某些名稱伺服器的 DNS servfail
我為自己製作了一個小小的 Nameserver,只是為了好玩。目前它服務於 *.iwanhae.ga 網站。喜歡http://blog.iwanhae.ga
但問題是一些域名伺服器無法獲取 blog.iwanhae.ga 的 IP 地址。
例如,Google dns server(8.8.8.8) 可以獲得 175.193.162.44(每個 iwanhae.ga 的 ip)但在 Verizon dns server(4.2.2.2) 無法獲得任何 ip 地址。
這是我使用 nslookup 的測試
@server 8.8.8.8
預設伺服器:8.8.8.8
地址:8.8.8.8#53
@blog.iwanhae.ga
伺服器:8.8.8.8
地址:8.8.8.8#53
非權威回答:
名稱:blog.iwanhae.ga
地址:175.193.162.44
@server 4.2.2.2
預設伺服器:4.2.2.2
地址:4.2.2.2#53
@blog.iwanhae.ga
伺服器:4.2.2.2
地址:4.2.2.2#53
** 伺服器找不到 blog.iwanhae.ga:SERVFAIL
這是另一個測試 https://www.whatsmydns.net/#A/blog.iwanhae.ga
我想知道為什麼某些名稱伺服器在獲取 IP 地址時失敗,而另一個成功。
任何的想法?
我認為這是我的小域名伺服器的問題,但我不知道是什麼導致了問題。
答案告訴您在
SERVFAIL到達您的域的 DNS 伺服器時出現問題,或者它沒有正確設置。看起來您只是在回復A來自您的 DNS 伺服器的查詢,這可能解釋了為什麼某些名稱伺服器不喜歡您的域。跟踪輸出以下內容:
dig +trace iwanhae.ga ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.23.rc1.el6_5.1 <<>> +trace iwanhae.ga ;; global options: +cmd . 6862 IN NS e.root-servers.net. . 6862 IN NS h.root-servers.net. . 6862 IN NS b.root-servers.net. . 6862 IN NS a.root-servers.net. . 6862 IN NS m.root-servers.net. . 6862 IN NS f.root-servers.net. . 6862 IN NS l.root-servers.net. . 6862 IN NS d.root-servers.net. . 6862 IN NS j.root-servers.net. . 6862 IN NS k.root-servers.net. . 6862 IN NS c.root-servers.net. . 6862 IN NS i.root-servers.net. . 6862 IN NS g.root-servers.net. ;; Received 508 bytes from 10.2.39.219#53(10.2.39.219) in 290 ms ga. 172800 IN NS a.ns.ga. ga. 172800 IN NS b.ns.ga. ga. 172800 IN NS c.ns.ga. ga. 172800 IN NS d.ns.ga. ;; Received 271 bytes from 192.203.230.10#53(192.203.230.10) in 72 ms iwanhae.ga. 300 IN NS doctor.iptime.org. iwanhae.ga. 300 IN NS dns.iwanhae.ga. ;; Received 93 bytes from 185.21.171.49#53(185.21.171.49) in 3366 ms iwanhae.ga. 3600 IN A 175.193.162.44 ;; Received 44 bytes from 175.193.162.44#53(175.193.162.44) in 319 ms直接向您的名稱伺服器詢問
SOA或NS記錄沒有結果:dig @175.193.162.44 iwanhae.ga. SOA ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.23.rc1.el6_5.1 <<>> @175.193.162.44 iwanhae.ga. SOA ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 65076 ;; flags: qr aa rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; WARNING: recursion requested but not available ;; QUESTION SECTION: ;iwanhae.ga. IN SOA ;; Query time: 302 msec ;; SERVER: 175.193.162.44#53(175.193.162.44) ;; WHEN: Wed Sep 21 18:26:15 2016 ;; MSG SIZE rcvd: 28 dig @175.193.162.44 iwanhae.ga. NS ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.23.rc1.el6_5.1 <<>> @175.193.162.44 iwanhae.ga. NS ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 37126 ;; flags: qr aa rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; WARNING: recursion requested but not available ;; QUESTION SECTION: ;iwanhae.ga. IN NS ;; Query time: 305 msec ;; SERVER: 175.193.162.44#53(175.193.162.44) ;; WHEN: Wed Sep 21 18:26:20 2016 ;; MSG SIZE rcvd: 28此外,查詢它下的任何內容
*.iwanhae.ga總是會產生相同的結果,這意味著您可能已經設置了一些基於規則的 DNS 響應而不是正確的區域:dig @175.193.162.44 verylongnamewhichprobablydoesnotexist.iwanhae.ga. ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.23.rc1.el6_5.1 <<>> @175.193.162.44 verylongnamewhichprobablydoesnotexist.iwanhae.ga. ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 56861 ;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; WARNING: recursion requested but not available ;; QUESTION SECTION: ;verylongnamewhichprobablydoesnotexist.iwanhae.ga. IN A ;; ANSWER SECTION: verylongnamewhichprobablydoesnotexist.iwanhae.ga. 3600 IN A 175.193.162.44 ;; Query time: 301 msec ;; SERVER: 175.193.162.44#53(175.193.162.44) ;; WHEN: Wed Sep 21 18:27:50 2016 ;; MSG SIZE rcvd: 82為使您的域在 Internet 上正常執行,您必須從 DNS 伺服器回復
SOA和NS查詢,否則某些 DNS 解析器將不喜歡它的設置方式並導致查找失敗。正確
SOA和NS記錄看起來像:iwanhae.ga. 300 IN SOA dns.iwanhae.ga. admin.iwanhae.ga. 2016092100 10800 3600 1209600 300 iwanhae.ga. IN NS dns.iwanhae.ga. iwanhae.ga. IN NS doctor.iptime.org. dns IN A 175.193.162.44