same results on querying more than one DNS server, here. The first attempt to "dig any mesanetworks.net" doesn't work, nor does repeating it. But, do a "dig mesanetworks.net" (without the "any" option), and you get an A record returned, and any query after that works, too. NB: There's also a change in the values written before "IN" on subsequent queries. <http://www.dnsreport.com/tools/dnsreport.ch?domain=mesanetworks.net> shows some errors. Note that some warning are less important than others. -- (Currently testing FC5, but still running FC4, if that's important.) Don't send private replies to my address, the mailbox is ignored. I read messages from the public lists.
