| Author |
Message |
Bob
Guest
|
 Posted:
Sat Oct 15, 2005 8:50 pm Post subject:
no SOA record on Querry |
|
|
4 W2003 enterprize servers with DNS
We have 4 DNS servers, when we querry for our SOA record all four DNS return
can't find server address for type=SOA if we nslookup to the server wiith
primary we get "Non-existent domain"
if we perform an nslookup on primary server it responds with a different
server? name and ip?
All other querry's respond for all other records IE a, mx, prt etc. with no
problems. |
|
| Back to top |
|
 |
Kevin D. Goodknecht Sr. [
Guest
|
| Posted:
Sat Oct 15, 2005 8:50 pm Post subject:
Re: no SOA record on Querry |
|
|
Bob <Bob@discussions.microsoft.com> wrote:
| Quote: | 4 W2003 enterprize servers with DNS
We have 4 DNS servers, when we querry for our SOA record all four DNS
return can't find server address for type=SOA if we nslookup to the
server wiith primary we get "Non-existent domain"
if we perform an nslookup on primary server it responds with a
different server? name and ip?
All other querry's respond for all other records IE a, mx, prt etc.
with no problems.
|
Could you post the output from nslookup?
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
https://secure.lsaol.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
=================================== |
|
| Back to top |
|
|
Bob
Guest
|
| Posted:
Sat Oct 15, 2005 8:50 pm Post subject:
Re: no SOA record on Querry |
|
|
C:\>nslookup type=SOA
Server: lv03.bcnstech.com
Address: 192.168.0.23
*** lv03.bcnstech.com can't find type=SOA: Non-existent domain
C:\>nslookup type=SOA
Server: lv03.bcnstech.com
Address: 192.168.0.23
*** lv03.bcnstech.com can't find type=SOA: Non-existent domain
C:\>nslookup lv01
Server: lv03.bcnstech.com
Address: 192.168.0.23
Name: lv01.BCNSTech.com
Address: 192.168.0.21
C:\>nslookup lv01 type=soa
*** Can't find server address for 'type=soa':
Server: lv03.bcnstech.com
Address: 192.168.0.23
Name: lv01.BCNSTech.com
Address: 192.168.0.21
C:\>nslookup type=SOA
Server: lv03.bcnstech.com
Address: 192.168.0.23
*** lv03.bcnstech.com can't find type=SOA: Non-existent domain
C:\>nslookup type=SOA
Server: lv03.bcnstech.com
Address: 192.168.0.23
*** lv03.bcnstech.com can't find type=SOA: Non-existent domain
"Kevin D. Goodknecht Sr. [MVP]" <admin@nospam.WFTX.US> wrote in message
news:OqtmH2a0FHA.3660@TK2MSFTNGP15.phx.gbl...
| Quote: | Bob <Bob@discussions.microsoft.com> wrote:
4 W2003 enterprize servers with DNS
We have 4 DNS servers, when we querry for our SOA record all four DNS
return can't find server address for type=SOA if we nslookup to the
server wiith primary we get "Non-existent domain"
if we perform an nslookup on primary server it responds with a
different server? name and ip?
All other querry's respond for all other records IE a, mx, prt etc.
with no problems.
Could you post the output from nslookup?
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
https://secure.lsaol.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
|
| Back to top |
|
|
Kevin D. Goodknecht Sr. [
Guest
|
| Posted:
Sat Oct 15, 2005 8:50 pm Post subject:
Re: no SOA record on Querry |
|
|
Bob <rmumm2@gmail.com> wrote:
| Quote: | C:\>nslookup type=SOA
Server: lv03.bcnstech.com
Address: 192.168.0.23
*** lv03.bcnstech.com can't find type=SOA: Non-existent domain
|
Your syntax is incorrect the correct syntax is nslookup -qtype=soa
<domainname>
Example:
W:\>nslookup -qtype=soa lsaol.com
Server: kjweb.lsaol.com
Address: 192.168.0.2
lsaol.com
primary name server = kjweb.lsaol.com
responsible mail addr = admin.wftx.us
serial = 1154
refresh = 900 (15 mins)
retry = 600 (10 mins)
expire = 86400 (1 day)
default TTL = 3600 (1 hour)
kjweb.lsaol.com internet address = 192.168.0.2
Or for interactive mode:
nslookup <hit enter>
set type=soa <hit enter>
domainname <hit enter>
Example:
W:\>nslookup
Default Server: kjweb.lsaol.com
Address: 192.168.0.2
| Quote: | set type=soa
lsaol.com
Server: kjweb.lsaol.com |
Address: 192.168.0.2
lsaol.com
primary name server = kjweb.lsaol.com
responsible mail addr = admin.wftx.us
serial = 1154
refresh = 900 (15 mins)
retry = 600 (10 mins)
expire = 86400 (1 day)
default TTL = 3600 (1 hour)
kjweb.lsaol.com internet address = 192.168.0.2
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
https://secure.lsaol.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
=================================== |
|
| Back to top |
|
|
Bob
Guest
|
| Posted:
Sat Oct 15, 2005 8:50 pm Post subject:
Re: no SOA record on Querry |
|
|
This is being perfromed on lv01 192.168.0.21 it returns the following
which is our external dns hosting the email server
C:\>nslookup -qtype=soa bcnstech.com
Server: lv03.bcnstech.com
Address: 192.168.0.23
bcnstech.com
primary name server = lv01.bcnstech.com
responsible mail addr = hostmaster.bcnstech.com
serial = 456
refresh = 1200 (20 mins)
retry = 600 (10 mins)
expire = 1209600 (14 days)
default TTL = 7200 (2 hours)
lv01.bcnstech.com internet address = 192.168.0.21
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
From Dns Querry for SOA record we get
www.dnstuff.com
Searching for lv01.bcnstech.com SOA record at i.root-servers.net
[192.36.148.17]: Got referral to F.GTLD-SERVERS.NET. [took 118 ms]
Searching for lv01.bcnstech.com SOA record at F.GTLD-SERVERS.NET.
[192.35.51.30]: Got referral to ns2.bcnstech.com. [took 74 ms]
Searching for lv01.bcnstech.com SOA record at ns2.bcnstech.com.
[216.222.121.18]: Timed out. Trying again.
Searching for lv01.bcnstech.com SOA record at ns2.bcnstech.com.
[216.222.121.18]: Timed out. Trying again.
Searching for lv01.bcnstech.com SOA record at ns2.bcnstech.com.
[216.222.121.18]: Timed out. Trying again.
Searching for lv01.bcnstech.com SOA record at ns1.bcnstech.com.
[216.222.121.31]: Timed out. Trying again.
Searching for lv01.bcnstech.com SOA record at ns1.bcnstech.com.
[216.222.121.31]: Timed out. Trying again.
Searching for lv01.bcnstech.com SOA record at ns2.bcnstech.com.
[216.222.121.18]: Timed out. Trying again.
How I am searching:
Searching for bcnstech.com SOA record at a.root-servers.net [198.41.0.4]:
Got referral to I.GTLD-SERVERS.NET. [took 7 ms]
Searching for bcnstech.com SOA record at I.GTLD-SERVERS.NET.
[192.43.172.30]: Got referral to ns2.bcnstech.com. [took 120 ms]
Searching for bcnstech.com SOA record at ns2.bcnstech.com. [216.222.121.18]:
Timed out. Trying again.
Searching for bcnstech.com SOA record at ns1.bcnstech.com. [216.222.121.31]:
Timed out. Trying again.
Searching for bcnstech.com SOA record at ns1.bcnstech.com. [216.222.121.31]:
Timed out. Trying again.
Searching for bcnstech.com SOA record at ns1.bcnstech.com. [216.222.121.31]:
Timed out. Trying again.
Searching for bcnstech.com SOA record at ns2.bcnstech.com. [216.222.121.18]:
Timed out. Trying again.
Searching for bcnstech.com SOA record at ns1.bcnstech.com. [216.222.121.31]:
Timed out. Trying again.
Searching for lv03.bcnstech.com SOA record at a.root-servers.net
[198.41.0.4]: Got referral to E.GTLD-SERVERS.NET. [took 6 ms]
Searching for lv03.bcnstech.com SOA record at E.GTLD-SERVERS.NET.
[192.12.94.30]: Got referral to ns2.bcnstech.com. [took 70 ms]
Searching for lv03.bcnstech.com SOA record at ns2.bcnstech.com.
[216.222.121.18]: Timed out. Trying again.
Searching for lv03.bcnstech.com SOA record at ns2.bcnstech.com.
[216.222.121.18]: Timed out. Trying again.
Searching for lv03.bcnstech.com SOA record at ns2.bcnstech.com.
[216.222.121.18]: Timed out. Trying again.
Searching for lv03.bcnstech.com SOA record at ns2.bcnstech.com.
[216.222.121.18]: Timed out. Trying again.
Searching for lv03.bcnstech.com SOA record at ns2.bcnstech.com.
[216.222.121.18]: Timed out. Trying again.
Searching for lv03.bcnstech.com SOA record at ns2.bcnstech.com.
[216.222.121.18]: Timed out. Trying again.
"Kevin D. Goodknecht Sr. [MVP]" <admin@nospam.WFTX.US> wrote in message
news:OU945Kb0FHA.3856@tk2msftngp13.phx.gbl...
| Quote: | Bob <rmumm2@gmail.com> wrote:
C:\>nslookup type=SOA
Server: lv03.bcnstech.com
Address: 192.168.0.23
*** lv03.bcnstech.com can't find type=SOA: Non-existent domain
Your syntax is incorrect the correct syntax is nslookup -qtype=soa
domainname
Example:
W:\>nslookup -qtype=soa lsaol.com
Server: kjweb.lsaol.com
Address: 192.168.0.2
lsaol.com
primary name server = kjweb.lsaol.com
responsible mail addr = admin.wftx.us
serial = 1154
refresh = 900 (15 mins)
retry = 600 (10 mins)
expire = 86400 (1 day)
default TTL = 3600 (1 hour)
kjweb.lsaol.com internet address = 192.168.0.2
Or for interactive mode:
nslookup <hit enter
set type=soa <hit enter
domainname <hit enter
Example:
W:\>nslookup
Default Server: kjweb.lsaol.com
Address: 192.168.0.2
set type=soa
lsaol.com
Server: kjweb.lsaol.com
Address: 192.168.0.2
lsaol.com
primary name server = kjweb.lsaol.com
responsible mail addr = admin.wftx.us
serial = 1154
refresh = 900 (15 mins)
retry = 600 (10 mins)
expire = 86400 (1 day)
default TTL = 3600 (1 hour)
kjweb.lsaol.com internet address = 192.168.0.2
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
https://secure.lsaol.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
|
| Back to top |
|
|
Bob
Guest
|
| Posted:
Sun Oct 16, 2005 12:50 am Post subject:
Re: no SOA record on Querry |
|
|
We have several forward zones with bcnstech.com as our primary, all records
point to internal private ip's , the cisco router is configured to nat
(point internal ip to external ip's). No dynamic DNS update allowed, two DNS
allow changes the others are locked down and communicate/respond to the
outside worlds request. The NS point to these two DNS servers.
The isssue with the SOA began around Mid June, we run terminal servers and
exchange server, web server, the only issue we have is not being able to
email Yahoo. accounts which troublshooting brought us to deiscover the SOA
not being resolved.
"Kevin D. Goodknecht Sr. [MVP]" <admin@nospam.WFTX.US> wrote in message
news:e83Xzwc0FHA.1364@TK2MSFTNGP10.phx.gbl...
| Quote: | Bob <rmumm2@gmail.com> wrote:
This is being perfromed on lv01 192.168.0.21 it returns the following
which is our external dns hosting the email server
You have more than an SOA problem, it looks like there is a problem with
the
DNS servers for this domain, it won't answer for this domain. I've tried
it
directly to both IPs listed at the gTLD servers.
http://www.dnsreport.com/tools/dnsreport.ch?domain=bcnstech.com
How is the zone set up?
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
https://secure.lsaol.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
|
| Back to top |
|
|
Kevin D. Goodknecht Sr. [
Guest
|
| Posted:
Sun Oct 16, 2005 12:50 am Post subject:
Re: no SOA record on Querry |
|
|
Bob <rmumm2@gmail.com> wrote:
| Quote: | This is being perfromed on lv01 192.168.0.21 it returns the following
which is our external dns hosting the email server
|
You have more than an SOA problem, it looks like there is a problem with the
DNS servers for this domain, it won't answer for this domain. I've tried it
directly to both IPs listed at the gTLD servers.
http://www.dnsreport.com/tools/dnsreport.ch?domain=bcnstech.com
How is the zone set up?
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
https://secure.lsaol.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
=================================== |
|
| Back to top |
|
|
Kevin D. Goodknecht Sr. [
Guest
|
| Posted:
Mon Oct 17, 2005 4:50 pm Post subject:
Re: no SOA record on Querry |
|
|
Bob <rmumm2@gmail.com> wrote:
| Quote: | We have several forward zones with bcnstech.com as our primary, all
records point to internal private ip's , the cisco router is
configured to nat (point internal ip to external ip's). No dynamic
DNS update allowed, two DNS allow changes the others are locked down
and communicate/respond to the outside worlds request. The NS point
to these two DNS servers.
The isssue with the SOA began around Mid June, we run terminal
servers and exchange server, web server, the only issue we have is
not being able to email Yahoo. accounts which troublshooting brought
us to deiscover the SOA not being resolved.
|
If your DNS servers publish only private addresses to the internet, nothing
is going to work. DNS server that publish records for internet resolution
must only publish public addresses.
Set up a different set of DNS servers that publish only public addresses to
the internet.
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
https://secure.lsaol.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
=================================== |
|
| Back to top |
|
|
Bob
Guest
|
| Posted:
Wed Oct 19, 2005 12:50 pm Post subject:
Re: no SOA record on Querry |
|
|
Our DNS hold only internal ip's and provide no private ip info to the
internet, anything provided is translated to public by the cisco.
If I understand, you are suggesting that we set up another DNS server that
holds our public IP's. I will need to study how to set this up and
integrated into our network, but it seems like a lot of work to supply an
SOA record, we have many networks setup and have never run into this issue
before.
Thanks Bob
"Kevin D. Goodknecht Sr. [MVP]" <admin@nospam.WFTX.US> wrote in message
news:%23YykBVz0FHA.3720@TK2MSFTNGP14.phx.gbl...
| Quote: | Bob <rmumm2@gmail.com> wrote:
We have several forward zones with bcnstech.com as our primary, all
records point to internal private ip's , the cisco router is
configured to nat (point internal ip to external ip's). No dynamic
DNS update allowed, two DNS allow changes the others are locked down
and communicate/respond to the outside worlds request. The NS point
to these two DNS servers.
The isssue with the SOA began around Mid June, we run terminal
servers and exchange server, web server, the only issue we have is
not being able to email Yahoo. accounts which troublshooting brought
us to deiscover the SOA not being resolved.
If your DNS servers publish only private addresses to the internet,
nothing
is going to work. DNS server that publish records for internet resolution
must only publish public addresses.
Set up a different set of DNS servers that publish only public addresses
to
the internet.
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
https://secure.lsaol.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
|
| Back to top |
|
|
Kevin D. Goodknecht Sr. [
Guest
|
| Posted:
Wed Oct 19, 2005 4:51 pm Post subject:
Re: no SOA record on Querry |
|
|
Bob <rmumm2@gmail.com> wrote:
| Quote: | Our DNS hold only internal ip's and provide no private ip info to the
internet, anything provided is translated to public by the cisco.
|
I think you are confused about what the CISCO can do, it translates IP
addresses not DNS data. If a DNS server returns a private address, a router
does not convert that record data to a public address, however if it returns
a private address for a record, the record is useless to the client unless
the client is behind the same router (or firewall).
| Quote: |
If I understand, you are suggesting that we set up another DNS server
that holds our public IP's. I will need to study how to set this up
and integrated into our network, but it seems like a lot of work to
supply an SOA record, we have many networks setup and have never run
into this issue before.
|
Setting up a network has nothing to do with setting up a DNS server to
return the correct record for a name by DNS. A DNS server does not care what
IP address is on the machine it runs on. If an application asks the DNS
server to resolve a name, it returns the record for that type and name to
the application.
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
https://secure.lsaol.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
=================================== |
|
| Back to top |
|
|
Ace Fekay [MVP]
Guest
|
| Posted:
Mon Oct 24, 2005 8:25 am Post subject:
Re: no SOA record on Querry |
|
|
In news:OYSX7jK1FHA.3568@TK2MSFTNGP15.phx.gbl,
Bob <rmumm2@gmail.com> made this post, which I then commented about below:
| Quote: | Our DNS hold only internal ip's and provide no private ip info to the
internet, anything provided is translated to public by the cisco.
If I understand, you are suggesting that we set up another DNS server
that holds our public IP's. I will need to study how to set this up
and integrated into our network, but it seems like a lot of work to
supply an SOA record, we have many networks setup and have never run
into this issue before.
Thanks Bob
|
Just to reiterate and solidfy what Kevin is saying, basically if you want to
host your external public domain name on your DNS servers, and it's the same
zone name as your AD zone, or you are hosting your website in your own
private network along with the public domain name, you will NEED a separate
DNS server to do this.
The "internal" DNS servers host the private IPs and will not be port
remapped from your NAT device (Cisco, Netscreen, Bay Networks, Linksys
router, etc).
The one you setup as your "external" DNS server will host the external
public IPs for your public resources and these servers will be the ones
getting port-remapped from your NAT device. There is nothing special to
configure these servers other than the need to be configured with their
public IPs in their nameservers tab identifying these DNS servers by their
external public IPs and only hosting public IPs for your www, mail, etc,
records. And yes, I am referring to these DNS servers as plural because the
Registrar requires two DNS servers to host any given domain name.
The "internal" servers will be used only by your internal machines since
they have the private IPs. The external DNS servers will be responding to
Internet resolution queries.
I hope that helped out along with Kevin's explanation.
--
Ace
This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.
If this post is viewed at a non-Microsoft community website, and you were to
respond to it through that community's website, I may not see your reply
unless that website posts replies back to the original Microsoft forum.
Therefore, please direct all replies ONLY to the Microsoft public newsgroup
this thread originated in so all can benefit or ensure the web community
posts it back to the original forum.
Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft MVP - Windows Server Directory Services
Microsoft Certified Trainer
Infinite Diversities in Infinite Combinations.
================================= |
|
| Back to top |
|
|
|
|
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in