Re: Unable to resolve the A records, not sure what is wrong
On Fri, Jun 1, 2018 at 2:01 PM Blason R wrote: > Yes that was the issue :) and got resolved. > Glad it was an easy fix. -- Bob Harold > On Fri, Jun 1, 2018 at 11:29 PM, Blason R wrote: > >> I guess this could be the issue >> >> zone "malware.trap" { >> type master; >> file "/var/lib/bind/zones/malware.trap.db"; >> allow-query { localhost;}; >> >> >> On Fri, Jun 1, 2018 at 11:28 PM, Blason R wrote: >> >>> Well this is I am getting in network.log what could be the issue? >>> >>> 01-Jun-2018 23:27:42.274 client 192.168.5.103#58425 (wg.block.tld): >>> query 'wg.block.tld/A/IN' denied >>> >>> >>> On Fri, Jun 1, 2018 at 11:27 PM, Bob Harold wrote: >>> On Fri, Jun 1, 2018 at 1:36 PM Blason R wrote: > Hi there, > > I am writing a RPZ zone and here is my zone file. RPZ is working fine > but somehow A records are not getting resovled hence I am unable to do the > wall-gardening. > > Can someone please help > > > $TTL 3h > @ IN SOA ns1.malware.trap. > admin.malware.trap.( > 2006060301 ; Serial > 21600 ; Refresh > 3600; Retry > 604800 ; Expire > 3600 ) ; Minimum TTL > > IN NSns1.malware.trap. > ns1.malware.trap. A 172.16.3.48 > wg.malware.trap.A 172.16.3.48 > baddomain.co CNAME wg.malware.trap. > block.thisCNAME wg.malware.trap. > > ### > > ;; ANSWER SECTION: > block.this.5 IN CNAME wg.malware.trap. > > > *** > ;; QUESTION SECTION: > ;wg.malware.trap. IN A > > Answer not getting what could be wrong?? > Not sure what is a normal configuration, but on my servers users cannot query the RPZ domain, it is only used for RPZ. Try putting the A record in a normal zone, and CNAME to that, rather than having the A record in the RPZ zone. Or try doing a direct query for the A record and see if it resolves. -- Bob Harold >>> >>> >> > ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Unable to resolve the A records, not sure what is wrong
Yes that was the issue :) and got resolved. On Fri, Jun 1, 2018 at 11:29 PM, Blason R wrote: > I guess this could be the issue > > zone "malware.trap" { > type master; > file "/var/lib/bind/zones/malware.trap.db"; > allow-query { localhost;}; > > > On Fri, Jun 1, 2018 at 11:28 PM, Blason R wrote: > >> Well this is I am getting in network.log what could be the issue? >> >> 01-Jun-2018 23:27:42.274 client 192.168.5.103#58425 (wg.block.tld): query >> 'wg.block.tld/A/IN' denied >> >> >> On Fri, Jun 1, 2018 at 11:27 PM, Bob Harold wrote: >> >>> >>> On Fri, Jun 1, 2018 at 1:36 PM Blason R wrote: >>> Hi there, I am writing a RPZ zone and here is my zone file. RPZ is working fine but somehow A records are not getting resovled hence I am unable to do the wall-gardening. Can someone please help $TTL 3h @ IN SOA ns1.malware.trap. admin.malware.trap.( 2006060301 ; Serial 21600 ; Refresh 3600; Retry 604800 ; Expire 3600 ) ; Minimum TTL IN NSns1.malware.trap. ns1.malware.trap. A 172.16.3.48 wg.malware.trap.A 172.16.3.48 baddomain.co CNAME wg.malware.trap. block.thisCNAME wg.malware.trap. ### ;; ANSWER SECTION: block.this.5 IN CNAME wg.malware.trap. *** ;; QUESTION SECTION: ;wg.malware.trap. IN A Answer not getting what could be wrong?? >>> >>> Not sure what is a normal configuration, but on my servers users cannot >>> query the RPZ domain, it is only used for RPZ. >>> Try putting the A record in a normal zone, and CNAME to that, rather >>> than having the A record in the RPZ zone. >>> Or try doing a direct query for the A record and see if it resolves. >>> >>> -- >>> Bob Harold >>> >>> >> >> > ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Unable to resolve the A records, not sure what is wrong
I guess this could be the issue zone "malware.trap" { type master; file "/var/lib/bind/zones/malware.trap.db"; allow-query { localhost;}; On Fri, Jun 1, 2018 at 11:28 PM, Blason R wrote: > Well this is I am getting in network.log what could be the issue? > > 01-Jun-2018 23:27:42.274 client 192.168.5.103#58425 (wg.block.tld): query > 'wg.block.tld/A/IN' denied > > > On Fri, Jun 1, 2018 at 11:27 PM, Bob Harold wrote: > >> >> On Fri, Jun 1, 2018 at 1:36 PM Blason R wrote: >> >>> Hi there, >>> >>> I am writing a RPZ zone and here is my zone file. RPZ is working fine >>> but somehow A records are not getting resovled hence I am unable to do the >>> wall-gardening. >>> >>> Can someone please help >>> >>> >>> $TTL 3h >>> @ IN SOA ns1.malware.trap. admin.malware.trap. >>> ( >>> 2006060301 ; Serial >>> 21600 ; Refresh >>> 3600; Retry >>> 604800 ; Expire >>> 3600 ) ; Minimum TTL >>> >>> IN NSns1.malware.trap. >>> ns1.malware.trap. A 172.16.3.48 >>> wg.malware.trap.A 172.16.3.48 >>> baddomain.co CNAME wg.malware.trap. >>> block.thisCNAME wg.malware.trap. >>> >>> ### >>> >>> ;; ANSWER SECTION: >>> block.this.5 IN CNAME wg.malware.trap. >>> >>> >>> *** >>> ;; QUESTION SECTION: >>> ;wg.malware.trap. IN A >>> >>> Answer not getting what could be wrong?? >>> >> >> Not sure what is a normal configuration, but on my servers users cannot >> query the RPZ domain, it is only used for RPZ. >> Try putting the A record in a normal zone, and CNAME to that, rather than >> having the A record in the RPZ zone. >> Or try doing a direct query for the A record and see if it resolves. >> >> -- >> Bob Harold >> >> > > ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Unable to resolve the A records, not sure what is wrong
Well this is I am getting in network.log what could be the issue? 01-Jun-2018 23:27:42.274 client 192.168.5.103#58425 (wg.block.tld): query 'wg.block.tld/A/IN' denied On Fri, Jun 1, 2018 at 11:27 PM, Bob Harold wrote: > > On Fri, Jun 1, 2018 at 1:36 PM Blason R wrote: > >> Hi there, >> >> I am writing a RPZ zone and here is my zone file. RPZ is working fine but >> somehow A records are not getting resovled hence I am unable to do the >> wall-gardening. >> >> Can someone please help >> >> >> $TTL 3h >> @ IN SOA ns1.malware.trap. admin.malware.trap.( >> 2006060301 ; Serial >> 21600 ; Refresh >> 3600; Retry >> 604800 ; Expire >> 3600 ) ; Minimum TTL >> >> IN NSns1.malware.trap. >> ns1.malware.trap. A 172.16.3.48 >> wg.malware.trap.A 172.16.3.48 >> baddomain.co CNAME wg.malware.trap. >> block.thisCNAME wg.malware.trap. >> >> ### >> >> ;; ANSWER SECTION: >> block.this.5 IN CNAME wg.malware.trap. >> >> >> *** >> ;; QUESTION SECTION: >> ;wg.malware.trap. IN A >> >> Answer not getting what could be wrong?? >> > > Not sure what is a normal configuration, but on my servers users cannot > query the RPZ domain, it is only used for RPZ. > Try putting the A record in a normal zone, and CNAME to that, rather than > having the A record in the RPZ zone. > Or try doing a direct query for the A record and see if it resolves. > > -- > Bob Harold > > ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Unable to resolve the A records, not sure what is wrong
On Fri, Jun 1, 2018 at 1:36 PM Blason R wrote: > Hi there, > > I am writing a RPZ zone and here is my zone file. RPZ is working fine but > somehow A records are not getting resovled hence I am unable to do the > wall-gardening. > > Can someone please help > > > $TTL 3h > @ IN SOA ns1.malware.trap. admin.malware.trap.( > 2006060301 ; Serial > 21600 ; Refresh > 3600; Retry > 604800 ; Expire > 3600 ) ; Minimum TTL > > IN NSns1.malware.trap. > ns1.malware.trap. A 172.16.3.48 > wg.malware.trap.A 172.16.3.48 > baddomain.co CNAME wg.malware.trap. > block.thisCNAME wg.malware.trap. > > ### > > ;; ANSWER SECTION: > block.this.5 IN CNAME wg.malware.trap. > > > *** > ;; QUESTION SECTION: > ;wg.malware.trap. IN A > > Answer not getting what could be wrong?? > Not sure what is a normal configuration, but on my servers users cannot query the RPZ domain, it is only used for RPZ. Try putting the A record in a normal zone, and CNAME to that, rather than having the A record in the RPZ zone. Or try doing a direct query for the A record and see if it resolves. -- Bob Harold ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Unable to resolve the A records, not sure what is wrong
Hi there, I am writing a RPZ zone and here is my zone file. RPZ is working fine but somehow A records are not getting resovled hence I am unable to do the wall-gardening. Can someone please help $TTL 3h @ IN SOA ns1.malware.trap. admin.malware.trap.( 2006060301 ; Serial 21600 ; Refresh 3600; Retry 604800 ; Expire 3600 ) ; Minimum TTL IN NSns1.malware.trap. ns1.malware.trap. A 172.16.3.48 wg.malware.trap.A 172.16.3.48 baddomain.co CNAME wg.malware.trap. block.thisCNAME wg.malware.trap. ### ;; ANSWER SECTION: block.this.5 IN CNAME wg.malware.trap. *** ;; QUESTION SECTION: ;wg.malware.trap. IN A Answer not getting what could be wrong?? ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: extranet.aro.army.mil - not resolving
Con Wieland wrote: > I have a nameserver that can not resolve extranet.aro.army.mil. The end of the CNAME chain is e1008.d.akamaiedge.akamai.csd.disa.mil. The authoritative servers for this name really like to drop queries if they don't like the qtype. This is very bad, because it makes it easy to upset resolvers. My server can usually resolve this name OK, but I can kick it into SERVFAIL mode with: d=e1008.d.akamaiedge.akamai.csd.disa.mil.; while [ -n "$d" ]; do dig $d in ns $d in ds $d in dnskey; d=$(echo $d | sed 's/^[^.]*[.]//'); done serve-stale helps my resolver recover from being kicked like this. Tony. -- f.anthony.n.finchhttp://dotat.at/ Irish Sea: Variable 3 or 4. Smooth or slight. Thundery showers, fog patches. Moderate or good, occasionally very poor. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users