Monday, August 30, 2021

Do you allow newbie posts? Issue with DNS lookups.

I’ve got a computer on our network that is saying the DNS requests for a very popular website are timing out. After pulling up wire shark and doing an nslookup for domain.com I see that the query is going out to our DC 4 times. The 1st: Standard Query A record for “domain.com.ourdomain.com” The 2nd: Standard Query AAAA record for “domain.com.ourdomain.com” The 3rd: Standard Query A record for “domain.com” The 4th: Standard Query AAAA record for “domain.com”

The first two comeback with no results. “No such name A” and “No such name AAAA.”

The last two give realistic IPs and a nameserver in return.

Is it normal for a DNS request to have the suffix of your internal domain appended to the end of the name? And for 4 requests to go out?

I also checked it with 1.1.1.1 as the server instead of letting it default to our internal server and the same thing happened. The first two were nonexistent and the next two gave an IP and a name server.



No comments:

Post a Comment